r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7381
Expires: Fri, 09 Dec 2022 08:06:55 GMT
Date: Fri, 09 Dec 2022 06:03:54 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2694
Expires: Fri, 09 Dec 2022 06:48:48 GMT
Date: Fri, 09 Dec 2022 06:03:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 05:08:17 GMT
content-type: application/json
age: 3337
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16508
Expires: Fri, 09 Dec 2022 10:39:02 GMT
Date: Fri, 09 Dec 2022 06:03:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aPvCeeXs9NyP8XH6SjfycA/owOikvyrTUMIFiV5pdUi0veaK+r9VnRNYF3eyIkwyqhbe3+41uns=
x-amz-request-id: M7Q95QVP0DK9G2ZF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 05:50:08 GMT
age: 826
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
a.browserspeed.support/
35.163.161.172302 Moved Temporarily 49 B IP 35.163.161.172:0
File type HTML document, ASCII text
Hash 6ef60ba1cb1350ea155d7bb021c05f88
859cdc65c36677332cc4064b4448b2b3d118ea56
56ffc0a154ec5b79dfa63d116ed0a399b2457f62db9c4e48a6cf2f5003ed83e7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: a.browserspeed.support
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: awselb/2.0
Date: Fri, 09 Dec 2022 06:03:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 49
Connection: keep-alive
Set-Cookie: tuid=6cd72392-710e-456f-b152-9f6d234d60b4; Path=/; Domain=a.usbrowserspeed.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
Location: https://www.speedtest.net/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 06:03:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e35595cb0af328f4cd803a4c2ba7438f
6d04b97bcd6da2c3ec886f23cbd3b1ceef29897c
623d79f48ecaa1572baa5bf1357c10c0fe446de6881b688fdefac3392961a784
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4110
Cache-Control: max-age=118052
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:54 GMT
Etag: "6391e9e0-117"
Expires: Sat, 10 Dec 2022 14:51:26 GMT
Last-Modified: Thu, 08 Dec 2022 13:42:56 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
www.speedtest.net/
104.16.210.12200 OK 35 kB IP 104.16.210.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22255)
Hash d2d2fb5aa7789a64291f6313ba42e063
56c976e2638306d5ac33264a9b66adf9d20458fe
48b733a016a813904c72b245734184d52ad6cb32218c41eaad70a6a37f91843e
GET / HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:54 GMT
content-type: text/html; charset=utf-8
content-length: 34999
cache-control: private
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
etag: W/"1d628-EKOFo6DtF6ZBrC0K6TpGoZfDEZU"
content-encoding: gzip
accept-ranges: bytes
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=kFRDcATDuZVYsm9_vnmM0cM4N2vCMYsAoFzCq2kiItM-1670565834-0-AQ6pTAaiLwTaSnevVvh53zkt9PGmKRplmvI8xrxPsUWjoBJ+GQVAzQVZcX8XdgSYAQ8FqJGWcekS1VP+l3O8B/w=; path=/; expires=Fri, 09-Dec-22 06:33:54 GMT; domain=.www.speedtest.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 776b8a50abd5b506-OSL
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 05:07:59 GMT
age: 3355
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
zdstatic.speedtest.net/jst/zdconsent.js
95.101.11.152200 OK 16 kB URL HTTP/2 zdstatic.speedtest.net/jst/zdconsent.js
IP 95.101.11.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21276)
Hash 201a1de58f7cc8a4bae928100a000493
e50d25a1211f0f746948fd861aeaa88351efd8be
7381b8409dab5919427b5b9b8201816e0bf725e6247c1ee1323a27eefbf885a3
GET /jst/zdconsent.js HTTP/1.1
Host: zdstatic.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 14:46:15 GMT
etag: "d671f12d5ad53b24ddd17889d912928a"
accept-ranges: bytes
content-type: application/javascript
content-encoding: gzip
content-length: 15622
cache-control: max-age=731
expires: Fri, 09 Dec 2022 06:16:05 GMT
date: Fri, 09 Dec 2022 06:03:54 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
b.cdnst.net/fonts/HCo_fonts.css
151.101.194.219200 OK 112 kB URL HTTP/2 b.cdnst.net/fonts/HCo_fonts.css
IP 151.101.194.219:0
File type ASCII text, with very long lines (35408)
Size 112 kB (111462 bytes)
Hash a058224608f9b70a4f0502d4dee2d4e0
bc6e3a5bf3439f67f8639361ecb35bd9cbcedafb
278a508174af4db3bae86cc5001fd8b3c7a9728c12db1c3f7e2504656cb6e204
GET /fonts/HCo_fonts.css HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"24005-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:54 GMT
vary: Origin, Accept-Encoding
content-length: 111462
X-Firefox-Spdy: h2
b.cdnst.net/images/group-black/groupblack-white_on_black-1x.png
151.101.194.219200 OK 1.9 kB URL HTTP/2 b.cdnst.net/images/group-black/groupblack-white_on_black-1x.png
IP 151.101.194.219:0
File type PNG image data, 114 x 47, 8-bit gray+alpha, non-interlaced\012- data
Hash 3cc9efdb28931e49be68fa4a0b46f406
b441662754ddf61d834775702f7a8cb1e6c6c4a4
b76abca4ceaaf1788e86a4c3f6794567c085cb1b44220876d8953fcc3df0ac06
GET /images/group-black/groupblack-white_on_black-1x.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"75b-184cfd83948"
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:54 GMT
content-length: 1883
X-Firefox-Spdy: h2
b.cdnst.net/javascript/amazon.js
151.101.194.219200 OK 326 B URL HTTP/2 b.cdnst.net/javascript/amazon.js
IP 151.101.194.219:0
Hash 31a960a9b6caf9c52d50bf454a1f2ca8
b5d55701558c3eb68314fd7047205127067166fe
18760464a0ba60759418e348d6d059454c832ad9e6a1c8bf638b92c38be7dac3
GET /javascript/amazon.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"227-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:54 GMT
vary: Origin, Accept-Encoding
content-length: 326
X-Firefox-Spdy: h2
b.cdnst.net/javascript/ads/ad.js
151.101.194.219200 OK 45 B URL HTTP/2 b.cdnst.net/javascript/ads/ad.js
IP 151.101.194.219:0
File type ASCII text, with no line terminators
Hash e12a754e35639d5ed2a61f8b748b4f72
542f4ae4b82be75d0112e3f56a9b74b77d576722
5aa7a00356136259ec912f1b212a7782783e8a4488dabdc073a36ebcf706d73b
GET /javascript/ads/ad.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"19-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:54 GMT
vary: Origin, Accept-Encoding
content-length: 45
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4886
Cache-Control: max-age=102264
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:54 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:28:18 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
b.cdnst.net/styles/main.a272578758de0452a2dda11a5ad32a75.css
151.101.194.219200 OK 24 kB URL HTTP/2 b.cdnst.net/styles/main.a272578758de0452a2dda11a5ad32a75.css
IP 151.101.194.219:0
File type Unicode text, UTF-8 text, with very long lines (40636)
Hash 3f0c744e918d2a270762120479172f9e
e2b332e9244dd38b07e95d33e63cb946fc088918
e7af63fe5f85dc1f67d2ef07a0ecb7b753ac31e778c755e772baf4cfedfe16c1
GET /styles/main.a272578758de0452a2dda11a5ad32a75.css HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"229bf-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:54 GMT
vary: Origin, Accept-Encoding
content-length: 23635
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-K7SNBZ
142.250.74.168200 OK 90 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K7SNBZ
IP 142.250.74.168:0
File type ASCII text, with very long lines (24354)
Hash 658891c6a50449fec2f11e4f182d3b5c
9a5e024ab4c021df18dc5cda2fa2afa889d0fca5
1242dd00dfebe42c22177f05e5283b254af04e4b89eac9ed782a0169f15bb1c8
GET /gtm.js?id=GTM-K7SNBZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 06:03:55 GMT
expires: Fri, 09 Dec 2022 06:03:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89532
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.148.84.125101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.84.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Zlwiv0sXGM9oJekRp1eHow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Di8Xhg55gucrsx07umd62kDmDO8=
b.cdnst.net/fonts/gaugemono-regular-webfont.woff2
151.101.194.219200 OK 4.2 kB URL HTTP/2 b.cdnst.net/fonts/gaugemono-regular-webfont.woff2
IP 151.101.194.219:0
File type Web Open Font Format (Version 2), TrueType, length 4240, version 1.0\012- data
Hash ccd3711eb47a7fa5244eb22d02d4a605
df7fb091a8fd957509c81ba54144c8b123569cb8
1a00aa81f6ca32a692772c6a8bc908b62198154ce3eef1eeef346d80100b8e04
GET /fonts/gaugemono-regular-webfont.woff2 HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://b.cdnst.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"1090-184cfd83948"
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:54 GMT
access-control-allow-origin: *
content-length: 4240
X-Firefox-Spdy: h2
cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
95.101.10.177200 OK 29 kB URL HTTP/2 cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
IP 95.101.10.177:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9f7ccaf1ca2935be097c0aeee5db1571
17a6f7c025125c475a4f2d5e483ea0548b3236b2
633a06bfac841623f3c9d2d763928e659f5061974024ccfd72105835a22fdf48
GET /js/z0WVjCBSEeGLoxIxOQVEwQ.min.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jcDmHb43ZkkPb8ycYiPo5Pxz94Mu1LfmaU8qvZJPF+XTTY6tJQqTHlWo5DzJaKPbNK8GstNIWYQ=
x-amz-request-id: 8ZFPPDH62JJRQ9FY
last-modified: Mon, 05 Dec 2022 11:30:00 GMT
x-amz-version-id: KAxElMLaFer1lO6Oue2ETNDTFF0GMK9i
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Sat, 10 Dec 2022 06:03:55 GMT
date: Fri, 09 Dec 2022 06:03:55 GMT
content-length: 28629
X-Firefox-Spdy: h2
b.cdnst.net/javascript/prebid.6.18.0.min.js
151.101.194.219200 OK 85 kB URL HTTP/2 b.cdnst.net/javascript/prebid.6.18.0.min.js
IP 151.101.194.219:0
File type ASCII text, with very long lines (65423)
Hash 0c181b01f40c7cfbf630a33bb1dc564f
4dabcf43f36a752173763bd317feb57fe95e883a
9c338a174f8a51846cedf933dbd41df93e6ba86714c247d331e503f42948cbba
GET /javascript/prebid.6.18.0.min.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"4422f-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:55 GMT
vary: Origin, Accept-Encoding
content-length: 84764
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 74d3543cc60ff17c9502f116b120799c
b6a6f76e0c0ceece41d764cb3b1c43b6f52318bf
eaf335485f18d545cbdd3a95e17e2a817f525af51451daaeaa0be5942881d9de
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146390
Date: Fri, 09 Dec 2022 06:03:55 GMT
Etag: "6392534d-1d7"
Expires: Sat, 10 Dec 2022 22:43:45 GMT
Last-Modified: Thu, 08 Dec 2022 21:12:45 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vZWsqwr7BUnu8-tPc3DrtNcjL6OymIjkFa0wg3ovVefIDE4EHSDwmQ==
Age: 5460
ads.pubmatic.com/AdServer/js/pwt/159017/2865/pwt.js
2.18.172.200200 OK 80 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/159017/2865/pwt.js
IP 2.18.172.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4faf89a7cdd5cf9fe2128742a667c276
eab04696fb93e47fd4680c9dc51fee62675bc96c
c3a9c7908fee321f54f16ef8a316f8336584a4e5b3c1ad9bc73558e3b4515518
GET /AdServer/js/pwt/159017/2865/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 17 Aug 2021 18:53:17 GMT
etag: "10e1230-3f41a-5c9c5d4a9bb4b"
server: Apache
unused62: 8096267
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: text/javascript
content-length: 80189
cache-control: public, max-age=152465
expires: Sun, 11 Dec 2022 00:25:00 GMT
date: Fri, 09 Dec 2022 06:03:55 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 46 kB URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
Hash 4c2b897d7e907de5023792f89915a8b4
8e4a69d3d651a88e9a69ff042fd4eab7ccb419f9
2d8249cd097333cfc31f1e53577ec7763371560a5b34d7d21ede04a76cd9484b
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 07 Dec 2022 21:39:33 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Fri, 09 Dec 2022 05:36:33 GMT
cache-control: public, max-age=3600
via: 1.1 75a13c74495137fb5435dc4030981df6.cloudfront.net (CloudFront), 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
etag: W/"909ff158818033daa43a2d271ecda3db"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: Zy8mvkMIX3jaoBwfOuo6fRQsldjSfl0RoNwW8-Ccj9fvN0pptINVug==
age: 1643
X-Firefox-Spdy: h2
www.googletagservices.com/tag/js/gpt.js
142.250.74.162200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (40253)
Hash 6f19ac421956a9fc5f99a93bd1663d79
a5e90a3fdfb266c898f0cf800ee306ca70f972b1
03cfd54d0beb216517a87f1a7763a7800f103d58f487d43cc7b09d24b31046c0
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27561
date: Fri, 09 Dec 2022 06:03:55 GMT
expires: Fri, 09 Dec 2022 06:03:55 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1416 / 216 of 1000 / last-modified: 1670540911"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 89b79d6f1bb2318d3b1addd54e30d91b
749210d4e5fbb61a0fd556a9322aba1acc99c8a9
900f29520c0eb56377150f77e8de912ac37720cd8603af576bc2c72769cf0d24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6026
Cache-Control: max-age=87919
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:55 GMT
Etag: "63916cb0-1d7"
Expires: Sat, 10 Dec 2022 06:29:14 GMT
Last-Modified: Thu, 08 Dec 2022 04:48:48 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure-us.imrworldwide.com/v60a.js
46.51.201.242301 Moved Permanently 134 B URL HTTP/2 secure-us.imrworldwide.com/v60a.js
IP 46.51.201.242:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /v60a.js HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Fri, 09 Dec 2022 06:03:55 GMT
content-type: text/html
content-length: 134
location: https://cdn-gl.imrworldwide.com:443/v60a.js
X-Firefox-Spdy: h2
b.cdnst.net/images/favicons/favicon-180.png
151.101.194.219200 OK 5.1 kB URL HTTP/2 b.cdnst.net/images/favicons/favicon-180.png
IP 151.101.194.219:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e7d2f2c233dea8628ae6fb92918762e
62a761a625607cca57df90ae792725544cce4e2a
a3448941adc8c86188d0e1b65d14cf605ece6296a17c5a7b257972cf22520398
GET /images/favicons/favicon-180.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"13ee-184cfd83948"
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:55 GMT
content-length: 5102
X-Firefox-Spdy: h2
b.cdnst.net/images/favicons/favicon.svg
151.101.194.219200 OK 554 B URL HTTP/2 b.cdnst.net/images/favicons/favicon.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1103), with no line terminators
Hash 6206763f0ab0b0dce7a176f3b28e1b7b
503796d615ec5b24a9f5dee25ed7a4d4c858efe5
ea61b2d54cadf8c8077396e8b4ef7ed7a4319b263bda2caf0ec84df0765659f7
GET /images/favicons/favicon.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"44f-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:55 GMT
vary: Accept-Encoding
content-length: 554
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 9fee4676e2967731c34aea69b058d6ee
c1b2ba49003ff6c6e4c10f77a8eda0516fe5a8d3
2d0fff094eea612f82357d51f1407c836e365f25946cf21afcbd1549a799d6ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119995
Date: Fri, 09 Dec 2022 06:03:56 GMT
Etag: "6391eb58-1d7"
Expires: Sat, 10 Dec 2022 15:23:51 GMT
Last-Modified: Thu, 08 Dec 2022 13:49:12 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YOBjMVvJspmXSdw9nd8DP_VV0UYJKJIftsm-OhiqX-AN8DAD-xEJxA==
Age: 5679
b.cdnst.net/javascript/speedtest-main.js?v=4b580f535aa38d2c4bc4b13de35de1fa
151.101.194.219200 OK 856 kB URL HTTP/2 b.cdnst.net/javascript/speedtest-main.js?v=4b580f535aa38d2c4bc4b13de35de1fa
IP 151.101.194.219:0
File type ASCII text, with very long lines (65464)
Size 856 kB (855665 bytes)
Hash bc1f677f4bfe335c9274917804da43dd
24dbb1fcf02fa746c39fad759a07b12530256920
dd544144b4bbba68ce6bde1e28b5e825f7f4ff2ed07a4c95a00f354840e1e1d8
GET /javascript/speedtest-main.js?v=4b580f535aa38d2c4bc4b13de35de1fa HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:44:51 GMT
etag: W/"312c64-184cfdd32b8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:54 GMT
vary: Origin, Accept-Encoding
content-length: 855665
X-Firefox-Spdy: h2
gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id=
52.206.179.119200 OK 252 B URL HTTP/2 gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id=
IP 52.206.179.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash dadec174cafb20b68b47cf0edaa1cbdd
c400985cc9cbeebcd87a95764204f9139926a839
79c96aa94f0041c6992ca15ce736a0adb650805285d4fb6e91fc43878903d26b
GET /info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id= HTTP/1.1
Host: gurgle.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:56 GMT
content-type: application/json
content-length: 252
access-control-allow-origin: null
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20502
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 06:03:56 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20502
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 06:03:56 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20502
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 06:03:56 GMT
Connection: keep-alive
secure-us.imrworldwide.com/storageframe.html
46.51.201.242200 OK 3.5 kB URL HTTP/2 secure-us.imrworldwide.com/storageframe.html
IP 46.51.201.242:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 705dd5d6d8d6fd8165f3c0af8ad4c473
596a961f7024fa42b4e777fa6043000ec5040e3f
38e321832698437cbd4bf54a4314eddbee7850351a1d1b778b030c597948ec26
GET /storageframe.html HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:56 GMT
content-type: text/html
content-length: 3489
server: nginx
last-modified: Thu, 17 Nov 2022 16:35:03 GMT
etag: "637662b7-da1"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20502
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 06:03:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:15:07 GMT
age: 82129
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cb7655c8fe89a83f0096c51684aa21c
4946fcab2a99d926c45abaecf8f97b6214dee0cd
60a3066f2dcc2f696413ecec56ef1d0c1a9392f6845fac5c4319b8b9e02074fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6637
x-amzn-requestid: dfcef102-5fc6-4a59-bb21-ff0532c9fdda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlg4GtVIAMFdTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb605-0c2f58da0ae148fb4d698ecc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jQs6m8oGHeWNYbOnPM34f-YW75VuH0yNWU-TzoDMOkYcwGa9BfqBhA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:22 GMT
age: 29554
etag: "4946fcab2a99d926c45abaecf8f97b6214dee0cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46275ec87d8221804dbb99f95b035131
c47af4e5770daad212f4290527b00321285105f8
2118ec68c738683d8f7e11b95239ca92fda2b9b5054aa7b128267eec0d0634c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8803
x-amzn-requestid: e8516be3-5ce9-4f15-b522-c81c1e57a0e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtK9GavoAMFjpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af579-538cc8f300938698004f2241;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MiOdXHxd9Vmeji8Yqd8LG_EqYoMGf0YBy6by9bhfjb12y1OxKVvvqw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:56:08 GMT
age: 7668
etag: "c47af4e5770daad212f4290527b00321285105f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gurgle.speedtest.net/set_fpid/speedtest.net/c/8bfa42d98f2445abaf0078882b64c8fa
52.206.179.119200 OK 32 B URL HTTP/2 gurgle.speedtest.net/set_fpid/speedtest.net/c/8bfa42d98f2445abaf0078882b64c8fa
IP 52.206.179.119:0
File type ASCII text, with no line terminators
Hash 41863f83328d161be447fc9e88b68d95
5202b126da5dac52db17f9c76e91b87ab56a7631
bab7e7dacaaa07c424745ad360c7a36d71e6ae412239b72b9b4bb1ac750ba471
GET /set_fpid/speedtest.net/c/8bfa42d98f2445abaf0078882b64c8fa HTTP/1.1
Host: gurgle.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:56 GMT
content-type: text/plain; charset=utf-8
content-length: 32
set-cookie: fpid=8bfa42d98f2445abaf0078882b64c8fa; Path=/; Max-Age=15552000; Domain=speedtest.net; SameSite=None; Secure; HttpOnly
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7DwFYUoAI9x-ruRySpsSAXQZnxrXxUACrXp568TGZ2JSppZ1UC0uWg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:09:44 GMT
age: 82452
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 29552
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06799a30d9977b0845f525ae82355d23
6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea
d7a7eeb42d36167243b3dea7147a61119cbb5d1dcc2e2304c6ddd4a62e41efd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4914
x-amzn-requestid: b709d5ff-617b-480b-8fc3-b1408ee358b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsoEkSIAMF0ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7ea-4150ac397b97d1217cece045;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8DqbjuQMX0JOMpduQ1-wy_B1a957NXgsAHrZc1OwUzsmqJRKfkEpoA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:49:06 GMT
age: 29690
etag: "6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash dfc64a8906221f8d133f5761239f6f97
f98867ec2455fc43962c189852361fd2c632ca67
1aa5f2bce2e70b9a163acf8705052632c222389f9c69ee3ee1de97590d3623cd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=132874
Date: Fri, 09 Dec 2022 06:03:56 GMT
Etag: "63921df2-1d7"
Expires: Sat, 10 Dec 2022 18:58:30 GMT
Last-Modified: Thu, 08 Dec 2022 17:25:06 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SGYDIIsfVV--6zbuvbfmK6CthtoSwmXpi3xaxBQLIaxD_cHvL0Ew_w==
Age: 5604
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=c2d89849-2279-45d8-bac1-79f4c4872d15&zd_session_id=aa4e2b36-0323-472f-b5e3-34507e668a82&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=8bfa42d98f2445abaf0078882b64c8fa&ppid=8bfa42d98f2445abaf0078882b64c8fa
54.247.22.165303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=c2d89849-2279-45d8-bac1-79f4c4872d15&zd_session_id=aa4e2b36-0323-472f-b5e3-34507e668a82&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=8bfa42d98f2445abaf0078882b64c8fa&ppid=8bfa42d98f2445abaf0078882b64c8fa
IP 54.247.22.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=c2d89849-2279-45d8-bac1-79f4c4872d15&zd_session_id=aa4e2b36-0323-472f-b5e3-34507e668a82&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=8bfa42d98f2445abaf0078882b64c8fa&ppid=8bfa42d98f2445abaf0078882b64c8fa HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
date: Fri, 09 Dec 2022 06:03:56 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=c2d89849-2279-45d8-bac1-79f4c4872d15&zd_session_id=aa4e2b36-0323-472f-b5e3-34507e668a82&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=8bfa42d98f2445abaf0078882b64c8fa&ppid=8bfa42d98f2445abaf0078882b64c8fa&_cc=1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: h_zdbb=8bfa42d98f2445abaf0078882b64c8fa; Path=/; Max-Age=15552000; Domain=.zdbb.net; SameSite=None; Secure
csp=0; Path=/; Max-Age=2592000; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
bee.imrworldwide.com/v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/
54.230.111.42200 OK 99 B URL HTTP/2 bee.imrworldwide.com/v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/
IP 54.230.111.42:0
File type JSON data\012- , ASCII text
Hash 827663c3ae513eca472814365881c8b3
4d21f2e496f047ed5080e5ca71a34bf1af8cb68c
6ccb1c07628f71f0ae7af1483aae0894bb7febafb80691f30d94d6f3e31e8494
GET /v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/ HTTP/1.1
Host: bee.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 99
date: Thu, 08 Dec 2022 08:17:55 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: max-age=3600
content-encoding: gzip
strict-transport-security: max-age=25920000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A40OV_7FkUmah9UJ5TqUdyg3tDwuaMAr6JFZdwHYMZ3V-Xq1mBO1Vw==
age: 78361
X-Firefox-Spdy: h2
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=c2d89849-2279-45d8-bac1-79f4c4872d15&zd_session_id=aa4e2b36-0323-472f-b5e3-34507e668a82&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=8bfa42d98f2445abaf0078882b64c8fa&ppid=8bfa42d98f2445abaf0078882b64c8fa&_cc=1
54.247.22.165303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=c2d89849-2279-45d8-bac1-79f4c4872d15&zd_session_id=aa4e2b36-0323-472f-b5e3-34507e668a82&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=8bfa42d98f2445abaf0078882b64c8fa&ppid=8bfa42d98f2445abaf0078882b64c8fa&_cc=1
IP 54.247.22.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=c2d89849-2279-45d8-bac1-79f4c4872d15&zd_session_id=aa4e2b36-0323-472f-b5e3-34507e668a82&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=8bfa42d98f2445abaf0078882b64c8fa&ppid=8bfa42d98f2445abaf0078882b64c8fa&_cc=1 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Cookie: h_zdbb=8bfa42d98f2445abaf0078882b64c8fa; csp=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Fri, 09 Dec 2022 06:03:56 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=OGJmYTQyZDk4ZjI0NDVhYmFmMDA3ODg4MmI2NGM4ZmE=
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_go=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net
54.230.111.210200 OK 385 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with very long lines (385), with no line terminators
Hash b5fd7d5c611ff86d1676b6b21747caea
bdedbfd5e13c6e6e23b92e60fcee8d79364d7919
914c000aa08337760c704cc5feb9e74b9ec19e7da927332e8247297cec57fe88
GET /cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 385
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Fri, 09 Dec 2022 04:29:42 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V7Isev1ZCpQ1l5FzHzpPpvzkQc2lNV-4i2vfya997aBqPNgSFhn1Bg==
age: 5654
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-dl-multi-web.png
151.101.194.219200 OK 78 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-dl-multi-web.png
IP 151.101.194.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 8890e079e9f34641ac2e83e72fddb3e0
3bc76a8ea40f63494a0fdcbc5f31dedc501eb6cb
32b79f49ad238f7718e7ba9aa4cbb32e74a8a11a8a32dbcfdbfa926228c783f5
GET /images/gauge-gradient-dl-multi-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"132c5-184cfd83948"
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 78533
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 17 kB URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
Hash 2a424c38b6346975d98edef43c4bb467
eb89481fcc8f2b578807e986e9c0b8398d8283c9
a51cb5305bc455d12ac51d77fd4b907822233cfa0373658efbbece4a403108b2
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 07 Dec 2022 02:43:04 GMT
x-amz-version-id: KO0V33_zzBQMkGMaMpLupHqINiAUum0D
server: AmazonS3
content-encoding: gzip
date: Fri, 09 Dec 2022 02:43:08 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ehHfJfehCklTpdy3T-YEHzzjt54PmufyP4UGzPyzM97AHJW8XMQ7QA==
age: 12049
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-ul-multi-web.png
151.101.194.219200 OK 74 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-ul-multi-web.png
IP 151.101.194.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 6751b2a4d9a7fb3ee0796273b9f3e37b
344d00d650da41f3ed0c454f93c3e07fb45475dd
0d23c759f4302ff762012a6ff00cbd124858dd9b387ea06eafa727c5e726fd77
GET /images/gauge-gradient-ul-multi-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"12248-184cfd83948"
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 74312
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-dl-single-web.png
151.101.194.219200 OK 62 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-dl-single-web.png
IP 151.101.194.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 617f927ff5693553f31ed9f74627bc1c
6cd11711163f299a146614cddefea185de42c8c8
53ef39c91fa4b4f2d68d15483dcd7a2bc4b089c954e7b5a6808c6560740c887f
GET /images/gauge-gradient-dl-single-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"f3d1-184cfd83948"
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Origin
content-length: 62417
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-ul-single-web.png
151.101.194.219200 OK 65 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-ul-single-web.png
IP 151.101.194.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash d1dc88ef5824cb2b83db61a7b40265d7
cad3a25dbf0c2a750df576f001ca16f780e89fea
d3c3db2b5256d7c5fa7f2502e752ced784853fe0fdd01d8a219bd9e041a579c7
GET /images/gauge-gradient-ul-single-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"ff47-184cfd83948"
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 65351
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_insights.svg
151.101.194.219200 OK 632 B URL HTTP/2 b.cdnst.net/images/icg_insights.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (767)
Hash 1dd75d9f003576b4f7c16ce3db022fb6
45824c0b887ea969b5c06912460e04d9ed1e9038
cf5a635aa243a9fb2c645ceaacbe30a8b89f88acb03219bfdf8fe37812b3f173
GET /images/icg_insights.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"490-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Accept-Encoding
content-length: 632
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_globalindex.svg
151.101.194.219200 OK 854 B URL HTTP/2 b.cdnst.net/images/icg_globalindex.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1607)
Hash 955004aa76b7563342da8c5638e85917
9a4c7e53ef2f2fac734670596e4f13f420fb09d8
5d9b99de9761666f5b2f4d578610922522a4cf7754ea6d47c31488c1bcf07476
GET /images/icg_globalindex.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"80f-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Accept-Encoding
content-length: 854
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_5g.svg
151.101.194.219200 OK 1.1 kB URL HTTP/2 b.cdnst.net/images/icg_5g.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1879)
Hash 38a0887861d123e3073bc3b1e3619305
220537693625dc57d33f16f3ed184cc61e2c1919
dbd830272351c00f0b0b990e13ff70088d704bb1b8a1c2e62b265295a475ad08
GET /images/icg_5g.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"8e9-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Accept-Encoding
content-length: 1110
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_enterprise.svg
151.101.194.219200 OK 499 B URL HTTP/2 b.cdnst.net/images/icg_enterprise.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1191)
Hash a5c920adb9ebfea363efb502b478e72e
b6edfa3fdd099cb9dfb592464903ddf5b7188999
6efc71b52a8ff0b5f2acef4bc4ab187521837977cd6732dc60944b4ae01bcfbc
GET /images/icg_enterprise.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"66c-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Accept-Encoding
content-length: 499
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/conf/config250.js
54.230.111.95200 OK 60 kB URL HTTP/2 cdn-gl.imrworldwide.com/conf/config250.js
IP 54.230.111.95:0
Hash e69306d3d2207bbd5d08e1f13cf443a5
de0bfe558ddd2b0ce17819fd9e7a5ad61a797277
68e98d0b39e1ab99274f305c0a7290ac5e18d7bbc11f5d14114447294a73d5d2
GET /conf/config250.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 05:44:55 GMT
last-modified: Fri, 09 Dec 2022 05:21:38 GMT
etag: W/"d830dd2d4776e565cb66d4839922ed6d"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400,s-maxage=86400
x-amz-version-id: bz2mE81cd2h.FG2qdGVD0aAs7iZ8oe6W
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 05YnlzG_0pZGLIasvrWwulEb28ysQqG7w9LQJrmtv6Sj2HhdYhhCVA==
age: 1142
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=GTM-MPW4L3J
142.250.74.46200 OK 45 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-MPW4L3J
IP 142.250.74.46:0
File type ASCII text, with very long lines (2066)
Hash 3a0d4b271eef5b1fd13fa5e19c3ea355
ac87576f858a8cd1e1714a8fa6b964ec694f02b1
ea9285a315397f024beb2d8699749525bf2a18faf5e6a6914acbf87f22d6a3de
GET /gtm/optimize.js?id=GTM-MPW4L3J HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 06:03:57 GMT
expires: Fri, 09 Dec 2022 06:03:57 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bf8858fa52de668b0013cf9ce66d290c
9c319173ee6a48c6e717e9e8764008564aabe7ba
93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trc.taboola.com/1288978/log/3/unip?en=SpeedTestViewContent>mcb=958733586
151.101.129.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1288978/log/3/unip?en=SpeedTestViewContent>mcb=958733586
IP 151.101.129.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1288978/log/3/unip?en=SpeedTestViewContent>mcb=958733586 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:57 GMT
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670565837.320777,VS0,VE95
x-vcl-time-ms: 95
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/novms/html/ls.html
54.230.111.95200 OK 3.5 kB URL HTTP/2 cdn-gl.imrworldwide.com/novms/html/ls.html
IP 54.230.111.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 0f192e2fe590c68ce3e8488be94b3f6d
39ac255fcc3203ab14376112ae0cae19437c904c
1bb2be2ab1c0b68af744d3b96ac2aaa716c98869451a1b9183addcd74a78d81f
GET /novms/html/ls.html HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 28 Sep 2022 14:09:00 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: kefD87rpNa3sUBHNjAEOkjjRzic54A4V
server: AmazonS3
content-encoding: gzip
date: Fri, 09 Dec 2022 05:23:32 GMT
cache-control: max-age=86400
etag: W/"7fa83dfc7b78314b137e2eb13834daa7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: spmgNpWrFVhu4E0BFSftHaiTF7Tkg5w6yK0h5LeTQ_aSD74BXtpkwg==
age: 2426
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3336&u=https%3A%2F%2Fwww.speedtest.net%2F&pid=QyDUVx3W834Tf&cb=0&ws=1280x939&v=22.1201.834&t=2000&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1591980299503-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980417879-0%22%2C%22s%22%3A%5B%22160x600%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980440646-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980270785-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980370035-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 2.0 kB URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3336&u=https%3A%2F%2Fwww.speedtest.net%2F&pid=QyDUVx3W834Tf&cb=0&ws=1280x939&v=22.1201.834&t=2000&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1591980299503-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980417879-0%22%2C%22s%22%3A%5B%22160x600%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980440646-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980270785-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980370035-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with very long lines (2030)
Hash d7b41e76fd08acf06d12f5c09d14d54c
3961b952d430881a565f9ebfd851ed21163ee7c8
ef0a89bd21dc114b39885262e0be6d240dc481549cd58b45ea3cff2dd8a4db7d
GET /e/dtb/bid?src=3336&u=https%3A%2F%2Fwww.speedtest.net%2F&pid=QyDUVx3W834Tf&cb=0&ws=1280x939&v=22.1201.834&t=2000&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1591980299503-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980417879-0%22%2C%22s%22%3A%5B%22160x600%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980440646-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980270785-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980370035-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 2049
server: Server
date: Fri, 09 Dec 2022 06:03:57 GMT
x-amz-rid: E86G87NCRE8SKWVC3941
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rEjD5xVY6s7-0JwPhK-wUSbpcmrGangaMuMWsc9QBkrJmYdmaei-wg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ba9eca20b85e00448bccd569867c6ebf
86e815a94806bd84b0d384f60b837bb9b97d9357
ef07b10c3f615cebe50d0886b6b69959a775ade45c0fe71597c4168a7d2d3112
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4025
Cache-Control: max-age=112569
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "6391d4cd-117"
Expires: Sat, 10 Dec 2022 13:20:06 GMT
Last-Modified: Thu, 08 Dec 2022 12:13:01 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=2124057527.1670565837>m=2oebu0&aip=1&z=2065412763
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=2124057527.1670565837>m=2oebu0&aip=1&z=2065412763
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=2124057527.1670565837>m=2oebu0&aip=1&z=2065412763 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 06:03:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 847bc95ac64411e691028c1f7bf6d83f
d6a2ce723e00d0cc09c9ff0efaa6fcfe956d040a
84c607493e837bd6824b565a86a20a92eb1854f204da8d9d7ce0e1df40a6bde0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4451
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Last-Modified: Fri, 09 Dec 2022 04:49:46 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
secure-us.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,NA&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&c16=sdkv,bj.6.0.0&uoo=&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&retry=0
46.51.201.242200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,NA&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&c16=sdkv,bj.6.0.0&uoo=&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&retry=0
IP 46.51.201.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=session&c9=devid,&c13=asid,NA&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&c16=sdkv,bj.6.0.0&uoo=&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&retry=0 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=44c19120-7787-11ed-bc0a-679aa2ca0b2d; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Wed, 03-Jan-2024 06:03:57 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1dd18db35a9809c622641bd11f5579fd
645d9e24b9e2fb1f2af64fe5dca5817c89da0f74
b787a7d44fc13b4986e3bd52387630a1a0b0a9940f2d02a02bd64157ac935e34
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4423
Cache-Control: max-age=122675
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "6391fab9-1d7"
Expires: Sat, 10 Dec 2022 16:08:32 GMT
Last-Modified: Thu, 08 Dec 2022 14:54:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2305
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
cache-control: no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 06:03:55 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 32922f835a72a4939b1a595f942be9dc
84184a058c1e3a2bf3c9105df342e38d91e64411
eacbeb14bd7e0c1ecd83a9c3410e7e89cfd2b5b5cb74a383b9d612eaffc13191
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87511
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63916f7b-1d7"
Expires: Sat, 10 Dec 2022 06:22:28 GMT
Last-Modified: Thu, 08 Dec 2022 05:00:43 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: imEmz-Netk-DZaRJncIvQ5KpEJODaK_wsb7RY9gKTXBN_2UPOg26tw==
Age: 4905
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 754c1548c1249ebe6ac6b0ceaf535160
fcc2fa588bacf6aec6717f8a6c11c9c798f8fbbf
f26e3ea75948e07024c07ee291f71f36ed4446ab749562e08f489d3493133f05
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 06:03:57 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 19:45:31 GMT
Expires: Tue, 13 Dec 2022 19:45:30 GMT
Etag: "fcc2fa588bacf6aec6717f8a6c11c9c798f8fbbf"
Cache-Control: max-age=394292,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b8a65bd2cb517-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ookla-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.speedtest.net%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=e0c36470-a85e-4b2c-a7e4-958c74bbc138%2C7daff1c8-69b1-4b0d-a441-74a977e60e94%2Cdd2f8d92-79b8-48c1-a275-21b299a228fc%2Cd4e2c5bb-90d9-491e-890b-61fc2ef3f972%2Cf091e285-21bd-4dae-9d91-5cea7cd17911&nocache=1670565836653&us_privacy=1YNY&aus=728x90%7C160x600%7C300x250%7C300x250%7C728x90&divids=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&aucs=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&auid=538306129%2C538306131%2C538306127%2C538306123%2C538306126
34.98.64.218200 OK 79 B URL HTTP/2 ookla-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.speedtest.net%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=e0c36470-a85e-4b2c-a7e4-958c74bbc138%2C7daff1c8-69b1-4b0d-a441-74a977e60e94%2Cdd2f8d92-79b8-48c1-a275-21b299a228fc%2Cd4e2c5bb-90d9-491e-890b-61fc2ef3f972%2Cf091e285-21bd-4dae-9d91-5cea7cd17911&nocache=1670565836653&us_privacy=1YNY&aus=728x90%7C160x600%7C300x250%7C300x250%7C728x90&divids=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&aucs=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&auid=538306129%2C538306131%2C538306127%2C538306123%2C538306126
IP 34.98.64.218:0
File type JSON data\012- , ASCII text
Hash c96d6a0fae1b785b442f2cacf81f3392
8bee746d1f15a7fe5c203bbac7f8862c126a252a
b451dc44fab5169c150738e3716c6298c233766f17a1ef2664f8b9b429b12c24
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.speedtest.net%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=e0c36470-a85e-4b2c-a7e4-958c74bbc138%2C7daff1c8-69b1-4b0d-a441-74a977e60e94%2Cdd2f8d92-79b8-48c1-a275-21b299a228fc%2Cd4e2c5bb-90d9-491e-890b-61fc2ef3f972%2Cf091e285-21bd-4dae-9d91-5cea7cd17911&nocache=1670565836653&us_privacy=1YNY&aus=728x90%7C160x600%7C300x250%7C300x250%7C728x90&divids=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&aucs=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&auid=538306129%2C538306131%2C538306127%2C538306123%2C538306126 HTTP/1.1
Host: ookla-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json
content-length: 79
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 601f2db2f73e536b701ff9a120b866b6
4849bbe4ba83098389a8eb3b3e65ab95b2b217c8
4b1338d6ca78431f7fead4af5e907d391729ae7bb70ef845cf48f350c846e513
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130825
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63921dd6-1d7"
Expires: Sat, 10 Dec 2022 18:24:22 GMT
Last-Modified: Thu, 08 Dec 2022 17:24:38 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OOJLwFlMxaljw6zCbK5nMfp9PxRlHqeww85jgPWaq88KCGcL0a-fOA==
Age: 3584
myv43g9baubzdppimhohay03a2tu71670565836.nuid.imrworldwide.com/
143.204.55.117200 OK 35 B URL HTTP/2 myv43g9baubzdppimhohay03a2tu71670565836.nuid.imrworldwide.com/
IP 143.204.55.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET / HTTP/1.1
Host: myv43g9baubzdppimhohay03a2tu71670565836.nuid.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Tue, 11 Sep 2018 17:05:20 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Dec 2022 02:34:37 GMT
etag: "c2196de8ba412c60c22ab491af7b1409"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PU_OhIpeJTGvRXmRhhFw0nFEegRVilBptgaYMNVWKJ7n8ZVbbOOycQ==
age: 12561
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0970e1bd95efa3c70fc3e7dad34e1060
46c2b89926b987d7de96dff162d27831b70218d6
413b43acb64e204876ae367451cf321afbf328228eeb16c03caea9d21aa1e73c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4593
Cache-Control: max-age=159578
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63928a36-1d7"
Expires: Sun, 11 Dec 2022 02:23:35 GMT
Last-Modified: Fri, 09 Dec 2022 01:07:02 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0970e1bd95efa3c70fc3e7dad34e1060
46c2b89926b987d7de96dff162d27831b70218d6
413b43acb64e204876ae367451cf321afbf328228eeb16c03caea9d21aa1e73c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4593
Cache-Control: max-age=159578
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63928a36-1d7"
Expires: Sun, 11 Dec 2022 02:23:35 GMT
Last-Modified: Fri, 09 Dec 2022 01:07:02 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0970e1bd95efa3c70fc3e7dad34e1060
46c2b89926b987d7de96dff162d27831b70218d6
413b43acb64e204876ae367451cf321afbf328228eeb16c03caea9d21aa1e73c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4554
Cache-Control: max-age=159539
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63928a36-1d7"
Expires: Sun, 11 Dec 2022 02:22:56 GMT
Last-Modified: Fri, 09 Dec 2022 01:07:02 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cefe5f44b1ac1b7023154cb61f9af916
bb965871961c96f7c329ac03854b5c77b4057ac4
1e317d49764cf3a223dec974584a7390524ba2b6a3baeb5d2e9500a9c3d1de5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4194
Cache-Control: max-age=86094
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63916cb9-1d7"
Expires: Sat, 10 Dec 2022 05:58:51 GMT
Last-Modified: Thu, 08 Dec 2022 04:48:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0970e1bd95efa3c70fc3e7dad34e1060
46c2b89926b987d7de96dff162d27831b70218d6
413b43acb64e204876ae367451cf321afbf328228eeb16c03caea9d21aa1e73c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4554
Cache-Control: max-age=159539
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63928a36-1d7"
Expires: Sun, 11 Dec 2022 02:22:56 GMT
Last-Modified: Fri, 09 Dec 2022 01:07:02 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 32922f835a72a4939b1a595f942be9dc
84184a058c1e3a2bf3c9105df342e38d91e64411
eacbeb14bd7e0c1ecd83a9c3410e7e89cfd2b5b5cb74a383b9d612eaffc13191
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87493
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63916f7b-1d7"
Expires: Sat, 10 Dec 2022 06:22:10 GMT
Last-Modified: Thu, 08 Dec 2022 05:00:43 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rVRSYrWFCuCARB07E6XmxKp8d8r6haJP4sauhjxye2a26ODAihb-8A==
Age: 4887
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cefe5f44b1ac1b7023154cb61f9af916
bb965871961c96f7c329ac03854b5c77b4057ac4
1e317d49764cf3a223dec974584a7390524ba2b6a3baeb5d2e9500a9c3d1de5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4194
Cache-Control: max-age=86094
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63916cb9-1d7"
Expires: Sat, 10 Dec 2022 05:58:51 GMT
Last-Modified: Thu, 08 Dec 2022 04:48:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cefe5f44b1ac1b7023154cb61f9af916
bb965871961c96f7c329ac03854b5c77b4057ac4
1e317d49764cf3a223dec974584a7390524ba2b6a3baeb5d2e9500a9c3d1de5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4172
Cache-Control: max-age=86072
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "63916cb9-1d7"
Expires: Sat, 10 Dec 2022 05:58:29 GMT
Last-Modified: Thu, 08 Dec 2022 04:48:57 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1dd18db35a9809c622641bd11f5579fd
645d9e24b9e2fb1f2af64fe5dca5817c89da0f74
b787a7d44fc13b4986e3bd52387630a1a0b0a9940f2d02a02bd64157ac935e34
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4937
Cache-Control: max-age=123188
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:57 GMT
Etag: "6391fab9-1d7"
Expires: Sat, 10 Dec 2022 16:17:05 GMT
Last-Modified: Thu, 08 Dec 2022 14:54:49 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.159.68.12204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.159.68.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 688
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.159.68.12204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.159.68.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 688
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.159.68.12204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.159.68.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 691
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.159.68.12204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.159.68.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 694
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cafb2fd178f94b7e78fc86ccc3d0b3e1
0847e136ab13d550697fc80d0acce5059cc072e0
b59c52dca670a3866dcc614519bbcfbea394509a532cb707c534da926363e02b
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 892
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3c0aa5b11bd123bf3d16dc3b2fc47c5c
cbca17e07334c688be24a01e9361252a6f1f8a4e
30f4c655f9db6b2a32115606afbcd54665991dd7187c746a38a0d950c57f43eb
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 895
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=f091e285-21bd-4dae-9d91-5cea7cd17911&l_pb_bid_id=12e4e903fe60da4&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.6177751353304675
213.19.162.41200 OK 294 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=f091e285-21bd-4dae-9d91-5cea7cd17911&l_pb_bid_id=12e4e903fe60da4&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.6177751353304675
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 48def2e515c89534c052cce66479169b
c5752c9de70fcd7f2b9ad775ee94be762933eccf
26348645444c5a1b3b641a49369b471c24bee5f9119932c2e9e5e45e283f4f17
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=f091e285-21bd-4dae-9d91-5cea7cd17911&l_pb_bid_id=12e4e903fe60da4&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.6177751353304675 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBG3RM5M-21-5JJM; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpaqncHGrFqZe9DtVM30fCgqt4j32Jy7RiwY6aA1eJOrbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 294
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6991dc3e874012af7d6b4029f4dbfa98
9c60c96deebc6460d0759a042ce38ef10c582037
e3f9efb9455438bb4f80e882341658b51e11d3f5cd6f5033d04f6d61499c0565
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 897
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
www.speedtest.net/api/js/servers?engine=js&limit=10&https_functional=true
104.16.210.12200 OK 873 B URL HTTP/2 www.speedtest.net/api/js/servers?engine=js&limit=10&https_functional=true
IP 104.16.210.12:0
Hash 6eac6e6fb369e16fe026002d1d4ba704
3ecbcfb166060f79580d5999a0000d80bd149865
cfb2b0b0082da0d92f3c9ecdeb9cd8e1c7b9a0426ffb10e2edf0399ec6396f33
GET /api/js/servers?engine=js&limit=10&https_functional=true HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: __cf_bm=kFRDcATDuZVYsm9_vnmM0cM4N2vCMYsAoFzCq2kiItM-1670565834-0-AQ6pTAaiLwTaSnevVvh53zkt9PGmKRplmvI8xrxPsUWjoBJ+GQVAzQVZcX8XdgSYAQ8FqJGWcekS1VP+l3O8B/w=; fu=1; h_zdbb=; zpack=eyJ6ZGJiIjoiIiwiZnBpZCI6IjhiZmE0MmQ5OGYyNDQ1YWJhZjAwNzg4ODJiNjRjOGZhIiwicHBpZCI6IjhiZmE0MmQ5OGYyNDQ1YWJhZjAwNzg4ODJiNjRjOGZhIiwidWVfbTJzIjoiIiwibGNsX2lkIjoiIiwibG9jIjoiaHR0cHM6Ly93d3cuc3BlZWR0ZXN0Lm5ldC8iLCJwdl9pZCI6ImMyZDg5ODQ5LTIyNzktNDVkOC1iYWMxLTc5ZjRjNDg3MmQxNSIsInNlc3NfaWQiOiJhYTRlMmIzNi0wMzIzLTQ3MmYtYjVlMy0zNDUwN2U2NjhhODIifQ==; fpid=8bfa42d98f2445abaf0078882b64c8fa; nol_fpid=a8dwebzrcbhejjtm569wwso2sywmv1670565836|1670565836498|1670565836498|1670565836498
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json
cache-control: max-age=86400
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
expires: Sat, 10 Dec 2022 06:03:57 GMT
x-xss-protection: 1; mode=block
set-cookie: st4-sid=s%3AwMVeST2PLml3rKnKBI2BTd5oU5h8i-2A.63dGqnDzcdDop6CGoiApmHrPCIvIW5HbGLjDZNNtK8c; Domain=speedtest.net; Path=/; Expires=Fri, 09 Dec 2022 06:33:57 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776b8a638b45b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=7daff1c8-69b1-4b0d-a441-74a977e60e94&l_pb_bid_id=9180b04743c753&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.6228670379546475
213.19.162.41200 OK 294 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=7daff1c8-69b1-4b0d-a441-74a977e60e94&l_pb_bid_id=9180b04743c753&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.6228670379546475
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 794a403dcfe0e58aa248858af7e70e93
aa40fe19b442cf14876c8c30e22ba8115b173c28
8908ca45788a8933bd412f5df1cdf262c05fea8bf3064ca0fd72cc9f9b65c2da
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=7daff1c8-69b1-4b0d-a441-74a977e60e94&l_pb_bid_id=9180b04743c753&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.6228670379546475 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBG3RM5X-1Z-38YT; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpVTbGzYONms+9DtVM30fCgqt4j32Jy7RiwY6aA1eJOrbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 294
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3e22672985751e38e33036a3b7f9d5ca
4e0996a168dd71af8c37d390a6770d67c4f9158e
606809ac513464313bc048ed5631dc58ccfebb7ba3adf27b85c123840ceccf56
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 911
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift
52.95.118.179302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift
IP 52.95.118.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Fri, 09 Dec 2022 06:03:57 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: HM8HAHYDQGJFVY3SC7KJ
Set-Cookie: ad-id=A5lLSnFRVEY8srR-jzbu2VA|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 06:03:57 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
c2shb.pubgw.yahoo.com/bidRequest
52.28.203.152200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 52.28.203.152:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8bde50241556b4cfbf5021048a76e644
2a8d7f4f5ddc999aca0d03470be56d33a3a0c590
dff35de72ee0eb5b4c24744daafebc9c2c6604ed9af799afcfadd423f4f7279f
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 925
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.159.68.12204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.159.68.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 689
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:03:57 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d4e2c5bb-90d9-491e-890b-61fc2ef3f972&l_pb_bid_id=111196bb6e6e9b9&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.43664159113785506
213.19.162.41200 OK 301 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d4e2c5bb-90d9-491e-890b-61fc2ef3f972&l_pb_bid_id=111196bb6e6e9b9&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.43664159113785506
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (301), with no line terminators
Hash d0ec142aa24e8d586940524772fd651f
5d46070aeb23d22a63fe1fb97591acccc175a13c
91b981a5eb65139d0b72fbd2a0c2daf27baa9fdc57c3c8d76362e8d9cab8253b
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d4e2c5bb-90d9-491e-890b-61fc2ef3f972&l_pb_bid_id=111196bb6e6e9b9&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.43664159113785506 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBG3RM5P-1O-6WGP; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qr7liSL85ITle9DtVM30fCgqt4j32Jy7RiwY6aA1eJOrbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 301
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
37.252.171.85200 OK 248 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.85:0
File type JSON data\012- , ASCII text, with very long lines (602), with no line terminators
Hash fc8b10bf726b3a68810794aa95c393f1
30ea1007a1b4ab8ccd9d2b546247520f8c49698e
bd7089b341b33664dab2d81b1f91acef84e89958e1b0cb8c5e0ab9cc4562ab8d
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1650
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 09 Dec 2022 06:03:57 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.speedtest.net
AN-X-Request-Uuid: 9ba725d4-24b7-4799-bc86-5635c5b8d1b3
Set-Cookie: icu=ChgIo9cnEAoYASABKAEwzZ_LnAY4AUABSAEQzZ_LnAYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 09-Mar-2023 06:03:57 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=194946513329397996; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 09-Mar-2023 06:03:57 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
52.95.118.179200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
IP 52.95.118.179:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Fri, 09 Dec 2022 06:03:57 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: 0ZKZV8TDZKQGX7K0RD2P
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
region1.analytics.google.com/g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oebu0&_p=472791215&_gaz=1&cid=2124057527.1670565837&ul=en-us&sr=1280x1024&_s=1&sid=1670565836&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1670565836357&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oebu0&_p=472791215&_gaz=1&cid=2124057527.1670565837&ul=en-us&sr=1280x1024&_s=1&sid=1670565836&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1670565836357&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oebu0&_p=472791215&_gaz=1&cid=2124057527.1670565837&ul=en-us&sr=1280x1024&_s=1&sid=1670565836&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1670565836357&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.speedtest.net
date: Fri, 09 Dec 2022 06:03:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-KKLSRK6J1Z&cid=2124057527.1670565837>m=2oebu0&aip=1
108.177.14.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-KKLSRK6J1Z&cid=2124057527.1670565837>m=2oebu0&aip=1
IP 108.177.14.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KKLSRK6J1Z&cid=2124057527.1670565837>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.speedtest.net
date: Fri, 09 Dec 2022 06:03:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9421703526d36fdb18db1ef7806e7954
42d39fbdb225e5d9bab9efb8f316b1ec76b0fc6b
00c9c52a68e906d9114b095db20eefb96b37c0cb396e2e2eebbf980f25374466
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2488
Cache-Control: max-age=112480
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:58 GMT
Etag: "6391da76-116"
Expires: Sat, 10 Dec 2022 13:18:38 GMT
Last-Modified: Thu, 08 Dec 2022 12:37:10 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
htlb.casalemedia.com/cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2219091ec79663d008%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2220b7a5de67629a98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%222183a2df928c70c%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%22228ff1e75adabba%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%2223e1071462754ad%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%22245f5763e2cc27f8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D
172.64.154.237200 OK 38 B URL HTTP/2 htlb.casalemedia.com/cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2219091ec79663d008%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2220b7a5de67629a98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%222183a2df928c70c%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%22228ff1e75adabba%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%2223e1071462754ad%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%22245f5763e2cc27f8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D
IP 172.64.154.237:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b6654b4fc11edd56881961a8d2ddcb1e
c9fdad54f3d95263a78cd3f2eef61c3f04c95e38
b270b6751e4bbc6e18cc2bbb47046c3290febad25d9a7c4aa828a421f66cf77c
GET /cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2219091ec79663d008%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2220b7a5de67629a98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%222183a2df928c70c%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%22228ff1e75adabba%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%2223e1071462754ad%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%22245f5763e2cc27f8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:58 GMT
content-type: application/json
content-length: 38
cf-ray: 776b8a652e58b4ee-OSL
access-control-allow-origin: https://www.speedtest.net
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RDSjYVSzLMMlsS%2Be2wfD64LLMByfU%2BN0fP2zTE%2Bmwh0bfd9Inez5hYGXvf8992K2mYKZ5jIwx4hS3hTD122Ve7nwWUCVSECRNmmecuLdYmTC011Se5PuuyqHwSaF2X%2FhIjPFws6C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ba9eca20b85e00448bccd569867c6ebf
86e815a94806bd84b0d384f60b837bb9b97d9357
ef07b10c3f615cebe50d0886b6b69959a775ade45c0fe71597c4168a7d2d3112
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4024
Cache-Control: max-age=112566
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:58 GMT
Etag: "6391d4cd-117"
Expires: Sat, 10 Dec 2022 13:20:04 GMT
Last-Modified: Thu, 08 Dec 2022 12:13:01 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 7d3e153c47919244649ef0b8c27d336f
642f94db0e83dcea6804451e1c0bcd5afd7ba9f8
1539a5426472d7725b814030ff5e570f164b443ae10ff0088674276813dbdf6e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3511
Cache-Control: max-age=91523
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:58 GMT
Etag: "6391849a-2d7"
Expires: Sat, 10 Dec 2022 07:29:21 GMT
Last-Modified: Thu, 08 Dec 2022 06:30:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 727
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 209db360df4b336bf8214ab153588cd2
79dc9b8dabca3ce1ec609e1cdc2c72df672340cc
e4aee081d074b9c2a8ae63c233f559d47ee3ad832e4a569594314d6e8b4ab33c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4AEE081D074B9C2A8AE63C233F559D47EE3AD832E4A569594314D6E8B4AB33C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7261
Expires: Fri, 09 Dec 2022 08:04:59 GMT
Date: Fri, 09 Dec 2022 06:03:58 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 209db360df4b336bf8214ab153588cd2
79dc9b8dabca3ce1ec609e1cdc2c72df672340cc
e4aee081d074b9c2a8ae63c233f559d47ee3ad832e4a569594314d6e8b4ab33c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4AEE081D074B9C2A8AE63C233F559D47EE3AD832E4A569594314D6E8B4AB33C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7261
Expires: Fri, 09 Dec 2022 08:04:59 GMT
Date: Fri, 09 Dec 2022 06:03:58 GMT
Connection: keep-alive
cdn.id5-sync.com/api/1.0/id5-api.js
104.22.52.86200 OK 17 kB URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 104.22.52.86:0
Hash f09e962e2bb2fd669e6e90967e0a8d25
955c8ea89692d7d51cb137a12e1db73ae713585b
720d014ced3dbd61f41819fc038e0d5f27966fe60a2308b794c0ec0cb3e8819d
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:58 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: NzzDMQRIzsXNjVR7/B6e4yrrDcazBk60q2/S2QH7YxwqiaX7/iQchWRPdgPY0BswypKEPiqaJg8=
x-amz-request-id: EK159HTWSS7GNBQ8
last-modified: Thu, 24 Nov 2022 12:48:29 GMT
etag: W/"9ee82d693d1e83b3a37ee20226716f78"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 2741
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 776b8a6879f40b41-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
lb.eu-1-id5-sync.com/lb/v1
141.95.98.64200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 141.95.98.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 77a9eccff73d77725581dd967cc6864b
65ded84d280186a700b9f42240ec004740186693
eac263dc5de8ae56f1a25cf449e1c4b9a3427fa278c34092e757ac0195308d9f
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.speedtest.net
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 09 Dec 2022 06:03:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
aa.agkn.com/adscores/g.pixel?sid=9212302198
3.67.155.142302 Found 0 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212302198
IP 3.67.155.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adscores/g.pixel?sid=9212302198 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:03:58 GMT
location: https://zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=icWJ9R5CXzBI67jiPcQ6pel7%2B4kpopvAPqmISYjX2i0%3D
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3A6WZh0SAQJ1HvnaiG3Ms0wgH8RsBdnB7W; Path=/; Domain=.agkn.com; Expires=Sat, 09-Dec-2023 06:03:58 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8585fe73b51c643ee300c3df9313bfe1
c184ce0c12fbfc0f17a81ad0e0bdaad5503bceb1
807b590f961c83886bbd27c879dfbf03a3336005cdabbba42d4d63bdcb11bf51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.speedtest.net
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.speedtest.net
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.speedtest.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 09 Dec 2022 06:03:58 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.speedtest.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.speedtest.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.speedtest.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 09 Dec 2022 06:03:58 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8585fe73b51c643ee300c3df9313bfe1
c184ce0c12fbfc0f17a81ad0e0bdaad5503bceb1
807b590f961c83886bbd27c879dfbf03a3336005cdabbba42d4d63bdcb11bf51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 23f0fed6cb9af080a75d8b899ae5bd84
2c02a8cb4a6e70d8ba58696fd709838656d443c3
b1102b6924fcffe1f07a07385010a47aa142435d4efc79b338e50f8258a4d5da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 50c5af9599cdab62e16a477bf0fe9486
ad7851af6a10db1983291b7bf9b063b904ac0516
f7fb8ddce845b7a3554626edaecacd1aa8620452b455a99373b7c264b8fdf012
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7FB8DDCE845B7A3554626EDAECACD1AA8620452B455A99373B7C264B8FDF012"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5301
Expires: Fri, 09 Dec 2022 07:32:19 GMT
Date: Fri, 09 Dec 2022 06:03:58 GMT
Connection: keep-alive
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-389482-3&cid=2124057527.1670565837&jid=257056337&_u=YADAAEAAQAAAACAGK~&z=138265309
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-389482-3&cid=2124057527.1670565837&jid=257056337&_u=YADAAEAAQAAAACAGK~&z=138265309
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-389482-3&cid=2124057527.1670565837&jid=257056337&_u=YADAAEAAQAAAACAGK~&z=138265309 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 06:03:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
id5-sync.com/g/v2/718.json
141.95.33.111200 216 B URL HTTP/1.1 id5-sync.com/g/v2/718.json
IP 141.95.33.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d1b1e2a440cf593b1e12a145a7c07bf0
27e35624838e216f26e76e5f35e5f1a860004b10
83087e1bf4760e2ff543ac055e1c86741703388088d7a26324e00596ecb9f14b
POST /g/v2/718.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 390
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 09 Dec 2022 06:03:58 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
216.58.207.193200 OK 2.7 kB URL HTTP/2 9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Fri, 09 Dec 2022 06:03:58 GMT
expires: Sat, 09 Dec 2023 06:03:58 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stags.bluekai.com/site/31875?limit=0&id=8bfa42d98f2445abaf0078882b64c8fa&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
184.24.45.23200 OK 62 B URL HTTP/2 stags.bluekai.com/site/31875?limit=0&id=8bfa42d98f2445abaf0078882b64c8fa&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
IP 184.24.45.23:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /site/31875?limit=0&id=8bfa42d98f2445abaf0078882b64c8fa&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Fri, 09 Dec 2022 06:03:58 GMT
X-Firefox-Spdy: h2
cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
95.101.10.177200 OK 464 B URL HTTP/2 cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
IP 95.101.10.177:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (844), with no line terminators
Hash 3fbb44459e03ec28fa7f75b884c27348
2cc24613c20d03b31d5cd1f9168a494063816f98
9e01542e265d3fd24057e2c3cf854209af70333ff4185d495f24c83d2fe78210
GET /js/zd-core-olt.min.js?v=5 HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=8bfa42d98f2445abaf0078882b64c8fa; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: lCLAFT6kJGTngsYQ5ov7bZdERN/T7DaOlayD+VfMxXQiEOhn+9vwatS6W75K1qq8daoHd1L7geY=
x-amz-request-id: 8ZFZKMY3S56JDRMY
last-modified: Mon, 05 Dec 2022 11:30:00 GMT
x-amz-version-id: HGe8YiJ_6HLUZ54JbbmkseKs.L_GCOzJ
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Fri, 16 Dec 2022 06:03:58 GMT
date: Fri, 09 Dec 2022 06:03:58 GMT
content-length: 464
X-Firefox-Spdy: h2
cdn.static.zdbb.net/js/krux-coretag.js
95.101.10.177200 OK 255 B URL HTTP/2 cdn.static.zdbb.net/js/krux-coretag.js
IP 95.101.10.177:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (335), with no line terminators
Hash 6c9513103cbd1be53daa576fb7cab6ba
be6c635a337ee938ad4182af45f2f29ec982130d
58fbb650ec1be39443da048be527cca832f76e1712f7822ccf3cba36fd44097b
GET /js/krux-coretag.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=8bfa42d98f2445abaf0078882b64c8fa; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CL3y4EW//mRvh8+cPJe5BYNwSEjhiUoCPG7YH9BaQbkM1BmmlLoWnJ33lpYrRXeRA6xrufe328s=
x-amz-request-id: 8ZFMQBNFKJZT0JK9
last-modified: Mon, 05 Dec 2022 11:29:53 GMT
x-amz-version-id: j.AjeasPt5YV66gjAlZ7HO_ST_PWvkHN
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Sat, 10 Dec 2022 06:03:58 GMT
date: Fri, 09 Dec 2022 06:03:58 GMT
content-length: 255
X-Firefox-Spdy: h2
cdn.krxd.net/controltag/spgdj7g8u.js
151.101.66.133200 OK 22 B URL HTTP/2 cdn.krxd.net/controltag/spgdj7g8u.js
IP 151.101.66.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 49fced5a15e8763d46199088fad93fca
8b3f69bdb1250e55ab9968a157416c8968369ec3
09819ee7c805183bdc1c2cb02e46b868c31b426baa5bbede8b56ae6163af04be
GET /controltag/spgdj7g8u.js HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-app-cache: MISS
cache-control: public, max-age=1200
x-response-time: 0
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_config_service_ash_prod
via: 1.1 varnish, 1.1 varnish
x-do-esi: esi
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:03:58 GMT
age: 759
x-served-by: config-service-a002-ash-prod.krxd.net, cache-iad-kjyo7100110-IAD, cache-bma1626-BMA
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 13, 31
x-timer: S1670565839.763994,VS0,VE0
vary: Accept-Encoding
content-length: 22
X-Firefox-Spdy: h2
tags.bkrtx.com/js/bk-coretag.js
95.100.6.51200 OK 16 kB URL HTTP/2 tags.bkrtx.com/js/bk-coretag.js
IP 95.100.6.51:0
File type ASCII text, with very long lines (42581)
Hash 1d6730c68cb783c9b157fece2471f7b7
9c176c938a3567b446e02ccf1f919bf5bbccc921
32098d2ec6839522764c3c6c83b8427d8dca6bd041118e367b0ea6c7e1f05375
GET /js/bk-coretag.js HTTP/1.1
Host: tags.bkrtx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 21 May 2021 19:14:21 GMT
etag: W/"60a8068d-cbc2"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 16078
cache-control: max-age=604800
expires: Fri, 16 Dec 2022 06:03:58 GMT
date: Fri, 09 Dec 2022 06:03:58 GMT
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
172.217.21.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
IP 172.217.21.162:0
File type JSON data\012- , ASCII text, with very long lines (14742), with no line terminators
Hash 671b03bfac1791b343640444366ea67a
d20c56806d0ad1c393a10f2f86e6eb384a301cfe
fd382bf1fa13acc6e586466d3f65f3137d3d9ccd70f0bac9bcbdfc1eec3b91ed
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 09 Dec 2022 06:03:58 GMT
server: cafe
content-length: 11125
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cd459fc7e8633ad842eace59db652f5a
a2723a4cae2f7910e832490e588db1af285c8bd7
380d84de92bfa406214d8aa5d146fe7b944e99c913e0d8c9dd03283a07992a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stags.bluekai.com/site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=51084096
184.24.45.23200 OK 71 B URL HTTP/2 stags.bluekai.com/site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=51084096
IP 184.24.45.23:0
File type HTML document text\012- HTML document, ASCII text
Hash 988428fdc0079b85e995b96b0ed4b565
27aece4f871a936951d17de604853cddc9bfb5ec
53350525edba0b889e87ea52a16ed843a928a2557e9f8d6747acd7ff991c95c3
GET /site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=51084096 HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 71
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
bk-server: 7ca0
date: Fri, 09 Dec 2022 06:03:58 GMT
x-n: S
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.97200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.97:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 09 Dec 2022 06:03:58 GMT
expires: Fri, 09 Dec 2022 06:03:58 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jogger.zdbb.net/check?href=https%3A%2F%2Fwww.speedtest.net%2F
52.45.196.21200 OK 5 B URL HTTP/2 jogger.zdbb.net/check?href=https%3A%2F%2Fwww.speedtest.net%2F
IP 52.45.196.21:0
File type ASCII text, with no line terminators
Hash 946003f97ccc52d5d3b54ac0ec31bbfc
0ed2d7b5cdb77627bc46c6fac5026ec27b694d42
4e523a5ae5b4636c75901b79fafbd3912e41dc7987414e688b09d4b436ff22b3
GET /check?href=https%3A%2F%2Fwww.speedtest.net%2F HTTP/1.1
Host: jogger.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:58 GMT
content-type: text/plain; charset=utf-8
content-length: 5
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
cache-control: max-age=604800
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.97200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:29:01 GMT
expires: Wed, 06 Dec 2023 14:29:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 228898
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e3b657ebd655fbfa5f10c01c775f2aa0
2478fd171e6791a10d83b2bad9de0165d268db7e
2d91737e61e5338bc24c7df4aa36b1c20d9f79fe8ea4bb4914fd2c15e99a7ee3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=dd2f8d92-79b8-48c1-a275-21b299a228fc&l_pb_bid_id=101f8b58170ceb38&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.5365034838131968
213.19.162.41200 OK 5.8 kB URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=dd2f8d92-79b8-48c1-a275-21b299a228fc&l_pb_bid_id=101f8b58170ceb38&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.5365034838131968
IP 213.19.162.41:0
Hash 07f777b88b3db92cb53a4c8a7f82eec7
7b5788eeb63b9ce7662ba48ce255f5259ad99d7f
a92431cf677fd11e58c6a33778599fe5808e609aa3e246cbba855515e0f9119c
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=dd2f8d92-79b8-48c1-a275-21b299a228fc&l_pb_bid_id=101f8b58170ceb38&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.5365034838131968 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBG3RM6O-1C-KZQW; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrxtz/9v4tLte9DtVM30fCgqt4j32Jy7RiwY6aA1eJOrbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 09-Dec-2023 06:03:57 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7a9bc6afade8e3c14cad532ebf241156
a203434fb73d81e67a2abd6d8e36bb69f0c938fc
a99e42476af80b4567e29de56a4f7e1edb1dde548f0df8b6ab95433c27460263
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
142.250.74.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash 2f873064835eed23708bde2a16830216
7559437b82b9b761e02549d8d51f9e3571e5ed2c
0f5d00ac674cc34652997f2e0dd7fb6eb1a5b22010989c35a81cd7a388c84fdd
GET /rtv/012211060024000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12946
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:08:55 GMT
expires: Tue, 05 Dec 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 302104
etag: "0bacd3f1ce38a7db"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7a9bc6afade8e3c14cad532ebf241156
a203434fb73d81e67a2abd6d8e36bb69f0c938fc
a99e42476af80b4567e29de56a4f7e1edb1dde548f0df8b6ab95433c27460263
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7a9bc6afade8e3c14cad532ebf241156
a203434fb73d81e67a2abd6d8e36bb69f0c938fc
a99e42476af80b4567e29de56a4f7e1edb1dde548f0df8b6ab95433c27460263
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7a9bc6afade8e3c14cad532ebf241156
a203434fb73d81e67a2abd6d8e36bb69f0c938fc
a99e42476af80b4567e29de56a4f7e1edb1dde548f0df8b6ab95433c27460263
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
142.250.74.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (5046)
Hash 669c8592ef8f63e7404e45dd6ca56b71
3f6753966361bb86594193009c9097612c361064
d174ae2c0722ab8d4bf736f0200dc5b15d288f9500a706bb161b64f5a3b74f01
GET /rtv/012211060024000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1913
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:08:55 GMT
expires: Tue, 05 Dec 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 302104
etag: "403438c4d550ee88"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
142.250.74.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (14697)
Hash ae1a9f090984c448deb0629cc2304ee3
e601825ccec746695f370ed68fa33325152e0d9f
6a947bfcdeea64faa6c795caea11ee09dbe00f5d4003b7b9d47e4945c05ac1e4
GET /rtv/012211060024000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 10:51:50 GMT
expires: Wed, 06 Dec 2023 10:51:50 GMT
cache-control: public, max-age=31536000
age: 241929
etag: "abd4378f71571d78"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
142.250.74.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 190bcb4c44fd9e0e93baa80c9b2535b8
97bda56ddc8d6a00d19e1747d63325051f3fd144
b7677f820f06329e357561f570729fe4110af4ac5fb741b97567e20a0f533301
GET /rtv/012211060024000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61592
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:08:55 GMT
expires: Tue, 05 Dec 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 302104
etag: "a2fca7132416d151"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
142.250.74.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (65534)
Hash c88b4e73b12307e42222d337bdd646a2
621233bf4e777b2d44b1bc143187111aca2fe718
ef6935537cd5a603b79bc98d4274b70ee5608955792523fc58e818c8ddbb7b48
GET /rtv/012211060024000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28809
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:08:55 GMT
expires: Tue, 05 Dec 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 302104
etag: "dd6615029de85e23"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7a9bc6afade8e3c14cad532ebf241156
a203434fb73d81e67a2abd6d8e36bb69f0c938fc
a99e42476af80b4567e29de56a4f7e1edb1dde548f0df8b6ab95433c27460263
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zdbb.net/check_c
54.247.22.165200 OK 32 B IP 54.247.22.165:0
File type ASCII text, with no line terminators
Hash 41863f83328d161be447fc9e88b68d95
5202b126da5dac52db17f9c76e91b87ab56a7631
bab7e7dacaaa07c424745ad360c7a36d71e6ae412239b72b9b4bb1ac750ba471
GET /check_c HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=8bfa42d98f2445abaf0078882b64c8fa; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:59 GMT
content-type: text/plain; charset=utf-8
content-length: 32
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1b4d70dfcf5c0bcd442372f71c857742
8805b156499b2e600ba4eae37ba91388d14e5238
d8f179b25bad16d91708f78f847a5335944a8949a1f96d55bf8dd043e1d98dee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3115
Cache-Control: max-age=110941
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:03:59 GMT
Etag: "6391d201-1d7"
Expires: Sat, 10 Dec 2022 12:53:00 GMT
Last-Modified: Thu, 08 Dec 2022 12:01:05 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
172.217.21.166200 OK 38 kB URL HTTP/2 s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
IP 172.217.21.166:0
File type ASCII text, with very long lines (3095)
Hash 4f9b890a6c4cfbbfd0fb7eff98bf4dde
2db204fb0ee448842b40f84463234ea496763130
8e0d4c67a688228e1ba10b1e1dc367c078edf7e9bc35be0bd4ae8c0ce980647c
GET /879366/express_html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 08:09:27 GMT
expires: Fri, 09 Dec 2022 08:09:27 GMT
cache-control: public, max-age=86400
age: 78872
last-modified: Wed, 02 Mar 2022 23:07:26 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=8bfa42d98f2445abaf0078882b64c8fa
52.214.172.145204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=8bfa42d98f2445abaf0078882b64c8fa
IP 52.214.172.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=zdbb&partner_uid=8bfa42d98f2445abaf0078882b64c8fa HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:04:00 GMT
set-cookie: _kuid_=PPzT3oNT; Expires=Wed, 07-Jun-23 06:04:00 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n014-dub-prod.krxd.net
x-request-time: D=30 t=1670565840
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash dcb0ed86727c359c48d60000d5ce055b
f7e736e0e1f78ec89eacaa08fd5648e1cf47d4fc
68713a99b06419fcaa5ee2c4b2b1a2772ff6a47df9ca0f5dda78189fefa108a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 6fdb9b8e1963d5f13d91db22e9294f97
f808d36103005c224eb6f7e4543d30271d2957b0
7ca8f99e7a6c7664a782af94d7b833d3a6374601a8a3a5cd382726d5d7fa3030
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 06:04:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 13:42:55 GMT
Expires: Wed, 14 Dec 2022 13:42:54 GMT
Etag: "f808d36103005c224eb6f7e4543d30271d2957b0"
Cache-Control: max-age=458933,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b8a733eabb517-OSL
idsync.rlcdn.com/425686.gif?partner_uid=8bfa42d98f2445abaf0078882b64c8fa
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/425686.gif?partner_uid=8bfa42d98f2445abaf0078882b64c8fa
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /425686.gif?partner_uid=8bfa42d98f2445abaf0078882b64c8fa HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Fri, 09 Dec 2022 06:04:00 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16705658364949755&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1670565838&rnd=726665
46.51.201.242200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16705658364949755&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1670565838&rnd=726665
IP 46.51.201.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16705658364949755&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1670565838&rnd=726665 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:00 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=4647e300-7787-11ed-9e48-cfee221fcc38; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Wed, 03-Jan-2024 06:04:00 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 6fdb9b8e1963d5f13d91db22e9294f97
f808d36103005c224eb6f7e4543d30271d2957b0
7ca8f99e7a6c7664a782af94d7b833d3a6374601a8a3a5cd382726d5d7fa3030
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 06:04:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 13:42:55 GMT
Expires: Wed, 14 Dec 2022 13:42:54 GMT
Etag: "f808d36103005c224eb6f7e4543d30271d2957b0"
Cache-Control: max-age=458933,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b8a750facb517-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e3b657ebd655fbfa5f10c01c775f2aa0
2478fd171e6791a10d83b2bad9de0165d268db7e
2d91737e61e5338bc24c7df4aa36b1c20d9f79fe8ea4bb4914fd2c15e99a7ee3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssBBbPvmo38yljMolmgUOeUXuCG5JxOGmgaz_jZitW4H8fRPSwf77wNbvxTdPhShX7NLP4vOB8FP2clczARiSwh4sxWKuWTLw8NOa1X_iOpP9yKs7E_CPV5ffn-z8fBsdQGDysCeNG5DXfOFQLFsX0LNuObmTXIp75Ci1g1-29PgABmuV65AAYV5aE1Pk8dWC53V71Az9bpGdX9UbS8VC79fj2oIUyaTfVL8Q8DieUv1BFmBZLa-9qqnNRgVrhZOxD-NKqvbiqTzLZjpi6JpAS8OSK8QZao4QlyOa5XZ916aXZYI8ZIWRkaA05bKxvHHXYnQx5Dkd71IfDiwgX3kLEzE_5Nl0E860SECsaRCe9XRcgtiHVvUBRnsRy8IVvx8CF22jQqhk60JtDTSkvVdGompLArMFFmqnZWHqXJ5V1113ZdOWL_agmrvCKuFT48XEOKmq3sOL2SpS0yFOlnEjVaeR81AY92xtwx7Vv1AVGynaWeLrB2Xy6cuRkSsxaGGiN3muDYaiIoqLLZsEQsYjc64uoWC7ctuHmFxLQc5SG0IMnLxylK7vawIzchVpkJxQaZLsvrgM81_4XLE01NUsfrMuO1EL_vIpN1sJSQquZ8MDNQr70NygMiMrLJSCt7MfoyK7JkBnY4DdK-fl1w0FFmJM_0IHh5sEzstiYlmVnpRkA5SKzt-DuAL5B03y8lhsUqJ2UiI9PqtrtWmDMsQrAHUMWxMTtZ0US_lCvI6MNljoocjvIpQkskLbapSUWJjHe-Zastcjv0Y5dnFDHJym3yD6yAhuI0QMeJXQC4Uaz2L2Y027-84OkGK5K1ZjLHLSWFih9DKXHamqzyYlXwSAaf_MN2u7miC-fDiyCT-WEuBJG4CdlUbuxDw69KnOBF7LU5LQCGQ4lhWOnwwAuY095BVuAIgPK2uvch0ICdd3WA6OHlGD-nYZES1VG3Dv1o9E7pJKi0h_fwTCZXtQLUcZ_Qp0B4twpnEfV2D-gYyGx_MVJoNwPC5RnAQGXPVDE6bG_RWyLExLoipLDWnGSbvnqlmX4tc53FxYbqOdq2fMeihyyTU-gQClZd_MCetZDn3b6_NlZAYJLElFyTtAWO3SJHWP1PaBllZgvTgTgOfK5FhHXQ5hKwmLnmiDruLBUz8fcVw64ABt6qtsV_tNggm9d53ZKTK1Z2554scnBCMSogst1K4u2QSaWEM5b4Ov5_2bMZ_aFXkgRP9Z-2AsKoUJeO5vbKnUVwvSCpqapNsfq-C1DvAYln3Q&sai=AMfl-YTudErIzh55MFCFBG6mwox-FtC1kTctEG8w8qxU5Tfc5XQRtS8tWdoHI_7QIvqIUkWWyevdwGuz_aer7W5ExYFsGleyCodRgs9pspR1TEZicOPM7ijDIvLynod29TX89J277M3FXq63P7MIgNAUKvkMCNYXZQWCiznxu0vY4ovUfu7VEmIewaSMnSqS-lrpb0M2XT8SjsrD9rBGrZvPGgWv4uSp7DgCDwEPvFYtjVTuWMKOWCFgZpF0Jq9rbt_dSwhbqiddlEL9Xgs5qLENfm529MFw-Ir2HRSIz6JmBrNTduOlbJA&sig=Cg0ArKJSzIT9qrKdzUEGEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=148&cbvp=1&cstd=142&cisv=r20221206.07124&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssBBbPvmo38yljMolmgUOeUXuCG5JxOGmgaz_jZitW4H8fRPSwf77wNbvxTdPhShX7NLP4vOB8FP2clczARiSwh4sxWKuWTLw8NOa1X_iOpP9yKs7E_CPV5ffn-z8fBsdQGDysCeNG5DXfOFQLFsX0LNuObmTXIp75Ci1g1-29PgABmuV65AAYV5aE1Pk8dWC53V71Az9bpGdX9UbS8VC79fj2oIUyaTfVL8Q8DieUv1BFmBZLa-9qqnNRgVrhZOxD-NKqvbiqTzLZjpi6JpAS8OSK8QZao4QlyOa5XZ916aXZYI8ZIWRkaA05bKxvHHXYnQx5Dkd71IfDiwgX3kLEzE_5Nl0E860SECsaRCe9XRcgtiHVvUBRnsRy8IVvx8CF22jQqhk60JtDTSkvVdGompLArMFFmqnZWHqXJ5V1113ZdOWL_agmrvCKuFT48XEOKmq3sOL2SpS0yFOlnEjVaeR81AY92xtwx7Vv1AVGynaWeLrB2Xy6cuRkSsxaGGiN3muDYaiIoqLLZsEQsYjc64uoWC7ctuHmFxLQc5SG0IMnLxylK7vawIzchVpkJxQaZLsvrgM81_4XLE01NUsfrMuO1EL_vIpN1sJSQquZ8MDNQr70NygMiMrLJSCt7MfoyK7JkBnY4DdK-fl1w0FFmJM_0IHh5sEzstiYlmVnpRkA5SKzt-DuAL5B03y8lhsUqJ2UiI9PqtrtWmDMsQrAHUMWxMTtZ0US_lCvI6MNljoocjvIpQkskLbapSUWJjHe-Zastcjv0Y5dnFDHJym3yD6yAhuI0QMeJXQC4Uaz2L2Y027-84OkGK5K1ZjLHLSWFih9DKXHamqzyYlXwSAaf_MN2u7miC-fDiyCT-WEuBJG4CdlUbuxDw69KnOBF7LU5LQCGQ4lhWOnwwAuY095BVuAIgPK2uvch0ICdd3WA6OHlGD-nYZES1VG3Dv1o9E7pJKi0h_fwTCZXtQLUcZ_Qp0B4twpnEfV2D-gYyGx_MVJoNwPC5RnAQGXPVDE6bG_RWyLExLoipLDWnGSbvnqlmX4tc53FxYbqOdq2fMeihyyTU-gQClZd_MCetZDn3b6_NlZAYJLElFyTtAWO3SJHWP1PaBllZgvTgTgOfK5FhHXQ5hKwmLnmiDruLBUz8fcVw64ABt6qtsV_tNggm9d53ZKTK1Z2554scnBCMSogst1K4u2QSaWEM5b4Ov5_2bMZ_aFXkgRP9Z-2AsKoUJeO5vbKnUVwvSCpqapNsfq-C1DvAYln3Q&sai=AMfl-YTudErIzh55MFCFBG6mwox-FtC1kTctEG8w8qxU5Tfc5XQRtS8tWdoHI_7QIvqIUkWWyevdwGuz_aer7W5ExYFsGleyCodRgs9pspR1TEZicOPM7ijDIvLynod29TX89J277M3FXq63P7MIgNAUKvkMCNYXZQWCiznxu0vY4ovUfu7VEmIewaSMnSqS-lrpb0M2XT8SjsrD9rBGrZvPGgWv4uSp7DgCDwEPvFYtjVTuWMKOWCFgZpF0Jq9rbt_dSwhbqiddlEL9Xgs5qLENfm529MFw-Ir2HRSIz6JmBrNTduOlbJA&sig=Cg0ArKJSzIT9qrKdzUEGEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=148&cbvp=1&cstd=142&cisv=r20221206.07124&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjssBBbPvmo38yljMolmgUOeUXuCG5JxOGmgaz_jZitW4H8fRPSwf77wNbvxTdPhShX7NLP4vOB8FP2clczARiSwh4sxWKuWTLw8NOa1X_iOpP9yKs7E_CPV5ffn-z8fBsdQGDysCeNG5DXfOFQLFsX0LNuObmTXIp75Ci1g1-29PgABmuV65AAYV5aE1Pk8dWC53V71Az9bpGdX9UbS8VC79fj2oIUyaTfVL8Q8DieUv1BFmBZLa-9qqnNRgVrhZOxD-NKqvbiqTzLZjpi6JpAS8OSK8QZao4QlyOa5XZ916aXZYI8ZIWRkaA05bKxvHHXYnQx5Dkd71IfDiwgX3kLEzE_5Nl0E860SECsaRCe9XRcgtiHVvUBRnsRy8IVvx8CF22jQqhk60JtDTSkvVdGompLArMFFmqnZWHqXJ5V1113ZdOWL_agmrvCKuFT48XEOKmq3sOL2SpS0yFOlnEjVaeR81AY92xtwx7Vv1AVGynaWeLrB2Xy6cuRkSsxaGGiN3muDYaiIoqLLZsEQsYjc64uoWC7ctuHmFxLQc5SG0IMnLxylK7vawIzchVpkJxQaZLsvrgM81_4XLE01NUsfrMuO1EL_vIpN1sJSQquZ8MDNQr70NygMiMrLJSCt7MfoyK7JkBnY4DdK-fl1w0FFmJM_0IHh5sEzstiYlmVnpRkA5SKzt-DuAL5B03y8lhsUqJ2UiI9PqtrtWmDMsQrAHUMWxMTtZ0US_lCvI6MNljoocjvIpQkskLbapSUWJjHe-Zastcjv0Y5dnFDHJym3yD6yAhuI0QMeJXQC4Uaz2L2Y027-84OkGK5K1ZjLHLSWFih9DKXHamqzyYlXwSAaf_MN2u7miC-fDiyCT-WEuBJG4CdlUbuxDw69KnOBF7LU5LQCGQ4lhWOnwwAuY095BVuAIgPK2uvch0ICdd3WA6OHlGD-nYZES1VG3Dv1o9E7pJKi0h_fwTCZXtQLUcZ_Qp0B4twpnEfV2D-gYyGx_MVJoNwPC5RnAQGXPVDE6bG_RWyLExLoipLDWnGSbvnqlmX4tc53FxYbqOdq2fMeihyyTU-gQClZd_MCetZDn3b6_NlZAYJLElFyTtAWO3SJHWP1PaBllZgvTgTgOfK5FhHXQ5hKwmLnmiDruLBUz8fcVw64ABt6qtsV_tNggm9d53ZKTK1Z2554scnBCMSogst1K4u2QSaWEM5b4Ov5_2bMZ_aFXkgRP9Z-2AsKoUJeO5vbKnUVwvSCpqapNsfq-C1DvAYln3Q&sai=AMfl-YTudErIzh55MFCFBG6mwox-FtC1kTctEG8w8qxU5Tfc5XQRtS8tWdoHI_7QIvqIUkWWyevdwGuz_aer7W5ExYFsGleyCodRgs9pspR1TEZicOPM7ijDIvLynod29TX89J277M3FXq63P7MIgNAUKvkMCNYXZQWCiznxu0vY4ovUfu7VEmIewaSMnSqS-lrpb0M2XT8SjsrD9rBGrZvPGgWv4uSp7DgCDwEPvFYtjVTuWMKOWCFgZpF0Jq9rbt_dSwhbqiddlEL9Xgs5qLENfm529MFw-Ir2HRSIz6JmBrNTduOlbJA&sig=Cg0ArKJSzIT9qrKdzUEGEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=148&cbvp=1&cstd=142&cisv=r20221206.07124&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:00 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:00 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv8ZA8HzVPRDJ9E_WvWa1Y4cFkVN-GfNexPUMirdB77xMpSvSUEbBj63oLTwt7KXGa0r6wEg1CeJJj4Bq576EwJXljC94okXMcYFDbuxE9SB7waUl2tS3HYXMhI9lH11mNbsb6zGdunP5temx46YYNlKSUnRE2zmEoec5aLEmA8Dqbka7YL8Yw-x9aEUhudbQI6UQftt4jp_neWphmUjH3Pbgt5PR92IagzHBu_3C9T4u0VkSxX7-x5s6lUI5F0kvV7Im1OHmYpGFmvfG0p8tsi1hJELp0jCRpZRQqPUiFuxJ8ddlU2tzbgfnTK_N7M5GP8t-ED0XkFSfIUwEh4e-DaOI7XdY43yJUfpeI4fWV2rLUETvdBxf6BzE9lletmDBF_ycrIW_kiF8qMvxI7nEHxJ7_4zTM2nwyoPU9y_o6ramyekZV3HfQkbL-Shu7_NJBmhsMeiUACpFOMnrkgh_EC-yAW74NdpPravBIAdS4Pw0xL9VSYs1IHHFHL8LrtaBOvrm9G_E65re5m_AZ3ZoEobUtXcau7YEWAGD5Z1ikKFn9DGzvNMsAVKRly-IkpEEpELytI6TXO55p4Pq01F7BzJFusrY51qYgIwR4tHXb67FbLemauwxaVraq91M_hm12qPamxdYfBmyhP3VnL81X2tYCbVUWgSDSsKRv4a_fr4ophltA9sue8Czh1Afq5wDxUKxFa986--d0jNFoblE50sIAJj9UB7ZNQ6MOMxKnQ7fKwppsmc7Al3eryYucFDO3Juam_om-r6cMuFUc6huxlatY4Bs2oD4ny-ASQPpGHsfU39mWURxq-feRAnOdnknmJe738uuunfLCggLlMBGMNSh0HjmG8tgUESaGUsMPWvVgVqfvUHuHjTo1-XSG73UtDH5CTp0QDauN_J-enGDri8fwY-uwXDHXQaQm9Q1lzZUiiPK1gCfG9lUqoZdM2HHyL4GmsLi7M2l8OhnxCy2TDjaqaqUmgdh42Xyln0WcjiFyYI9AznlQ2ytD5ShdlBnbfRCr5vRO0GNIe5lfGtJH2imvK4j5quKcUyBgGyOsR7sP2plJirDdLMlbzzeMk5uA3SXBrmgVHkZ3ASRz1T8avQZvXqMzx2IzcD4JdSpfZoUidut0fQu6XCS22uz9F1s7b0Xq3VEmxfhZTSro2O_66pSyT8BDoXLa7BUZ1NHz-Xids8UfrB_cLWiw4FoV7sgSdeHHkEvIOL4ND0Lhs8nrukrDB1-Ab5D4cq9t4KWk-JYhzMqoCom8c-fs&sai=AMfl-YSLUspd61VmJpJRoFpVDLTv-bmLVICqmlAJuoGgXyjQYB7sQ-GRjMig-gysyqTBXSrbpZvrz-0wF5kZxm1DljxT2soBhEHMXi_xZ4fqbm9oVNzgcxcOKk5tTSxE4V-hIu2auaUFRro-pEoWCZOdSeE_edBg_6DACmAPwphyD9m1f-A25bV0hoJtnu5BYOUnLCYMnuwRAwoMFc8EWGqzA03h8pJK3TpfvhOomoSjTk3TFwiYxkctnTeCuUPZpUFmnGL43Zf9AdajdkjSdvleH5i4oSA8QdVNJBnGwkwpZUYFKwQaUQY&sig=Cg0ArKJSzM6cuU98ozHYEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=194&cbvp=1&cstd=189&cisv=r20221206.64423&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv8ZA8HzVPRDJ9E_WvWa1Y4cFkVN-GfNexPUMirdB77xMpSvSUEbBj63oLTwt7KXGa0r6wEg1CeJJj4Bq576EwJXljC94okXMcYFDbuxE9SB7waUl2tS3HYXMhI9lH11mNbsb6zGdunP5temx46YYNlKSUnRE2zmEoec5aLEmA8Dqbka7YL8Yw-x9aEUhudbQI6UQftt4jp_neWphmUjH3Pbgt5PR92IagzHBu_3C9T4u0VkSxX7-x5s6lUI5F0kvV7Im1OHmYpGFmvfG0p8tsi1hJELp0jCRpZRQqPUiFuxJ8ddlU2tzbgfnTK_N7M5GP8t-ED0XkFSfIUwEh4e-DaOI7XdY43yJUfpeI4fWV2rLUETvdBxf6BzE9lletmDBF_ycrIW_kiF8qMvxI7nEHxJ7_4zTM2nwyoPU9y_o6ramyekZV3HfQkbL-Shu7_NJBmhsMeiUACpFOMnrkgh_EC-yAW74NdpPravBIAdS4Pw0xL9VSYs1IHHFHL8LrtaBOvrm9G_E65re5m_AZ3ZoEobUtXcau7YEWAGD5Z1ikKFn9DGzvNMsAVKRly-IkpEEpELytI6TXO55p4Pq01F7BzJFusrY51qYgIwR4tHXb67FbLemauwxaVraq91M_hm12qPamxdYfBmyhP3VnL81X2tYCbVUWgSDSsKRv4a_fr4ophltA9sue8Czh1Afq5wDxUKxFa986--d0jNFoblE50sIAJj9UB7ZNQ6MOMxKnQ7fKwppsmc7Al3eryYucFDO3Juam_om-r6cMuFUc6huxlatY4Bs2oD4ny-ASQPpGHsfU39mWURxq-feRAnOdnknmJe738uuunfLCggLlMBGMNSh0HjmG8tgUESaGUsMPWvVgVqfvUHuHjTo1-XSG73UtDH5CTp0QDauN_J-enGDri8fwY-uwXDHXQaQm9Q1lzZUiiPK1gCfG9lUqoZdM2HHyL4GmsLi7M2l8OhnxCy2TDjaqaqUmgdh42Xyln0WcjiFyYI9AznlQ2ytD5ShdlBnbfRCr5vRO0GNIe5lfGtJH2imvK4j5quKcUyBgGyOsR7sP2plJirDdLMlbzzeMk5uA3SXBrmgVHkZ3ASRz1T8avQZvXqMzx2IzcD4JdSpfZoUidut0fQu6XCS22uz9F1s7b0Xq3VEmxfhZTSro2O_66pSyT8BDoXLa7BUZ1NHz-Xids8UfrB_cLWiw4FoV7sgSdeHHkEvIOL4ND0Lhs8nrukrDB1-Ab5D4cq9t4KWk-JYhzMqoCom8c-fs&sai=AMfl-YSLUspd61VmJpJRoFpVDLTv-bmLVICqmlAJuoGgXyjQYB7sQ-GRjMig-gysyqTBXSrbpZvrz-0wF5kZxm1DljxT2soBhEHMXi_xZ4fqbm9oVNzgcxcOKk5tTSxE4V-hIu2auaUFRro-pEoWCZOdSeE_edBg_6DACmAPwphyD9m1f-A25bV0hoJtnu5BYOUnLCYMnuwRAwoMFc8EWGqzA03h8pJK3TpfvhOomoSjTk3TFwiYxkctnTeCuUPZpUFmnGL43Zf9AdajdkjSdvleH5i4oSA8QdVNJBnGwkwpZUYFKwQaUQY&sig=Cg0ArKJSzM6cuU98ozHYEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=194&cbvp=1&cstd=189&cisv=r20221206.64423&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsv8ZA8HzVPRDJ9E_WvWa1Y4cFkVN-GfNexPUMirdB77xMpSvSUEbBj63oLTwt7KXGa0r6wEg1CeJJj4Bq576EwJXljC94okXMcYFDbuxE9SB7waUl2tS3HYXMhI9lH11mNbsb6zGdunP5temx46YYNlKSUnRE2zmEoec5aLEmA8Dqbka7YL8Yw-x9aEUhudbQI6UQftt4jp_neWphmUjH3Pbgt5PR92IagzHBu_3C9T4u0VkSxX7-x5s6lUI5F0kvV7Im1OHmYpGFmvfG0p8tsi1hJELp0jCRpZRQqPUiFuxJ8ddlU2tzbgfnTK_N7M5GP8t-ED0XkFSfIUwEh4e-DaOI7XdY43yJUfpeI4fWV2rLUETvdBxf6BzE9lletmDBF_ycrIW_kiF8qMvxI7nEHxJ7_4zTM2nwyoPU9y_o6ramyekZV3HfQkbL-Shu7_NJBmhsMeiUACpFOMnrkgh_EC-yAW74NdpPravBIAdS4Pw0xL9VSYs1IHHFHL8LrtaBOvrm9G_E65re5m_AZ3ZoEobUtXcau7YEWAGD5Z1ikKFn9DGzvNMsAVKRly-IkpEEpELytI6TXO55p4Pq01F7BzJFusrY51qYgIwR4tHXb67FbLemauwxaVraq91M_hm12qPamxdYfBmyhP3VnL81X2tYCbVUWgSDSsKRv4a_fr4ophltA9sue8Czh1Afq5wDxUKxFa986--d0jNFoblE50sIAJj9UB7ZNQ6MOMxKnQ7fKwppsmc7Al3eryYucFDO3Juam_om-r6cMuFUc6huxlatY4Bs2oD4ny-ASQPpGHsfU39mWURxq-feRAnOdnknmJe738uuunfLCggLlMBGMNSh0HjmG8tgUESaGUsMPWvVgVqfvUHuHjTo1-XSG73UtDH5CTp0QDauN_J-enGDri8fwY-uwXDHXQaQm9Q1lzZUiiPK1gCfG9lUqoZdM2HHyL4GmsLi7M2l8OhnxCy2TDjaqaqUmgdh42Xyln0WcjiFyYI9AznlQ2ytD5ShdlBnbfRCr5vRO0GNIe5lfGtJH2imvK4j5quKcUyBgGyOsR7sP2plJirDdLMlbzzeMk5uA3SXBrmgVHkZ3ASRz1T8avQZvXqMzx2IzcD4JdSpfZoUidut0fQu6XCS22uz9F1s7b0Xq3VEmxfhZTSro2O_66pSyT8BDoXLa7BUZ1NHz-Xids8UfrB_cLWiw4FoV7sgSdeHHkEvIOL4ND0Lhs8nrukrDB1-Ab5D4cq9t4KWk-JYhzMqoCom8c-fs&sai=AMfl-YSLUspd61VmJpJRoFpVDLTv-bmLVICqmlAJuoGgXyjQYB7sQ-GRjMig-gysyqTBXSrbpZvrz-0wF5kZxm1DljxT2soBhEHMXi_xZ4fqbm9oVNzgcxcOKk5tTSxE4V-hIu2auaUFRro-pEoWCZOdSeE_edBg_6DACmAPwphyD9m1f-A25bV0hoJtnu5BYOUnLCYMnuwRAwoMFc8EWGqzA03h8pJK3TpfvhOomoSjTk3TFwiYxkctnTeCuUPZpUFmnGL43Zf9AdajdkjSdvleH5i4oSA8QdVNJBnGwkwpZUYFKwQaUQY&sig=Cg0ArKJSzM6cuU98ozHYEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=194&cbvp=1&cstd=189&cisv=r20221206.64423&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:00 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:00 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvO1ZiYoXcT5xC8k7XA2b6Ya0HidDDS3q4qLfScJIenoPXtJb8lsdyV7w9_n_ynNHLeHKRFAcqRsQLDO14ccLp8U6TI3RdDwtZkcTt5TAKoJ3snIo1gcCZy71pmLg6zaDpPaK-XMJKmsjGyxRQkYuSg02hE3261WnVTjkqCHb4jrBSLhVwtN7QGpcbaXLM9UlMgB8UdA2OM_E_J-ktUkBWMcmj9fDGdoJkkuT69Dda7--c7IrGn-GO06adGjcA16YCMC8nIwt6LttFOcUNtfn61qCX6w6S_hGQLnem4uRMLq3yT0Wy88CO6dsW3PGm5JqJOmcvgaknKzDvqOGVE82oPtohRZdDqPowbOgl25k-iP2re_9KbeSjsFkkpKxzWWInBQOrHHU5dRqbMaHPpOvfnG5Rvvuu-IE8Q3zuazOvzGdjfaw2TO0bqqemdp-d7JWDK5ApjWGW38m5MXw7oWpiEGUz4SCzikLuwljrNM3soiT_Jnlsk7Z0Fntou90yyw_oTesARkRvvebnU6gtssWgIXmM4pfr569xw7k1-8p7zO3UODRsh7RP11K5Dwp87q1LKTRKLlx3gS-00h1W1AXITXHpFHB29RzTpIbOFahlfH2pQ4j8S_Uc0DAssUdb804HD8dzCvPLKbHhGIFNi4aU1lonWy5Zk1JKmuWPTar1PYHZMSQDIMba2rzpmGIWp-KCXDFQ76__ExEShPNDKOjW8qpoXGTUPS1IpS8gU9jQJuXl5ZhWKAjQibxT5TW2AVHsG920qhYhqSaGKxQ6CA8tZmNi9CdZyHjC0JHrp6blcYiSrDFgdv2ZKIKJlxZCXnWfd1r6om3wYyeH7-jccaIODSw3G4ssekNKzT-8n9eyfXgHCCwiTCXRdDo_MZnD1EjwPg9VZtSSLN2KJO0HhGYhvoBy2G_LyKgLgGSc8aGUx0r30bBY9u8mn7-lXm1eBjSS0AIECAxlWgkmXYyuwwsykOJD3cuHf_tPvOt7BBff63UdWPxJToyeBr4heD_PVYyBJ4IqorkbfgpAhga6SUi-EKjJK6GzDcrlQ8TVZzMgs2XN_vSYtOGKHxDKqnmFhd-0BaMW4NTCNmgfWQpEb_TEZ0TLAIO-I1xBVEg0gcM6-XbMJVdfAlRi-07Mvt8yqB3b9lDKnrIJhZxZ0rbs9h0h0SB3R7VV00_syLsnnFHv7m6Hc2z3pb6cG-76PNGS6SEMgDAqaLJCNH40&sai=AMfl-YReoVIJaKkJ6zTs-VDErbdmXpz8xUXaA7c8ubZqhUe7OipdlvI3_NOUmZeAxb4nNvpqtw8yDga58TG1nHpz_fhqtkj0B6v-31S3TZ3Shh0bN-vEUwa13gngfDKpMMkjULkS0mD8Qi5ATaVUXGcmPeAiJumbEeeezEtKmRZy5s1aSp9qKpjH-ULUh5sBnHAAboFBf6RKjj6MVjgrboM6tX8UrgnWbIDJys1EyKCuy5OzLx6r39LGnzokYVVrP-60TqE1pY00JvMe3oV3WM-xDckViLmk8IwRRKJKwMJfNomQTLuJspI&sig=Cg0ArKJSzIqhLBTt-K1TEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=251&cbvp=1&cstd=247&cisv=r20221206.97035&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvO1ZiYoXcT5xC8k7XA2b6Ya0HidDDS3q4qLfScJIenoPXtJb8lsdyV7w9_n_ynNHLeHKRFAcqRsQLDO14ccLp8U6TI3RdDwtZkcTt5TAKoJ3snIo1gcCZy71pmLg6zaDpPaK-XMJKmsjGyxRQkYuSg02hE3261WnVTjkqCHb4jrBSLhVwtN7QGpcbaXLM9UlMgB8UdA2OM_E_J-ktUkBWMcmj9fDGdoJkkuT69Dda7--c7IrGn-GO06adGjcA16YCMC8nIwt6LttFOcUNtfn61qCX6w6S_hGQLnem4uRMLq3yT0Wy88CO6dsW3PGm5JqJOmcvgaknKzDvqOGVE82oPtohRZdDqPowbOgl25k-iP2re_9KbeSjsFkkpKxzWWInBQOrHHU5dRqbMaHPpOvfnG5Rvvuu-IE8Q3zuazOvzGdjfaw2TO0bqqemdp-d7JWDK5ApjWGW38m5MXw7oWpiEGUz4SCzikLuwljrNM3soiT_Jnlsk7Z0Fntou90yyw_oTesARkRvvebnU6gtssWgIXmM4pfr569xw7k1-8p7zO3UODRsh7RP11K5Dwp87q1LKTRKLlx3gS-00h1W1AXITXHpFHB29RzTpIbOFahlfH2pQ4j8S_Uc0DAssUdb804HD8dzCvPLKbHhGIFNi4aU1lonWy5Zk1JKmuWPTar1PYHZMSQDIMba2rzpmGIWp-KCXDFQ76__ExEShPNDKOjW8qpoXGTUPS1IpS8gU9jQJuXl5ZhWKAjQibxT5TW2AVHsG920qhYhqSaGKxQ6CA8tZmNi9CdZyHjC0JHrp6blcYiSrDFgdv2ZKIKJlxZCXnWfd1r6om3wYyeH7-jccaIODSw3G4ssekNKzT-8n9eyfXgHCCwiTCXRdDo_MZnD1EjwPg9VZtSSLN2KJO0HhGYhvoBy2G_LyKgLgGSc8aGUx0r30bBY9u8mn7-lXm1eBjSS0AIECAxlWgkmXYyuwwsykOJD3cuHf_tPvOt7BBff63UdWPxJToyeBr4heD_PVYyBJ4IqorkbfgpAhga6SUi-EKjJK6GzDcrlQ8TVZzMgs2XN_vSYtOGKHxDKqnmFhd-0BaMW4NTCNmgfWQpEb_TEZ0TLAIO-I1xBVEg0gcM6-XbMJVdfAlRi-07Mvt8yqB3b9lDKnrIJhZxZ0rbs9h0h0SB3R7VV00_syLsnnFHv7m6Hc2z3pb6cG-76PNGS6SEMgDAqaLJCNH40&sai=AMfl-YReoVIJaKkJ6zTs-VDErbdmXpz8xUXaA7c8ubZqhUe7OipdlvI3_NOUmZeAxb4nNvpqtw8yDga58TG1nHpz_fhqtkj0B6v-31S3TZ3Shh0bN-vEUwa13gngfDKpMMkjULkS0mD8Qi5ATaVUXGcmPeAiJumbEeeezEtKmRZy5s1aSp9qKpjH-ULUh5sBnHAAboFBf6RKjj6MVjgrboM6tX8UrgnWbIDJys1EyKCuy5OzLx6r39LGnzokYVVrP-60TqE1pY00JvMe3oV3WM-xDckViLmk8IwRRKJKwMJfNomQTLuJspI&sig=Cg0ArKJSzIqhLBTt-K1TEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=251&cbvp=1&cstd=247&cisv=r20221206.97035&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvO1ZiYoXcT5xC8k7XA2b6Ya0HidDDS3q4qLfScJIenoPXtJb8lsdyV7w9_n_ynNHLeHKRFAcqRsQLDO14ccLp8U6TI3RdDwtZkcTt5TAKoJ3snIo1gcCZy71pmLg6zaDpPaK-XMJKmsjGyxRQkYuSg02hE3261WnVTjkqCHb4jrBSLhVwtN7QGpcbaXLM9UlMgB8UdA2OM_E_J-ktUkBWMcmj9fDGdoJkkuT69Dda7--c7IrGn-GO06adGjcA16YCMC8nIwt6LttFOcUNtfn61qCX6w6S_hGQLnem4uRMLq3yT0Wy88CO6dsW3PGm5JqJOmcvgaknKzDvqOGVE82oPtohRZdDqPowbOgl25k-iP2re_9KbeSjsFkkpKxzWWInBQOrHHU5dRqbMaHPpOvfnG5Rvvuu-IE8Q3zuazOvzGdjfaw2TO0bqqemdp-d7JWDK5ApjWGW38m5MXw7oWpiEGUz4SCzikLuwljrNM3soiT_Jnlsk7Z0Fntou90yyw_oTesARkRvvebnU6gtssWgIXmM4pfr569xw7k1-8p7zO3UODRsh7RP11K5Dwp87q1LKTRKLlx3gS-00h1W1AXITXHpFHB29RzTpIbOFahlfH2pQ4j8S_Uc0DAssUdb804HD8dzCvPLKbHhGIFNi4aU1lonWy5Zk1JKmuWPTar1PYHZMSQDIMba2rzpmGIWp-KCXDFQ76__ExEShPNDKOjW8qpoXGTUPS1IpS8gU9jQJuXl5ZhWKAjQibxT5TW2AVHsG920qhYhqSaGKxQ6CA8tZmNi9CdZyHjC0JHrp6blcYiSrDFgdv2ZKIKJlxZCXnWfd1r6om3wYyeH7-jccaIODSw3G4ssekNKzT-8n9eyfXgHCCwiTCXRdDo_MZnD1EjwPg9VZtSSLN2KJO0HhGYhvoBy2G_LyKgLgGSc8aGUx0r30bBY9u8mn7-lXm1eBjSS0AIECAxlWgkmXYyuwwsykOJD3cuHf_tPvOt7BBff63UdWPxJToyeBr4heD_PVYyBJ4IqorkbfgpAhga6SUi-EKjJK6GzDcrlQ8TVZzMgs2XN_vSYtOGKHxDKqnmFhd-0BaMW4NTCNmgfWQpEb_TEZ0TLAIO-I1xBVEg0gcM6-XbMJVdfAlRi-07Mvt8yqB3b9lDKnrIJhZxZ0rbs9h0h0SB3R7VV00_syLsnnFHv7m6Hc2z3pb6cG-76PNGS6SEMgDAqaLJCNH40&sai=AMfl-YReoVIJaKkJ6zTs-VDErbdmXpz8xUXaA7c8ubZqhUe7OipdlvI3_NOUmZeAxb4nNvpqtw8yDga58TG1nHpz_fhqtkj0B6v-31S3TZ3Shh0bN-vEUwa13gngfDKpMMkjULkS0mD8Qi5ATaVUXGcmPeAiJumbEeeezEtKmRZy5s1aSp9qKpjH-ULUh5sBnHAAboFBf6RKjj6MVjgrboM6tX8UrgnWbIDJys1EyKCuy5OzLx6r39LGnzokYVVrP-60TqE1pY00JvMe3oV3WM-xDckViLmk8IwRRKJKwMJfNomQTLuJspI&sig=Cg0ArKJSzIqhLBTt-K1TEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=251&cbvp=1&cstd=247&cisv=r20221206.97035&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:00 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:00 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvSNJhGtE56jz_9R6dylSdN165Mm5TgytmkTCcE2SweXvWbjugXvzEijsnI5k-XXtxjLjo7Mz7YQckdymeV34h8CWJt9Y39F3uC9xoryhuVsVsPYWeUhYFOOkX_n2tq7grLkQinBWUS2aLH7AWPlmR5PAa0U1Rp3a7ERSuyHEgwwTLQPCBO8XkEtyOXzdQ0k4uHEbscgisteMd3Psbxa0MPCZoxOBfMLOLdPPpQQyhfXxaBsIngUVrqFoMVwq4U2tDQ8-xO5WOf8gyT6gzv8OqmmJK-GwbXFNLoV7zFEPMvIPuz0WfU08tHG-SkC5IvSgun0m5xwNx9FyX4hszYe-WFN-By-qYCeOhOO609v1UTlqj_BIYzoSws7CXgW32ewdsZPvHtULmsUVbBqfO1QUWyidp-cbmrmagXwJUxuCOyCUDEtRSoUtEdAkHJQdyiowlQwmJcJkOFlT48YYpuXJE6kSX1PDhmSe_b5cNdDrmrSvyKQTEEiay8skwrAcfGPzPDIV60jCJs2U3b5_sML0mh_ZYFciZJ830SAZnnUS8KDWT-VKWTlAOOUvfCXytiHwdMLOgN-a7pdqSFyDbyxd9XHYtOHVV23lGf0oTFq_JQutFkZuEW6o0aBBhxCBBPNes9pD8Nb5QEXU6b63xJ-482U1ODNf5IXL64ND3KMZOo8nPB3G2vG7yJTH0fL5ZZA9t1FyRQOgkSPLfV7_zDWDB4zbNqd4xhNHFp8SFMZh77QFX_xqmiA_14EzhhHHdG41nnW7Qpy5YmEuWFRbpY1W1gN95MnNcvsQIDiAwT9zwTPW6XqheKFCllvlxjbP6j8ZLoh0y_HImoWPUN2ClNw5rtOYxvt2pfmnFjt0RXr3mwd8GMVjUc0wGtgkP6cCrHLcqVPEOrTwE4AaBz15A5kw9oazANkb6tf1Nepn_lTBLm6dv0c6AWiab720T3HPBFmZ_hstyxrbYAgQ1QJqkkdPUBs1J92PuMR3RlNWJ0bNSzS8X1LoDcsFNmMv2bCpUDeTuvMz0ksqnMIb-mWuqBGOfdF_9BKkn-68TxN_PvQR_vuUEU-g1i0hW5lbdKtvXe5JmzZeLluwuVVVpiXGeGgtEPBo_xQ79YB-FmfwmlylCtV-db0idqFB_XUO35UjFZikNde8ItoTKSS2wLEMUZaYJ-tKyeSCy6k0IY7s9DcBK24A8TKwKzSjvvne3nRgcyHPU_ySJTavj85LMY8cda7LvUE9ON4cXHpSdFgltYlWKOoU7iU-dLIjMJNA8&sai=AMfl-YStZO4FUMqhUJS2j937X4lTU4w-hGU2EUIaIpsbgMyV9wQn_6clz2jySd0zv0dtC-j7X6Rs_e4A5pudILRAbj64YVfVxfySQ3Y4pv8xjpeieLpq6rc6QB71U8OuZVSoNgpv46WsapuLbs3Lis-Q2b-lD1ej4U-h8PZd0ec6Q3Tpt9Bvqbf2fK6cA_w4lwSC16QUDeZK66d3qmzbulgnOKsuI7ndMp9C1xaH8KUu0T8G0m57kJXakQY1RAFzXWc6PXZFbXLU99mZQpyzlLb3SDx9T3E5DvUmzKarAUcbD7KMqO6SWss&sig=Cg0ArKJSzDX2NW2jKwNxEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=303&cbvp=1&cstd=299&cisv=r20221206.19529&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvSNJhGtE56jz_9R6dylSdN165Mm5TgytmkTCcE2SweXvWbjugXvzEijsnI5k-XXtxjLjo7Mz7YQckdymeV34h8CWJt9Y39F3uC9xoryhuVsVsPYWeUhYFOOkX_n2tq7grLkQinBWUS2aLH7AWPlmR5PAa0U1Rp3a7ERSuyHEgwwTLQPCBO8XkEtyOXzdQ0k4uHEbscgisteMd3Psbxa0MPCZoxOBfMLOLdPPpQQyhfXxaBsIngUVrqFoMVwq4U2tDQ8-xO5WOf8gyT6gzv8OqmmJK-GwbXFNLoV7zFEPMvIPuz0WfU08tHG-SkC5IvSgun0m5xwNx9FyX4hszYe-WFN-By-qYCeOhOO609v1UTlqj_BIYzoSws7CXgW32ewdsZPvHtULmsUVbBqfO1QUWyidp-cbmrmagXwJUxuCOyCUDEtRSoUtEdAkHJQdyiowlQwmJcJkOFlT48YYpuXJE6kSX1PDhmSe_b5cNdDrmrSvyKQTEEiay8skwrAcfGPzPDIV60jCJs2U3b5_sML0mh_ZYFciZJ830SAZnnUS8KDWT-VKWTlAOOUvfCXytiHwdMLOgN-a7pdqSFyDbyxd9XHYtOHVV23lGf0oTFq_JQutFkZuEW6o0aBBhxCBBPNes9pD8Nb5QEXU6b63xJ-482U1ODNf5IXL64ND3KMZOo8nPB3G2vG7yJTH0fL5ZZA9t1FyRQOgkSPLfV7_zDWDB4zbNqd4xhNHFp8SFMZh77QFX_xqmiA_14EzhhHHdG41nnW7Qpy5YmEuWFRbpY1W1gN95MnNcvsQIDiAwT9zwTPW6XqheKFCllvlxjbP6j8ZLoh0y_HImoWPUN2ClNw5rtOYxvt2pfmnFjt0RXr3mwd8GMVjUc0wGtgkP6cCrHLcqVPEOrTwE4AaBz15A5kw9oazANkb6tf1Nepn_lTBLm6dv0c6AWiab720T3HPBFmZ_hstyxrbYAgQ1QJqkkdPUBs1J92PuMR3RlNWJ0bNSzS8X1LoDcsFNmMv2bCpUDeTuvMz0ksqnMIb-mWuqBGOfdF_9BKkn-68TxN_PvQR_vuUEU-g1i0hW5lbdKtvXe5JmzZeLluwuVVVpiXGeGgtEPBo_xQ79YB-FmfwmlylCtV-db0idqFB_XUO35UjFZikNde8ItoTKSS2wLEMUZaYJ-tKyeSCy6k0IY7s9DcBK24A8TKwKzSjvvne3nRgcyHPU_ySJTavj85LMY8cda7LvUE9ON4cXHpSdFgltYlWKOoU7iU-dLIjMJNA8&sai=AMfl-YStZO4FUMqhUJS2j937X4lTU4w-hGU2EUIaIpsbgMyV9wQn_6clz2jySd0zv0dtC-j7X6Rs_e4A5pudILRAbj64YVfVxfySQ3Y4pv8xjpeieLpq6rc6QB71U8OuZVSoNgpv46WsapuLbs3Lis-Q2b-lD1ej4U-h8PZd0ec6Q3Tpt9Bvqbf2fK6cA_w4lwSC16QUDeZK66d3qmzbulgnOKsuI7ndMp9C1xaH8KUu0T8G0m57kJXakQY1RAFzXWc6PXZFbXLU99mZQpyzlLb3SDx9T3E5DvUmzKarAUcbD7KMqO6SWss&sig=Cg0ArKJSzDX2NW2jKwNxEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=303&cbvp=1&cstd=299&cisv=r20221206.19529&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvSNJhGtE56jz_9R6dylSdN165Mm5TgytmkTCcE2SweXvWbjugXvzEijsnI5k-XXtxjLjo7Mz7YQckdymeV34h8CWJt9Y39F3uC9xoryhuVsVsPYWeUhYFOOkX_n2tq7grLkQinBWUS2aLH7AWPlmR5PAa0U1Rp3a7ERSuyHEgwwTLQPCBO8XkEtyOXzdQ0k4uHEbscgisteMd3Psbxa0MPCZoxOBfMLOLdPPpQQyhfXxaBsIngUVrqFoMVwq4U2tDQ8-xO5WOf8gyT6gzv8OqmmJK-GwbXFNLoV7zFEPMvIPuz0WfU08tHG-SkC5IvSgun0m5xwNx9FyX4hszYe-WFN-By-qYCeOhOO609v1UTlqj_BIYzoSws7CXgW32ewdsZPvHtULmsUVbBqfO1QUWyidp-cbmrmagXwJUxuCOyCUDEtRSoUtEdAkHJQdyiowlQwmJcJkOFlT48YYpuXJE6kSX1PDhmSe_b5cNdDrmrSvyKQTEEiay8skwrAcfGPzPDIV60jCJs2U3b5_sML0mh_ZYFciZJ830SAZnnUS8KDWT-VKWTlAOOUvfCXytiHwdMLOgN-a7pdqSFyDbyxd9XHYtOHVV23lGf0oTFq_JQutFkZuEW6o0aBBhxCBBPNes9pD8Nb5QEXU6b63xJ-482U1ODNf5IXL64ND3KMZOo8nPB3G2vG7yJTH0fL5ZZA9t1FyRQOgkSPLfV7_zDWDB4zbNqd4xhNHFp8SFMZh77QFX_xqmiA_14EzhhHHdG41nnW7Qpy5YmEuWFRbpY1W1gN95MnNcvsQIDiAwT9zwTPW6XqheKFCllvlxjbP6j8ZLoh0y_HImoWPUN2ClNw5rtOYxvt2pfmnFjt0RXr3mwd8GMVjUc0wGtgkP6cCrHLcqVPEOrTwE4AaBz15A5kw9oazANkb6tf1Nepn_lTBLm6dv0c6AWiab720T3HPBFmZ_hstyxrbYAgQ1QJqkkdPUBs1J92PuMR3RlNWJ0bNSzS8X1LoDcsFNmMv2bCpUDeTuvMz0ksqnMIb-mWuqBGOfdF_9BKkn-68TxN_PvQR_vuUEU-g1i0hW5lbdKtvXe5JmzZeLluwuVVVpiXGeGgtEPBo_xQ79YB-FmfwmlylCtV-db0idqFB_XUO35UjFZikNde8ItoTKSS2wLEMUZaYJ-tKyeSCy6k0IY7s9DcBK24A8TKwKzSjvvne3nRgcyHPU_ySJTavj85LMY8cda7LvUE9ON4cXHpSdFgltYlWKOoU7iU-dLIjMJNA8&sai=AMfl-YStZO4FUMqhUJS2j937X4lTU4w-hGU2EUIaIpsbgMyV9wQn_6clz2jySd0zv0dtC-j7X6Rs_e4A5pudILRAbj64YVfVxfySQ3Y4pv8xjpeieLpq6rc6QB71U8OuZVSoNgpv46WsapuLbs3Lis-Q2b-lD1ej4U-h8PZd0ec6Q3Tpt9Bvqbf2fK6cA_w4lwSC16QUDeZK66d3qmzbulgnOKsuI7ndMp9C1xaH8KUu0T8G0m57kJXakQY1RAFzXWc6PXZFbXLU99mZQpyzlLb3SDx9T3E5DvUmzKarAUcbD7KMqO6SWss&sig=Cg0ArKJSzDX2NW2jKwNxEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=303&cbvp=1&cstd=299&cisv=r20221206.19529&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:00 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:00 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvO1ZiYoXcT5xC8k7XA2b6Ya0HidDDS3q4qLfScJIenoPXtJb8lsdyV7w9_n_ynNHLeHKRFAcqRsQLDO14ccLp8U6TI3RdDwtZkcTt5TAKoJ3snIo1gcCZy71pmLg6zaDpPaK-XMJKmsjGyxRQkYuSg02hE3261WnVTjkqCHb4jrBSLhVwtN7QGpcbaXLM9UlMgB8UdA2OM_E_J-ktUkBWMcmj9fDGdoJkkuT69Dda7--c7IrGn-GO06adGjcA16YCMC8nIwt6LttFOcUNtfn61qCX6w6S_hGQLnem4uRMLq3yT0Wy88CO6dsW3PGm5JqJOmcvgaknKzDvqOGVE82oPtohRZdDqPowbOgl25k-iP2re_9KbeSjsFkkpKxzWWInBQOrHHU5dRqbMaHPpOvfnG5Rvvuu-IE8Q3zuazOvzGdjfaw2TO0bqqemdp-d7JWDK5ApjWGW38m5MXw7oWpiEGUz4SCzikLuwljrNM3soiT_Jnlsk7Z0Fntou90yyw_oTesARkRvvebnU6gtssWgIXmM4pfr569xw7k1-8p7zO3UODRsh7RP11K5Dwp87q1LKTRKLlx3gS-00h1W1AXITXHpFHB29RzTpIbOFahlfH2pQ4j8S_Uc0DAssUdb804HD8dzCvPLKbHhGIFNi4aU1lonWy5Zk1JKmuWPTar1PYHZMSQDIMba2rzpmGIWp-KCXDFQ76__ExEShPNDKOjW8qpoXGTUPS1IpS8gU9jQJuXl5ZhWKAjQibxT5TW2AVHsG920qhYhqSaGKxQ6CA8tZmNi9CdZyHjC0JHrp6blcYiSrDFgdv2ZKIKJlxZCXnWfd1r6om3wYyeH7-jccaIODSw3G4ssekNKzT-8n9eyfXgHCCwiTCXRdDo_MZnD1EjwPg9VZtSSLN2KJO0HhGYhvoBy2G_LyKgLgGSc8aGUx0r30bBY9u8mn7-lXm1eBjSS0AIECAxlWgkmXYyuwwsykOJD3cuHf_tPvOt7BBff63UdWPxJToyeBr4heD_PVYyBJ4IqorkbfgpAhga6SUi-EKjJK6GzDcrlQ8TVZzMgs2XN_vSYtOGKHxDKqnmFhd-0BaMW4NTCNmgfWQpEb_TEZ0TLAIO-I1xBVEg0gcM6-XbMJVdfAlRi-07Mvt8yqB3b9lDKnrIJhZxZ0rbs9h0h0SB3R7VV00_syLsnnFHv7m6Hc2z3pb6cG-76PNGS6SEMgDAqaLJCNH40&sai=AMfl-YReoVIJaKkJ6zTs-VDErbdmXpz8xUXaA7c8ubZqhUe7OipdlvI3_NOUmZeAxb4nNvpqtw8yDga58TG1nHpz_fhqtkj0B6v-31S3TZ3Shh0bN-vEUwa13gngfDKpMMkjULkS0mD8Qi5ATaVUXGcmPeAiJumbEeeezEtKmRZy5s1aSp9qKpjH-ULUh5sBnHAAboFBf6RKjj6MVjgrboM6tX8UrgnWbIDJys1EyKCuy5OzLx6r39LGnzokYVVrP-60TqE1pY00JvMe3oV3WM-xDckViLmk8IwRRKJKwMJfNomQTLuJspI&sig=Cg0ArKJSzIqhLBTt-K1TEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1102&vt=11&dtpt=851&dett=3&cstd=247&cisv=r20221206.97035&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvO1ZiYoXcT5xC8k7XA2b6Ya0HidDDS3q4qLfScJIenoPXtJb8lsdyV7w9_n_ynNHLeHKRFAcqRsQLDO14ccLp8U6TI3RdDwtZkcTt5TAKoJ3snIo1gcCZy71pmLg6zaDpPaK-XMJKmsjGyxRQkYuSg02hE3261WnVTjkqCHb4jrBSLhVwtN7QGpcbaXLM9UlMgB8UdA2OM_E_J-ktUkBWMcmj9fDGdoJkkuT69Dda7--c7IrGn-GO06adGjcA16YCMC8nIwt6LttFOcUNtfn61qCX6w6S_hGQLnem4uRMLq3yT0Wy88CO6dsW3PGm5JqJOmcvgaknKzDvqOGVE82oPtohRZdDqPowbOgl25k-iP2re_9KbeSjsFkkpKxzWWInBQOrHHU5dRqbMaHPpOvfnG5Rvvuu-IE8Q3zuazOvzGdjfaw2TO0bqqemdp-d7JWDK5ApjWGW38m5MXw7oWpiEGUz4SCzikLuwljrNM3soiT_Jnlsk7Z0Fntou90yyw_oTesARkRvvebnU6gtssWgIXmM4pfr569xw7k1-8p7zO3UODRsh7RP11K5Dwp87q1LKTRKLlx3gS-00h1W1AXITXHpFHB29RzTpIbOFahlfH2pQ4j8S_Uc0DAssUdb804HD8dzCvPLKbHhGIFNi4aU1lonWy5Zk1JKmuWPTar1PYHZMSQDIMba2rzpmGIWp-KCXDFQ76__ExEShPNDKOjW8qpoXGTUPS1IpS8gU9jQJuXl5ZhWKAjQibxT5TW2AVHsG920qhYhqSaGKxQ6CA8tZmNi9CdZyHjC0JHrp6blcYiSrDFgdv2ZKIKJlxZCXnWfd1r6om3wYyeH7-jccaIODSw3G4ssekNKzT-8n9eyfXgHCCwiTCXRdDo_MZnD1EjwPg9VZtSSLN2KJO0HhGYhvoBy2G_LyKgLgGSc8aGUx0r30bBY9u8mn7-lXm1eBjSS0AIECAxlWgkmXYyuwwsykOJD3cuHf_tPvOt7BBff63UdWPxJToyeBr4heD_PVYyBJ4IqorkbfgpAhga6SUi-EKjJK6GzDcrlQ8TVZzMgs2XN_vSYtOGKHxDKqnmFhd-0BaMW4NTCNmgfWQpEb_TEZ0TLAIO-I1xBVEg0gcM6-XbMJVdfAlRi-07Mvt8yqB3b9lDKnrIJhZxZ0rbs9h0h0SB3R7VV00_syLsnnFHv7m6Hc2z3pb6cG-76PNGS6SEMgDAqaLJCNH40&sai=AMfl-YReoVIJaKkJ6zTs-VDErbdmXpz8xUXaA7c8ubZqhUe7OipdlvI3_NOUmZeAxb4nNvpqtw8yDga58TG1nHpz_fhqtkj0B6v-31S3TZ3Shh0bN-vEUwa13gngfDKpMMkjULkS0mD8Qi5ATaVUXGcmPeAiJumbEeeezEtKmRZy5s1aSp9qKpjH-ULUh5sBnHAAboFBf6RKjj6MVjgrboM6tX8UrgnWbIDJys1EyKCuy5OzLx6r39LGnzokYVVrP-60TqE1pY00JvMe3oV3WM-xDckViLmk8IwRRKJKwMJfNomQTLuJspI&sig=Cg0ArKJSzIqhLBTt-K1TEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1102&vt=11&dtpt=851&dett=3&cstd=247&cisv=r20221206.97035&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvO1ZiYoXcT5xC8k7XA2b6Ya0HidDDS3q4qLfScJIenoPXtJb8lsdyV7w9_n_ynNHLeHKRFAcqRsQLDO14ccLp8U6TI3RdDwtZkcTt5TAKoJ3snIo1gcCZy71pmLg6zaDpPaK-XMJKmsjGyxRQkYuSg02hE3261WnVTjkqCHb4jrBSLhVwtN7QGpcbaXLM9UlMgB8UdA2OM_E_J-ktUkBWMcmj9fDGdoJkkuT69Dda7--c7IrGn-GO06adGjcA16YCMC8nIwt6LttFOcUNtfn61qCX6w6S_hGQLnem4uRMLq3yT0Wy88CO6dsW3PGm5JqJOmcvgaknKzDvqOGVE82oPtohRZdDqPowbOgl25k-iP2re_9KbeSjsFkkpKxzWWInBQOrHHU5dRqbMaHPpOvfnG5Rvvuu-IE8Q3zuazOvzGdjfaw2TO0bqqemdp-d7JWDK5ApjWGW38m5MXw7oWpiEGUz4SCzikLuwljrNM3soiT_Jnlsk7Z0Fntou90yyw_oTesARkRvvebnU6gtssWgIXmM4pfr569xw7k1-8p7zO3UODRsh7RP11K5Dwp87q1LKTRKLlx3gS-00h1W1AXITXHpFHB29RzTpIbOFahlfH2pQ4j8S_Uc0DAssUdb804HD8dzCvPLKbHhGIFNi4aU1lonWy5Zk1JKmuWPTar1PYHZMSQDIMba2rzpmGIWp-KCXDFQ76__ExEShPNDKOjW8qpoXGTUPS1IpS8gU9jQJuXl5ZhWKAjQibxT5TW2AVHsG920qhYhqSaGKxQ6CA8tZmNi9CdZyHjC0JHrp6blcYiSrDFgdv2ZKIKJlxZCXnWfd1r6om3wYyeH7-jccaIODSw3G4ssekNKzT-8n9eyfXgHCCwiTCXRdDo_MZnD1EjwPg9VZtSSLN2KJO0HhGYhvoBy2G_LyKgLgGSc8aGUx0r30bBY9u8mn7-lXm1eBjSS0AIECAxlWgkmXYyuwwsykOJD3cuHf_tPvOt7BBff63UdWPxJToyeBr4heD_PVYyBJ4IqorkbfgpAhga6SUi-EKjJK6GzDcrlQ8TVZzMgs2XN_vSYtOGKHxDKqnmFhd-0BaMW4NTCNmgfWQpEb_TEZ0TLAIO-I1xBVEg0gcM6-XbMJVdfAlRi-07Mvt8yqB3b9lDKnrIJhZxZ0rbs9h0h0SB3R7VV00_syLsnnFHv7m6Hc2z3pb6cG-76PNGS6SEMgDAqaLJCNH40&sai=AMfl-YReoVIJaKkJ6zTs-VDErbdmXpz8xUXaA7c8ubZqhUe7OipdlvI3_NOUmZeAxb4nNvpqtw8yDga58TG1nHpz_fhqtkj0B6v-31S3TZ3Shh0bN-vEUwa13gngfDKpMMkjULkS0mD8Qi5ATaVUXGcmPeAiJumbEeeezEtKmRZy5s1aSp9qKpjH-ULUh5sBnHAAboFBf6RKjj6MVjgrboM6tX8UrgnWbIDJys1EyKCuy5OzLx6r39LGnzokYVVrP-60TqE1pY00JvMe3oV3WM-xDckViLmk8IwRRKJKwMJfNomQTLuJspI&sig=Cg0ArKJSzIqhLBTt-K1TEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1102&vt=11&dtpt=851&dett=3&cstd=247&cisv=r20221206.97035&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:01 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:01 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:01 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvSNJhGtE56jz_9R6dylSdN165Mm5TgytmkTCcE2SweXvWbjugXvzEijsnI5k-XXtxjLjo7Mz7YQckdymeV34h8CWJt9Y39F3uC9xoryhuVsVsPYWeUhYFOOkX_n2tq7grLkQinBWUS2aLH7AWPlmR5PAa0U1Rp3a7ERSuyHEgwwTLQPCBO8XkEtyOXzdQ0k4uHEbscgisteMd3Psbxa0MPCZoxOBfMLOLdPPpQQyhfXxaBsIngUVrqFoMVwq4U2tDQ8-xO5WOf8gyT6gzv8OqmmJK-GwbXFNLoV7zFEPMvIPuz0WfU08tHG-SkC5IvSgun0m5xwNx9FyX4hszYe-WFN-By-qYCeOhOO609v1UTlqj_BIYzoSws7CXgW32ewdsZPvHtULmsUVbBqfO1QUWyidp-cbmrmagXwJUxuCOyCUDEtRSoUtEdAkHJQdyiowlQwmJcJkOFlT48YYpuXJE6kSX1PDhmSe_b5cNdDrmrSvyKQTEEiay8skwrAcfGPzPDIV60jCJs2U3b5_sML0mh_ZYFciZJ830SAZnnUS8KDWT-VKWTlAOOUvfCXytiHwdMLOgN-a7pdqSFyDbyxd9XHYtOHVV23lGf0oTFq_JQutFkZuEW6o0aBBhxCBBPNes9pD8Nb5QEXU6b63xJ-482U1ODNf5IXL64ND3KMZOo8nPB3G2vG7yJTH0fL5ZZA9t1FyRQOgkSPLfV7_zDWDB4zbNqd4xhNHFp8SFMZh77QFX_xqmiA_14EzhhHHdG41nnW7Qpy5YmEuWFRbpY1W1gN95MnNcvsQIDiAwT9zwTPW6XqheKFCllvlxjbP6j8ZLoh0y_HImoWPUN2ClNw5rtOYxvt2pfmnFjt0RXr3mwd8GMVjUc0wGtgkP6cCrHLcqVPEOrTwE4AaBz15A5kw9oazANkb6tf1Nepn_lTBLm6dv0c6AWiab720T3HPBFmZ_hstyxrbYAgQ1QJqkkdPUBs1J92PuMR3RlNWJ0bNSzS8X1LoDcsFNmMv2bCpUDeTuvMz0ksqnMIb-mWuqBGOfdF_9BKkn-68TxN_PvQR_vuUEU-g1i0hW5lbdKtvXe5JmzZeLluwuVVVpiXGeGgtEPBo_xQ79YB-FmfwmlylCtV-db0idqFB_XUO35UjFZikNde8ItoTKSS2wLEMUZaYJ-tKyeSCy6k0IY7s9DcBK24A8TKwKzSjvvne3nRgcyHPU_ySJTavj85LMY8cda7LvUE9ON4cXHpSdFgltYlWKOoU7iU-dLIjMJNA8&sai=AMfl-YStZO4FUMqhUJS2j937X4lTU4w-hGU2EUIaIpsbgMyV9wQn_6clz2jySd0zv0dtC-j7X6Rs_e4A5pudILRAbj64YVfVxfySQ3Y4pv8xjpeieLpq6rc6QB71U8OuZVSoNgpv46WsapuLbs3Lis-Q2b-lD1ej4U-h8PZd0ec6Q3Tpt9Bvqbf2fK6cA_w4lwSC16QUDeZK66d3qmzbulgnOKsuI7ndMp9C1xaH8KUu0T8G0m57kJXakQY1RAFzXWc6PXZFbXLU99mZQpyzlLb3SDx9T3E5DvUmzKarAUcbD7KMqO6SWss&sig=Cg0ArKJSzDX2NW2jKwNxEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1225&vt=11&dtpt=922&dett=3&cstd=299&cisv=r20221206.19529&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvSNJhGtE56jz_9R6dylSdN165Mm5TgytmkTCcE2SweXvWbjugXvzEijsnI5k-XXtxjLjo7Mz7YQckdymeV34h8CWJt9Y39F3uC9xoryhuVsVsPYWeUhYFOOkX_n2tq7grLkQinBWUS2aLH7AWPlmR5PAa0U1Rp3a7ERSuyHEgwwTLQPCBO8XkEtyOXzdQ0k4uHEbscgisteMd3Psbxa0MPCZoxOBfMLOLdPPpQQyhfXxaBsIngUVrqFoMVwq4U2tDQ8-xO5WOf8gyT6gzv8OqmmJK-GwbXFNLoV7zFEPMvIPuz0WfU08tHG-SkC5IvSgun0m5xwNx9FyX4hszYe-WFN-By-qYCeOhOO609v1UTlqj_BIYzoSws7CXgW32ewdsZPvHtULmsUVbBqfO1QUWyidp-cbmrmagXwJUxuCOyCUDEtRSoUtEdAkHJQdyiowlQwmJcJkOFlT48YYpuXJE6kSX1PDhmSe_b5cNdDrmrSvyKQTEEiay8skwrAcfGPzPDIV60jCJs2U3b5_sML0mh_ZYFciZJ830SAZnnUS8KDWT-VKWTlAOOUvfCXytiHwdMLOgN-a7pdqSFyDbyxd9XHYtOHVV23lGf0oTFq_JQutFkZuEW6o0aBBhxCBBPNes9pD8Nb5QEXU6b63xJ-482U1ODNf5IXL64ND3KMZOo8nPB3G2vG7yJTH0fL5ZZA9t1FyRQOgkSPLfV7_zDWDB4zbNqd4xhNHFp8SFMZh77QFX_xqmiA_14EzhhHHdG41nnW7Qpy5YmEuWFRbpY1W1gN95MnNcvsQIDiAwT9zwTPW6XqheKFCllvlxjbP6j8ZLoh0y_HImoWPUN2ClNw5rtOYxvt2pfmnFjt0RXr3mwd8GMVjUc0wGtgkP6cCrHLcqVPEOrTwE4AaBz15A5kw9oazANkb6tf1Nepn_lTBLm6dv0c6AWiab720T3HPBFmZ_hstyxrbYAgQ1QJqkkdPUBs1J92PuMR3RlNWJ0bNSzS8X1LoDcsFNmMv2bCpUDeTuvMz0ksqnMIb-mWuqBGOfdF_9BKkn-68TxN_PvQR_vuUEU-g1i0hW5lbdKtvXe5JmzZeLluwuVVVpiXGeGgtEPBo_xQ79YB-FmfwmlylCtV-db0idqFB_XUO35UjFZikNde8ItoTKSS2wLEMUZaYJ-tKyeSCy6k0IY7s9DcBK24A8TKwKzSjvvne3nRgcyHPU_ySJTavj85LMY8cda7LvUE9ON4cXHpSdFgltYlWKOoU7iU-dLIjMJNA8&sai=AMfl-YStZO4FUMqhUJS2j937X4lTU4w-hGU2EUIaIpsbgMyV9wQn_6clz2jySd0zv0dtC-j7X6Rs_e4A5pudILRAbj64YVfVxfySQ3Y4pv8xjpeieLpq6rc6QB71U8OuZVSoNgpv46WsapuLbs3Lis-Q2b-lD1ej4U-h8PZd0ec6Q3Tpt9Bvqbf2fK6cA_w4lwSC16QUDeZK66d3qmzbulgnOKsuI7ndMp9C1xaH8KUu0T8G0m57kJXakQY1RAFzXWc6PXZFbXLU99mZQpyzlLb3SDx9T3E5DvUmzKarAUcbD7KMqO6SWss&sig=Cg0ArKJSzDX2NW2jKwNxEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1225&vt=11&dtpt=922&dett=3&cstd=299&cisv=r20221206.19529&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvSNJhGtE56jz_9R6dylSdN165Mm5TgytmkTCcE2SweXvWbjugXvzEijsnI5k-XXtxjLjo7Mz7YQckdymeV34h8CWJt9Y39F3uC9xoryhuVsVsPYWeUhYFOOkX_n2tq7grLkQinBWUS2aLH7AWPlmR5PAa0U1Rp3a7ERSuyHEgwwTLQPCBO8XkEtyOXzdQ0k4uHEbscgisteMd3Psbxa0MPCZoxOBfMLOLdPPpQQyhfXxaBsIngUVrqFoMVwq4U2tDQ8-xO5WOf8gyT6gzv8OqmmJK-GwbXFNLoV7zFEPMvIPuz0WfU08tHG-SkC5IvSgun0m5xwNx9FyX4hszYe-WFN-By-qYCeOhOO609v1UTlqj_BIYzoSws7CXgW32ewdsZPvHtULmsUVbBqfO1QUWyidp-cbmrmagXwJUxuCOyCUDEtRSoUtEdAkHJQdyiowlQwmJcJkOFlT48YYpuXJE6kSX1PDhmSe_b5cNdDrmrSvyKQTEEiay8skwrAcfGPzPDIV60jCJs2U3b5_sML0mh_ZYFciZJ830SAZnnUS8KDWT-VKWTlAOOUvfCXytiHwdMLOgN-a7pdqSFyDbyxd9XHYtOHVV23lGf0oTFq_JQutFkZuEW6o0aBBhxCBBPNes9pD8Nb5QEXU6b63xJ-482U1ODNf5IXL64ND3KMZOo8nPB3G2vG7yJTH0fL5ZZA9t1FyRQOgkSPLfV7_zDWDB4zbNqd4xhNHFp8SFMZh77QFX_xqmiA_14EzhhHHdG41nnW7Qpy5YmEuWFRbpY1W1gN95MnNcvsQIDiAwT9zwTPW6XqheKFCllvlxjbP6j8ZLoh0y_HImoWPUN2ClNw5rtOYxvt2pfmnFjt0RXr3mwd8GMVjUc0wGtgkP6cCrHLcqVPEOrTwE4AaBz15A5kw9oazANkb6tf1Nepn_lTBLm6dv0c6AWiab720T3HPBFmZ_hstyxrbYAgQ1QJqkkdPUBs1J92PuMR3RlNWJ0bNSzS8X1LoDcsFNmMv2bCpUDeTuvMz0ksqnMIb-mWuqBGOfdF_9BKkn-68TxN_PvQR_vuUEU-g1i0hW5lbdKtvXe5JmzZeLluwuVVVpiXGeGgtEPBo_xQ79YB-FmfwmlylCtV-db0idqFB_XUO35UjFZikNde8ItoTKSS2wLEMUZaYJ-tKyeSCy6k0IY7s9DcBK24A8TKwKzSjvvne3nRgcyHPU_ySJTavj85LMY8cda7LvUE9ON4cXHpSdFgltYlWKOoU7iU-dLIjMJNA8&sai=AMfl-YStZO4FUMqhUJS2j937X4lTU4w-hGU2EUIaIpsbgMyV9wQn_6clz2jySd0zv0dtC-j7X6Rs_e4A5pudILRAbj64YVfVxfySQ3Y4pv8xjpeieLpq6rc6QB71U8OuZVSoNgpv46WsapuLbs3Lis-Q2b-lD1ej4U-h8PZd0ec6Q3Tpt9Bvqbf2fK6cA_w4lwSC16QUDeZK66d3qmzbulgnOKsuI7ndMp9C1xaH8KUu0T8G0m57kJXakQY1RAFzXWc6PXZFbXLU99mZQpyzlLb3SDx9T3E5DvUmzKarAUcbD7KMqO6SWss&sig=Cg0ArKJSzDX2NW2jKwNxEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1225&vt=11&dtpt=922&dett=3&cstd=299&cisv=r20221206.19529&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:01 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:01 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:01 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssBBbPvmo38yljMolmgUOeUXuCG5JxOGmgaz_jZitW4H8fRPSwf77wNbvxTdPhShX7NLP4vOB8FP2clczARiSwh4sxWKuWTLw8NOa1X_iOpP9yKs7E_CPV5ffn-z8fBsdQGDysCeNG5DXfOFQLFsX0LNuObmTXIp75Ci1g1-29PgABmuV65AAYV5aE1Pk8dWC53V71Az9bpGdX9UbS8VC79fj2oIUyaTfVL8Q8DieUv1BFmBZLa-9qqnNRgVrhZOxD-NKqvbiqTzLZjpi6JpAS8OSK8QZao4QlyOa5XZ916aXZYI8ZIWRkaA05bKxvHHXYnQx5Dkd71IfDiwgX3kLEzE_5Nl0E860SECsaRCe9XRcgtiHVvUBRnsRy8IVvx8CF22jQqhk60JtDTSkvVdGompLArMFFmqnZWHqXJ5V1113ZdOWL_agmrvCKuFT48XEOKmq3sOL2SpS0yFOlnEjVaeR81AY92xtwx7Vv1AVGynaWeLrB2Xy6cuRkSsxaGGiN3muDYaiIoqLLZsEQsYjc64uoWC7ctuHmFxLQc5SG0IMnLxylK7vawIzchVpkJxQaZLsvrgM81_4XLE01NUsfrMuO1EL_vIpN1sJSQquZ8MDNQr70NygMiMrLJSCt7MfoyK7JkBnY4DdK-fl1w0FFmJM_0IHh5sEzstiYlmVnpRkA5SKzt-DuAL5B03y8lhsUqJ2UiI9PqtrtWmDMsQrAHUMWxMTtZ0US_lCvI6MNljoocjvIpQkskLbapSUWJjHe-Zastcjv0Y5dnFDHJym3yD6yAhuI0QMeJXQC4Uaz2L2Y027-84OkGK5K1ZjLHLSWFih9DKXHamqzyYlXwSAaf_MN2u7miC-fDiyCT-WEuBJG4CdlUbuxDw69KnOBF7LU5LQCGQ4lhWOnwwAuY095BVuAIgPK2uvch0ICdd3WA6OHlGD-nYZES1VG3Dv1o9E7pJKi0h_fwTCZXtQLUcZ_Qp0B4twpnEfV2D-gYyGx_MVJoNwPC5RnAQGXPVDE6bG_RWyLExLoipLDWnGSbvnqlmX4tc53FxYbqOdq2fMeihyyTU-gQClZd_MCetZDn3b6_NlZAYJLElFyTtAWO3SJHWP1PaBllZgvTgTgOfK5FhHXQ5hKwmLnmiDruLBUz8fcVw64ABt6qtsV_tNggm9d53ZKTK1Z2554scnBCMSogst1K4u2QSaWEM5b4Ov5_2bMZ_aFXkgRP9Z-2AsKoUJeO5vbKnUVwvSCpqapNsfq-C1DvAYln3Q&sai=AMfl-YTudErIzh55MFCFBG6mwox-FtC1kTctEG8w8qxU5Tfc5XQRtS8tWdoHI_7QIvqIUkWWyevdwGuz_aer7W5ExYFsGleyCodRgs9pspR1TEZicOPM7ijDIvLynod29TX89J277M3FXq63P7MIgNAUKvkMCNYXZQWCiznxu0vY4ovUfu7VEmIewaSMnSqS-lrpb0M2XT8SjsrD9rBGrZvPGgWv4uSp7DgCDwEPvFYtjVTuWMKOWCFgZpF0Jq9rbt_dSwhbqiddlEL9Xgs5qLENfm529MFw-Ir2HRSIz6JmBrNTduOlbJA&sig=Cg0ArKJSzIT9qrKdzUEGEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1345&vt=11&dtpt=1197&dett=3&cstd=142&cisv=r20221206.07124&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssBBbPvmo38yljMolmgUOeUXuCG5JxOGmgaz_jZitW4H8fRPSwf77wNbvxTdPhShX7NLP4vOB8FP2clczARiSwh4sxWKuWTLw8NOa1X_iOpP9yKs7E_CPV5ffn-z8fBsdQGDysCeNG5DXfOFQLFsX0LNuObmTXIp75Ci1g1-29PgABmuV65AAYV5aE1Pk8dWC53V71Az9bpGdX9UbS8VC79fj2oIUyaTfVL8Q8DieUv1BFmBZLa-9qqnNRgVrhZOxD-NKqvbiqTzLZjpi6JpAS8OSK8QZao4QlyOa5XZ916aXZYI8ZIWRkaA05bKxvHHXYnQx5Dkd71IfDiwgX3kLEzE_5Nl0E860SECsaRCe9XRcgtiHVvUBRnsRy8IVvx8CF22jQqhk60JtDTSkvVdGompLArMFFmqnZWHqXJ5V1113ZdOWL_agmrvCKuFT48XEOKmq3sOL2SpS0yFOlnEjVaeR81AY92xtwx7Vv1AVGynaWeLrB2Xy6cuRkSsxaGGiN3muDYaiIoqLLZsEQsYjc64uoWC7ctuHmFxLQc5SG0IMnLxylK7vawIzchVpkJxQaZLsvrgM81_4XLE01NUsfrMuO1EL_vIpN1sJSQquZ8MDNQr70NygMiMrLJSCt7MfoyK7JkBnY4DdK-fl1w0FFmJM_0IHh5sEzstiYlmVnpRkA5SKzt-DuAL5B03y8lhsUqJ2UiI9PqtrtWmDMsQrAHUMWxMTtZ0US_lCvI6MNljoocjvIpQkskLbapSUWJjHe-Zastcjv0Y5dnFDHJym3yD6yAhuI0QMeJXQC4Uaz2L2Y027-84OkGK5K1ZjLHLSWFih9DKXHamqzyYlXwSAaf_MN2u7miC-fDiyCT-WEuBJG4CdlUbuxDw69KnOBF7LU5LQCGQ4lhWOnwwAuY095BVuAIgPK2uvch0ICdd3WA6OHlGD-nYZES1VG3Dv1o9E7pJKi0h_fwTCZXtQLUcZ_Qp0B4twpnEfV2D-gYyGx_MVJoNwPC5RnAQGXPVDE6bG_RWyLExLoipLDWnGSbvnqlmX4tc53FxYbqOdq2fMeihyyTU-gQClZd_MCetZDn3b6_NlZAYJLElFyTtAWO3SJHWP1PaBllZgvTgTgOfK5FhHXQ5hKwmLnmiDruLBUz8fcVw64ABt6qtsV_tNggm9d53ZKTK1Z2554scnBCMSogst1K4u2QSaWEM5b4Ov5_2bMZ_aFXkgRP9Z-2AsKoUJeO5vbKnUVwvSCpqapNsfq-C1DvAYln3Q&sai=AMfl-YTudErIzh55MFCFBG6mwox-FtC1kTctEG8w8qxU5Tfc5XQRtS8tWdoHI_7QIvqIUkWWyevdwGuz_aer7W5ExYFsGleyCodRgs9pspR1TEZicOPM7ijDIvLynod29TX89J277M3FXq63P7MIgNAUKvkMCNYXZQWCiznxu0vY4ovUfu7VEmIewaSMnSqS-lrpb0M2XT8SjsrD9rBGrZvPGgWv4uSp7DgCDwEPvFYtjVTuWMKOWCFgZpF0Jq9rbt_dSwhbqiddlEL9Xgs5qLENfm529MFw-Ir2HRSIz6JmBrNTduOlbJA&sig=Cg0ArKJSzIT9qrKdzUEGEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1345&vt=11&dtpt=1197&dett=3&cstd=142&cisv=r20221206.07124&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjssBBbPvmo38yljMolmgUOeUXuCG5JxOGmgaz_jZitW4H8fRPSwf77wNbvxTdPhShX7NLP4vOB8FP2clczARiSwh4sxWKuWTLw8NOa1X_iOpP9yKs7E_CPV5ffn-z8fBsdQGDysCeNG5DXfOFQLFsX0LNuObmTXIp75Ci1g1-29PgABmuV65AAYV5aE1Pk8dWC53V71Az9bpGdX9UbS8VC79fj2oIUyaTfVL8Q8DieUv1BFmBZLa-9qqnNRgVrhZOxD-NKqvbiqTzLZjpi6JpAS8OSK8QZao4QlyOa5XZ916aXZYI8ZIWRkaA05bKxvHHXYnQx5Dkd71IfDiwgX3kLEzE_5Nl0E860SECsaRCe9XRcgtiHVvUBRnsRy8IVvx8CF22jQqhk60JtDTSkvVdGompLArMFFmqnZWHqXJ5V1113ZdOWL_agmrvCKuFT48XEOKmq3sOL2SpS0yFOlnEjVaeR81AY92xtwx7Vv1AVGynaWeLrB2Xy6cuRkSsxaGGiN3muDYaiIoqLLZsEQsYjc64uoWC7ctuHmFxLQc5SG0IMnLxylK7vawIzchVpkJxQaZLsvrgM81_4XLE01NUsfrMuO1EL_vIpN1sJSQquZ8MDNQr70NygMiMrLJSCt7MfoyK7JkBnY4DdK-fl1w0FFmJM_0IHh5sEzstiYlmVnpRkA5SKzt-DuAL5B03y8lhsUqJ2UiI9PqtrtWmDMsQrAHUMWxMTtZ0US_lCvI6MNljoocjvIpQkskLbapSUWJjHe-Zastcjv0Y5dnFDHJym3yD6yAhuI0QMeJXQC4Uaz2L2Y027-84OkGK5K1ZjLHLSWFih9DKXHamqzyYlXwSAaf_MN2u7miC-fDiyCT-WEuBJG4CdlUbuxDw69KnOBF7LU5LQCGQ4lhWOnwwAuY095BVuAIgPK2uvch0ICdd3WA6OHlGD-nYZES1VG3Dv1o9E7pJKi0h_fwTCZXtQLUcZ_Qp0B4twpnEfV2D-gYyGx_MVJoNwPC5RnAQGXPVDE6bG_RWyLExLoipLDWnGSbvnqlmX4tc53FxYbqOdq2fMeihyyTU-gQClZd_MCetZDn3b6_NlZAYJLElFyTtAWO3SJHWP1PaBllZgvTgTgOfK5FhHXQ5hKwmLnmiDruLBUz8fcVw64ABt6qtsV_tNggm9d53ZKTK1Z2554scnBCMSogst1K4u2QSaWEM5b4Ov5_2bMZ_aFXkgRP9Z-2AsKoUJeO5vbKnUVwvSCpqapNsfq-C1DvAYln3Q&sai=AMfl-YTudErIzh55MFCFBG6mwox-FtC1kTctEG8w8qxU5Tfc5XQRtS8tWdoHI_7QIvqIUkWWyevdwGuz_aer7W5ExYFsGleyCodRgs9pspR1TEZicOPM7ijDIvLynod29TX89J277M3FXq63P7MIgNAUKvkMCNYXZQWCiznxu0vY4ovUfu7VEmIewaSMnSqS-lrpb0M2XT8SjsrD9rBGrZvPGgWv4uSp7DgCDwEPvFYtjVTuWMKOWCFgZpF0Jq9rbt_dSwhbqiddlEL9Xgs5qLENfm529MFw-Ir2HRSIz6JmBrNTduOlbJA&sig=Cg0ArKJSzIT9qrKdzUEGEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1345&vt=11&dtpt=1197&dett=3&cstd=142&cisv=r20221206.07124&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:01 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:01 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:01 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv8ZA8HzVPRDJ9E_WvWa1Y4cFkVN-GfNexPUMirdB77xMpSvSUEbBj63oLTwt7KXGa0r6wEg1CeJJj4Bq576EwJXljC94okXMcYFDbuxE9SB7waUl2tS3HYXMhI9lH11mNbsb6zGdunP5temx46YYNlKSUnRE2zmEoec5aLEmA8Dqbka7YL8Yw-x9aEUhudbQI6UQftt4jp_neWphmUjH3Pbgt5PR92IagzHBu_3C9T4u0VkSxX7-x5s6lUI5F0kvV7Im1OHmYpGFmvfG0p8tsi1hJELp0jCRpZRQqPUiFuxJ8ddlU2tzbgfnTK_N7M5GP8t-ED0XkFSfIUwEh4e-DaOI7XdY43yJUfpeI4fWV2rLUETvdBxf6BzE9lletmDBF_ycrIW_kiF8qMvxI7nEHxJ7_4zTM2nwyoPU9y_o6ramyekZV3HfQkbL-Shu7_NJBmhsMeiUACpFOMnrkgh_EC-yAW74NdpPravBIAdS4Pw0xL9VSYs1IHHFHL8LrtaBOvrm9G_E65re5m_AZ3ZoEobUtXcau7YEWAGD5Z1ikKFn9DGzvNMsAVKRly-IkpEEpELytI6TXO55p4Pq01F7BzJFusrY51qYgIwR4tHXb67FbLemauwxaVraq91M_hm12qPamxdYfBmyhP3VnL81X2tYCbVUWgSDSsKRv4a_fr4ophltA9sue8Czh1Afq5wDxUKxFa986--d0jNFoblE50sIAJj9UB7ZNQ6MOMxKnQ7fKwppsmc7Al3eryYucFDO3Juam_om-r6cMuFUc6huxlatY4Bs2oD4ny-ASQPpGHsfU39mWURxq-feRAnOdnknmJe738uuunfLCggLlMBGMNSh0HjmG8tgUESaGUsMPWvVgVqfvUHuHjTo1-XSG73UtDH5CTp0QDauN_J-enGDri8fwY-uwXDHXQaQm9Q1lzZUiiPK1gCfG9lUqoZdM2HHyL4GmsLi7M2l8OhnxCy2TDjaqaqUmgdh42Xyln0WcjiFyYI9AznlQ2ytD5ShdlBnbfRCr5vRO0GNIe5lfGtJH2imvK4j5quKcUyBgGyOsR7sP2plJirDdLMlbzzeMk5uA3SXBrmgVHkZ3ASRz1T8avQZvXqMzx2IzcD4JdSpfZoUidut0fQu6XCS22uz9F1s7b0Xq3VEmxfhZTSro2O_66pSyT8BDoXLa7BUZ1NHz-Xids8UfrB_cLWiw4FoV7sgSdeHHkEvIOL4ND0Lhs8nrukrDB1-Ab5D4cq9t4KWk-JYhzMqoCom8c-fs&sai=AMfl-YSLUspd61VmJpJRoFpVDLTv-bmLVICqmlAJuoGgXyjQYB7sQ-GRjMig-gysyqTBXSrbpZvrz-0wF5kZxm1DljxT2soBhEHMXi_xZ4fqbm9oVNzgcxcOKk5tTSxE4V-hIu2auaUFRro-pEoWCZOdSeE_edBg_6DACmAPwphyD9m1f-A25bV0hoJtnu5BYOUnLCYMnuwRAwoMFc8EWGqzA03h8pJK3TpfvhOomoSjTk3TFwiYxkctnTeCuUPZpUFmnGL43Zf9AdajdkjSdvleH5i4oSA8QdVNJBnGwkwpZUYFKwQaUQY&sig=Cg0ArKJSzM6cuU98ozHYEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1350&vt=11&dtpt=1156&dett=3&cstd=189&cisv=r20221206.64423&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv8ZA8HzVPRDJ9E_WvWa1Y4cFkVN-GfNexPUMirdB77xMpSvSUEbBj63oLTwt7KXGa0r6wEg1CeJJj4Bq576EwJXljC94okXMcYFDbuxE9SB7waUl2tS3HYXMhI9lH11mNbsb6zGdunP5temx46YYNlKSUnRE2zmEoec5aLEmA8Dqbka7YL8Yw-x9aEUhudbQI6UQftt4jp_neWphmUjH3Pbgt5PR92IagzHBu_3C9T4u0VkSxX7-x5s6lUI5F0kvV7Im1OHmYpGFmvfG0p8tsi1hJELp0jCRpZRQqPUiFuxJ8ddlU2tzbgfnTK_N7M5GP8t-ED0XkFSfIUwEh4e-DaOI7XdY43yJUfpeI4fWV2rLUETvdBxf6BzE9lletmDBF_ycrIW_kiF8qMvxI7nEHxJ7_4zTM2nwyoPU9y_o6ramyekZV3HfQkbL-Shu7_NJBmhsMeiUACpFOMnrkgh_EC-yAW74NdpPravBIAdS4Pw0xL9VSYs1IHHFHL8LrtaBOvrm9G_E65re5m_AZ3ZoEobUtXcau7YEWAGD5Z1ikKFn9DGzvNMsAVKRly-IkpEEpELytI6TXO55p4Pq01F7BzJFusrY51qYgIwR4tHXb67FbLemauwxaVraq91M_hm12qPamxdYfBmyhP3VnL81X2tYCbVUWgSDSsKRv4a_fr4ophltA9sue8Czh1Afq5wDxUKxFa986--d0jNFoblE50sIAJj9UB7ZNQ6MOMxKnQ7fKwppsmc7Al3eryYucFDO3Juam_om-r6cMuFUc6huxlatY4Bs2oD4ny-ASQPpGHsfU39mWURxq-feRAnOdnknmJe738uuunfLCggLlMBGMNSh0HjmG8tgUESaGUsMPWvVgVqfvUHuHjTo1-XSG73UtDH5CTp0QDauN_J-enGDri8fwY-uwXDHXQaQm9Q1lzZUiiPK1gCfG9lUqoZdM2HHyL4GmsLi7M2l8OhnxCy2TDjaqaqUmgdh42Xyln0WcjiFyYI9AznlQ2ytD5ShdlBnbfRCr5vRO0GNIe5lfGtJH2imvK4j5quKcUyBgGyOsR7sP2plJirDdLMlbzzeMk5uA3SXBrmgVHkZ3ASRz1T8avQZvXqMzx2IzcD4JdSpfZoUidut0fQu6XCS22uz9F1s7b0Xq3VEmxfhZTSro2O_66pSyT8BDoXLa7BUZ1NHz-Xids8UfrB_cLWiw4FoV7sgSdeHHkEvIOL4ND0Lhs8nrukrDB1-Ab5D4cq9t4KWk-JYhzMqoCom8c-fs&sai=AMfl-YSLUspd61VmJpJRoFpVDLTv-bmLVICqmlAJuoGgXyjQYB7sQ-GRjMig-gysyqTBXSrbpZvrz-0wF5kZxm1DljxT2soBhEHMXi_xZ4fqbm9oVNzgcxcOKk5tTSxE4V-hIu2auaUFRro-pEoWCZOdSeE_edBg_6DACmAPwphyD9m1f-A25bV0hoJtnu5BYOUnLCYMnuwRAwoMFc8EWGqzA03h8pJK3TpfvhOomoSjTk3TFwiYxkctnTeCuUPZpUFmnGL43Zf9AdajdkjSdvleH5i4oSA8QdVNJBnGwkwpZUYFKwQaUQY&sig=Cg0ArKJSzM6cuU98ozHYEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1350&vt=11&dtpt=1156&dett=3&cstd=189&cisv=r20221206.64423&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsv8ZA8HzVPRDJ9E_WvWa1Y4cFkVN-GfNexPUMirdB77xMpSvSUEbBj63oLTwt7KXGa0r6wEg1CeJJj4Bq576EwJXljC94okXMcYFDbuxE9SB7waUl2tS3HYXMhI9lH11mNbsb6zGdunP5temx46YYNlKSUnRE2zmEoec5aLEmA8Dqbka7YL8Yw-x9aEUhudbQI6UQftt4jp_neWphmUjH3Pbgt5PR92IagzHBu_3C9T4u0VkSxX7-x5s6lUI5F0kvV7Im1OHmYpGFmvfG0p8tsi1hJELp0jCRpZRQqPUiFuxJ8ddlU2tzbgfnTK_N7M5GP8t-ED0XkFSfIUwEh4e-DaOI7XdY43yJUfpeI4fWV2rLUETvdBxf6BzE9lletmDBF_ycrIW_kiF8qMvxI7nEHxJ7_4zTM2nwyoPU9y_o6ramyekZV3HfQkbL-Shu7_NJBmhsMeiUACpFOMnrkgh_EC-yAW74NdpPravBIAdS4Pw0xL9VSYs1IHHFHL8LrtaBOvrm9G_E65re5m_AZ3ZoEobUtXcau7YEWAGD5Z1ikKFn9DGzvNMsAVKRly-IkpEEpELytI6TXO55p4Pq01F7BzJFusrY51qYgIwR4tHXb67FbLemauwxaVraq91M_hm12qPamxdYfBmyhP3VnL81X2tYCbVUWgSDSsKRv4a_fr4ophltA9sue8Czh1Afq5wDxUKxFa986--d0jNFoblE50sIAJj9UB7ZNQ6MOMxKnQ7fKwppsmc7Al3eryYucFDO3Juam_om-r6cMuFUc6huxlatY4Bs2oD4ny-ASQPpGHsfU39mWURxq-feRAnOdnknmJe738uuunfLCggLlMBGMNSh0HjmG8tgUESaGUsMPWvVgVqfvUHuHjTo1-XSG73UtDH5CTp0QDauN_J-enGDri8fwY-uwXDHXQaQm9Q1lzZUiiPK1gCfG9lUqoZdM2HHyL4GmsLi7M2l8OhnxCy2TDjaqaqUmgdh42Xyln0WcjiFyYI9AznlQ2ytD5ShdlBnbfRCr5vRO0GNIe5lfGtJH2imvK4j5quKcUyBgGyOsR7sP2plJirDdLMlbzzeMk5uA3SXBrmgVHkZ3ASRz1T8avQZvXqMzx2IzcD4JdSpfZoUidut0fQu6XCS22uz9F1s7b0Xq3VEmxfhZTSro2O_66pSyT8BDoXLa7BUZ1NHz-Xids8UfrB_cLWiw4FoV7sgSdeHHkEvIOL4ND0Lhs8nrukrDB1-Ab5D4cq9t4KWk-JYhzMqoCom8c-fs&sai=AMfl-YSLUspd61VmJpJRoFpVDLTv-bmLVICqmlAJuoGgXyjQYB7sQ-GRjMig-gysyqTBXSrbpZvrz-0wF5kZxm1DljxT2soBhEHMXi_xZ4fqbm9oVNzgcxcOKk5tTSxE4V-hIu2auaUFRro-pEoWCZOdSeE_edBg_6DACmAPwphyD9m1f-A25bV0hoJtnu5BYOUnLCYMnuwRAwoMFc8EWGqzA03h8pJK3TpfvhOomoSjTk3TFwiYxkctnTeCuUPZpUFmnGL43Zf9AdajdkjSdvleH5i4oSA8QdVNJBnGwkwpZUYFKwQaUQY&sig=Cg0ArKJSzM6cuU98ozHYEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1350&vt=11&dtpt=1156&dett=3&cstd=189&cisv=r20221206.64423&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 06:04:01 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 06:19:01 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 06:04:01 GMT
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvnOmN9k_5hnRGZMEZ9OVyYiRmE0YO0nXu2wPVqqktGFMf4iOieT8E__wUp8eNzoExAOYf6uvn0unuxp4nmuRRVqFw594OqftoMEpahhJhjJjFzs5uMkGpPO-1LiIS-eV_KrUXgdg&sai=AMfl-YSmfTfj7UjUP2aa60ahXL5sl4oDuF975RZgRCh6VN097k0sAQLnYEfYxVHkKFWavKuKONtu7T8dursBMvENCcrGgwFLScurdtPWSyG49t8QekdtQLvc_h8GGquqU13eysqJ5txchBq_MZfWIlVI&sig=Cg0ArKJSzIq4W2GLmbIrEAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1120&p=697,196,787,924&mtos=1120,1120,1120,1120,1120&tos=1120,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=437806214&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838657&rpt=1177&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvnOmN9k_5hnRGZMEZ9OVyYiRmE0YO0nXu2wPVqqktGFMf4iOieT8E__wUp8eNzoExAOYf6uvn0unuxp4nmuRRVqFw594OqftoMEpahhJhjJjFzs5uMkGpPO-1LiIS-eV_KrUXgdg&sai=AMfl-YSmfTfj7UjUP2aa60ahXL5sl4oDuF975RZgRCh6VN097k0sAQLnYEfYxVHkKFWavKuKONtu7T8dursBMvENCcrGgwFLScurdtPWSyG49t8QekdtQLvc_h8GGquqU13eysqJ5txchBq_MZfWIlVI&sig=Cg0ArKJSzIq4W2GLmbIrEAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1120&p=697,196,787,924&mtos=1120,1120,1120,1120,1120&tos=1120,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=437806214&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838657&rpt=1177&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsvnOmN9k_5hnRGZMEZ9OVyYiRmE0YO0nXu2wPVqqktGFMf4iOieT8E__wUp8eNzoExAOYf6uvn0unuxp4nmuRRVqFw594OqftoMEpahhJhjJjFzs5uMkGpPO-1LiIS-eV_KrUXgdg&sai=AMfl-YSmfTfj7UjUP2aa60ahXL5sl4oDuF975RZgRCh6VN097k0sAQLnYEfYxVHkKFWavKuKONtu7T8dursBMvENCcrGgwFLScurdtPWSyG49t8QekdtQLvc_h8GGquqU13eysqJ5txchBq_MZfWIlVI&sig=Cg0ArKJSzIq4W2GLmbIrEAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1120&p=697,196,787,924&mtos=1120,1120,1120,1120,1120&tos=1120,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=437806214&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838657&rpt=1177&isd=0&lsd=0&met=ie&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 09 Dec 2022 06:04:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY
2.18.172.200200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=162339
expires: Sun, 11 Dec 2022 03:09:40 GMT
date: Fri, 09 Dec 2022 06:04:01 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 36fae41cfd56e4a8b543d493c924823f
06418a8e3fef30040dbf6da9b74f36dc2f979118
324df184b8f4b089fd3cfcf171ff15ba9725b8ad5aaefe528a783b96d58e86e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4000
Cache-Control: max-age=102823
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:01 GMT
Etag: "6391aed8-118"
Expires: Sat, 10 Dec 2022 10:37:44 GMT
Last-Modified: Thu, 08 Dec 2022 09:31:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY
2.18.172.23200 OK 8.5 kB URL HTTP/2 contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY
IP 2.18.172.23:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Hash 2f2ebaf2c8c51a50e67998f59f753ee6
d3f297033cda3726f1f2592cfb77e0b1bf61fbbf
4e4e21202c44ab420f88debeb959c815ae2ade13de455ec16fb4dffa21d642a6
GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
set-cookie: usp_status=1; Expires=Mon, 12 Jun 2023 06:04:01 GMT; domain=.media.net; Path=/;
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Sun, 11 Dec 2022 06:04:01 GMT
date: Fri, 09 Dec 2022 06:04:01 GMT
content-length: 8464
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
151.101.65.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.65.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Fri, 02 Dec 2022 04:31:25 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 06:04:01 GMT
Age: 22777
X-Served-By: cache-lga13626-LGA, cache-bma1679-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 65, 22382
X-Timer: S1670565842.917814,VS0,VE0
Vary: Accept-Encoding
eus.rubiconproject.com/usync.html?us_privacy=1YNY
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?us_privacy=1YNY
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?us_privacy=1YNY HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 09 Dec 2022 06:04:01 GMT
Connection: keep-alive
Vary: Accept-Encoding
ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
2.18.172.200200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=162338
expires: Sun, 11 Dec 2022 03:09:40 GMT
date: Fri, 09 Dec 2022 06:04:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash df6e3fa55646d5e5619474daa064d4fe
1cacf5701062ed7acdc007e6e6c596a92eea9823
34543bfb82650e79e2a6e7296cbd3fed8dc9402f48b63c1cd58922d508fe75dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4157
Cache-Control: max-age=169195
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "6392b180-117"
Expires: Sun, 11 Dec 2022 05:03:57 GMT
Last-Modified: Fri, 09 Dec 2022 03:54:40 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash db42f7db087ffb56bcc4231ae89052e1
cacf8c067a6a27b42ca8a8c184c093afe4b50f70
bea1a512b8fa112bc5f9a278ec52c6b70dff895766f7746af933981e5b9918a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3470
Cache-Control: max-age=155946
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "6392806e-138"
Expires: Sun, 11 Dec 2022 01:23:08 GMT
Last-Modified: Fri, 09 Dec 2022 00:25:18 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 312
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18728)
Hash 8deb7dbc8b2c345210076315246d243e
48da2b0f96ae0319416cd069c090acef1217dd08
792653092209c4e0ac57fbffab14833a2d9c4cbf4e7d37ff12aa82aa57efc152
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?us_privacy=1YNY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Thu, 08 Dec 2022 23:42:39 GMT
Content-Encoding: gzip
Content-Length: 10067
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=63500
Expires: Fri, 09 Dec 2022 23:42:22 GMT
Date: Fri, 09 Dec 2022 06:04:02 GMT
Connection: keep-alive
Vary: Accept-Encoding
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
104.85.187.217301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
IP 104.85.187.217:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
date: Fri, 09 Dec 2022 06:04:02 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsthZAjO7BnPWwP7VchTWT2Bpqn2zqo8koiOJK-ipWw21SM4r01VNBZmXKBiwjn1-YbiimS2VCINiy04RfyAl0o9KRgTyIdQmggiHUjg4OQ4c9kGqpqBdUeJVVaS16UV8PH1GFxcNA&sai=AMfl-YSfOaZeInTuAqvwxw9tRe88udepZ9YYSV1txXlAgjaL_f_OXuPWyeMk16S01ZvfYumU_tNpkl636fduZ9rsAvbndojZSQRw1NXLFCatErsNal2rKFVk9S-ZJDWmKtzQ-WxqsMEPlfFyLxXx00AL&sig=Cg0ArKJSzMT_o652yag4EAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1064&p=345,946,595,1246&mtos=1064,1064,1064,1064,1064&tos=1064,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1178321438&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838647&rpt=1611&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsthZAjO7BnPWwP7VchTWT2Bpqn2zqo8koiOJK-ipWw21SM4r01VNBZmXKBiwjn1-YbiimS2VCINiy04RfyAl0o9KRgTyIdQmggiHUjg4OQ4c9kGqpqBdUeJVVaS16UV8PH1GFxcNA&sai=AMfl-YSfOaZeInTuAqvwxw9tRe88udepZ9YYSV1txXlAgjaL_f_OXuPWyeMk16S01ZvfYumU_tNpkl636fduZ9rsAvbndojZSQRw1NXLFCatErsNal2rKFVk9S-ZJDWmKtzQ-WxqsMEPlfFyLxXx00AL&sig=Cg0ArKJSzMT_o652yag4EAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1064&p=345,946,595,1246&mtos=1064,1064,1064,1064,1064&tos=1064,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1178321438&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838647&rpt=1611&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsthZAjO7BnPWwP7VchTWT2Bpqn2zqo8koiOJK-ipWw21SM4r01VNBZmXKBiwjn1-YbiimS2VCINiy04RfyAl0o9KRgTyIdQmggiHUjg4OQ4c9kGqpqBdUeJVVaS16UV8PH1GFxcNA&sai=AMfl-YSfOaZeInTuAqvwxw9tRe88udepZ9YYSV1txXlAgjaL_f_OXuPWyeMk16S01ZvfYumU_tNpkl636fduZ9rsAvbndojZSQRw1NXLFCatErsNal2rKFVk9S-ZJDWmKtzQ-WxqsMEPlfFyLxXx00AL&sig=Cg0ArKJSzMT_o652yag4EAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1064&p=345,946,595,1246&mtos=1064,1064,1064,1064,1064&tos=1064,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1178321438&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838647&rpt=1611&isd=0&lsd=0&met=ie&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 09 Dec 2022 06:04:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
37.252.171.85307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 85cc77cd-4bb4-43f5-a97c-1e815865473e
Set-Cookie: uuid2=422357684478594912; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 09-Mar-2023 06:04:02 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 09 Dec 2022 06:04:02 GMT
Connection: keep-alive
Vary: Accept-Encoding
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 23fbcd21ea9675a5440ad8cb43522ec6
a16e84915a9b2a896af9c85db217dd5b832e466e
3dcd77aafffb880a68dcb3f73938efc62f66ae6aa97e600c12dc9810e9087c7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3DCD77AAFFFB880A68DCB3F73938EFC62F66AE6AA97E600C12DC9810E9087C7A"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11246
Expires: Fri, 09 Dec 2022 09:11:28 GMT
Date: Fri, 09 Dec 2022 06:04:02 GMT
Connection: keep-alive
ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-length: 0
location: /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
cf-ray: 776b8a81baddb4ff-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y5LP0v6o3i.BvSHFet2.-QAA; Path=/; Domain=casalemedia.com; Expires=Sat, 09 Dec 2023 06:04:02 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1844; Path=/; Domain=casalemedia.com; Expires=Thu, 09 Mar 2023 06:04:02 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1844; Path=/; Domain=casalemedia.com; Expires=Thu, 09 Mar 2023 06:04:02 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pipVi6YGbtSMKq9a1COnyokjnCcGJumuMpG7gOL1QRnvqyyOFwXCNB04CyRqgehoNFMRxP46vj8NhYGrhfjWMP00Zmb%2FBW%2F2E7VZ0UtrYfIgPE3KE5gZyCpALWk%2BDaDNaZp4%2FxUSKVrzCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
51.89.9.252204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP 51.89.9.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js-sec.indexww.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-length: 0
location: /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
cf-ray: 776b8a81caebb4ff-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y5LP0pRhVbCD3humvfFbwgAA; Path=/; Domain=casalemedia.com; Expires=Sat, 09 Dec 2023 06:04:02 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=699; Path=/; Domain=casalemedia.com; Expires=Thu, 09 Mar 2023 06:04:02 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=699; Path=/; Domain=casalemedia.com; Expires=Thu, 09 Mar 2023 06:04:02 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQNM9FEsXYTWvYtPVQadiiyh7JPFE8Tj3zttToGGz6UFdLwcQOCZ%2FKY42Y1%2FOFqRAEo2iSfaYUjjOuByAZ0DAl5lLpI7BO5NqfuuORqHjk90PA4RdcVcOxMZgRGJFmswg42V5O77QXz9lA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Fri, 09 Dec 2022 06:04:01 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9&gdpr=0&gdpr_consent=&us_privacy=1YNY
server: envoy
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash df6e3fa55646d5e5619474daa064d4fe
1cacf5701062ed7acdc007e6e6c596a92eea9823
34543bfb82650e79e2a6e7296cbd3fed8dc9402f48b63c1cd58922d508fe75dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4157
Cache-Control: max-age=169195
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "6392b180-117"
Expires: Sun, 11 Dec 2022 05:03:57 GMT
Last-Modified: Fri, 09 Dec 2022 03:54:40 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
37.252.171.85307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
AN-X-Request-Uuid: a2560a44-7fff-4763-a3f9-3cbb64d82599
Set-Cookie: uuid2=5610375549119283343; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 09-Mar-2023 06:04:02 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 73975aa3c2a2ff50f8431ef58b7b8c91
3234ca1673ecc988534fd6327b46fe6a93f20a41
5e081e53b8d719885f42f5646e9446177bebce27c5a24d3f0e9c1456ead423cf
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107659
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "6391bf91-1d7"
Expires: Sat, 10 Dec 2022 11:58:21 GMT
Last-Modified: Thu, 08 Dec 2022 10:42:25 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PleJaLjJgqimQbH_20zfsmLpUl0gdg1XdNUTQbRVN4VvJTfk7XN9IA==
Age: 4556
js-sec.indexww.com/um/ixmatch.html
104.18.36.94200 OK 1.4 kB URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 104.18.36.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2920), with no line terminators
Hash 5afd6e52a87d99b7b9be7c2fc0b1a091
b6331e837ab190a6a2c616f940e56ef8e357aa77
8e48f6997aa3f9b4c3b853c8974843341b34ee4b50f9e84ac69ddf531b244158
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:01 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:19 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 473
expires: Fri, 09 Dec 2022 10:04:01 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 776b8a7fcc330b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5ab7393567c56be79a731bd743dbb79b
20ce9048024b9970ae0242251cb71878c70c978f
02089f69d2754ed78072045a5d9dd78eb0e59c1b493c8d6bf29f4708711ae90d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4215
Cache-Control: max-age=123522
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "6391fedd-1d7"
Expires: Sat, 10 Dec 2022 16:22:44 GMT
Last-Modified: Thu, 08 Dec 2022 15:12:29 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5ab7393567c56be79a731bd743dbb79b
20ce9048024b9970ae0242251cb71878c70c978f
02089f69d2754ed78072045a5d9dd78eb0e59c1b493c8d6bf29f4708711ae90d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4211
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Last-Modified: Fri, 09 Dec 2022 04:53:51 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 83d3f0ed31d6d0e73b65f7532c31c136
f8c8aba1174b942ac6ccd44c5f1dd843cbb9356b
5b31583796a5c55dc3d609a8a226cbaa4a64c2451c459ebfd7d72790fc44bd49
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4509
Cache-Control: max-age=126350
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "639208c3-13a"
Expires: Sat, 10 Dec 2022 17:09:52 GMT
Last-Modified: Thu, 08 Dec 2022 15:54:43 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1c32420e61b49ce2e4823e8cf026ab8d
65b3991345de1b8fbaddca352f370d880c1e1b43
dcd429e4f2c0c5b63ea3379f70536f91350c9719fb82ef369cd543fd3c26fbf4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 01:55:53 GMT
Expires: Wed, 14 Dec 2022 01:55:52 GMT
Etag: "65b3991345de1b8fbaddca352f370d880c1e1b43"
Cache-Control: max-age=416509,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b8a827fccb517-OSL
ups.analytics.yahoo.com/ups/58559/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58559/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNLPkmMCEO6dA6PXWClDe4nPe4HvulIFEgEBAQEhlGOcYwAAAAAA_eMAAA&S=AQAAAkSD6cE6CtKAV31Fme7gquE; Expires=Sat, 9 Dec 2023 12:04:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.171.85200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: ae3bb1cc-281d-4a15-a022-f56efd576573
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/58632/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58632/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNLPkmMCENr5E3ITWFH2H1eOtnjNSJ8FEgEBAQEhlGOcYwAAAAAA_eMAAA&S=AQAAAkVsUFMsY-oDO40tywjd15s; Expires=Sat, 9 Dec 2023 12:04:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
public.servenobid.com/sync.html?usp_consent=1YNY
54.230.111.59200 OK 4.1 kB URL HTTP/2 public.servenobid.com/sync.html?usp_consent=1YNY
IP 54.230.111.59:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8656), with no line terminators
Hash bcbddd2abe4da4902aa5ffba7869f9da
8c5e7b74e6654653986ee2dd13134978c945d41e
ea6077a0487fdd7c4eea9ea9ffb361db6787c27c0b45fb7879e0234af355a852
GET /sync.html?usp_consent=1YNY HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 01 Dec 2022 19:37:41 GMT
x-amz-meta-codebuild-content-sha256: 7a0197b444a3c5a5c4f92ccd56438fcf44932f5518b7cae8f7a5ec6b1a094ad5
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:5838c8c3-64c9-4519-918a-548b86a0fef3
x-amz-meta-codebuild-content-md5: 86c7b5baa8ca6b64006191aa90b9f19a
server: AmazonS3
content-encoding: br
date: Thu, 08 Dec 2022 19:38:07 GMT
cache-control: max-age=86400
etag: W/"500c31eb3dcfb8f2a7dc0893b86a487a"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9yckNMO3Aosun6i1vZzjeB8gbyfKkXtGlkE7L8m7ljlVdaU5C625zQ==
age: 37554
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstR28SER6s2QOOzt0ifGR1BnEv-nIjkDTm6whVm-X8R0qQcYntbdavU03QtL12dpzexMfJY4K-V9EQ-dssmgqnuJtqPxMt6_ZUcx8r330UsjbuVEdajMb96EaSThB99nn1sfdLUVA&sai=AMfl-YQnEWbMsjSjacBFuDSZYBKMEmKKzBu2DfZp4NvX97wZY_VWzrDUdMNdYSYHWZmMydySnFDVQyGisH1jY5HWiGopNThAl0BQJtMSDajNcgA2FtUYR6UUofWgp4xGTRDBKGOJc1kTD8abLa7HM2U-&sig=Cg0ArKJSzIT5JvpsVmU7EAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1116&p=77,196,167,924&mtos=1116,1116,1116,1116,1116&tos=1116,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2675502559&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838604&rpt=1805&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstR28SER6s2QOOzt0ifGR1BnEv-nIjkDTm6whVm-X8R0qQcYntbdavU03QtL12dpzexMfJY4K-V9EQ-dssmgqnuJtqPxMt6_ZUcx8r330UsjbuVEdajMb96EaSThB99nn1sfdLUVA&sai=AMfl-YQnEWbMsjSjacBFuDSZYBKMEmKKzBu2DfZp4NvX97wZY_VWzrDUdMNdYSYHWZmMydySnFDVQyGisH1jY5HWiGopNThAl0BQJtMSDajNcgA2FtUYR6UUofWgp4xGTRDBKGOJc1kTD8abLa7HM2U-&sig=Cg0ArKJSzIT5JvpsVmU7EAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1116&p=77,196,167,924&mtos=1116,1116,1116,1116,1116&tos=1116,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2675502559&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838604&rpt=1805&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstR28SER6s2QOOzt0ifGR1BnEv-nIjkDTm6whVm-X8R0qQcYntbdavU03QtL12dpzexMfJY4K-V9EQ-dssmgqnuJtqPxMt6_ZUcx8r330UsjbuVEdajMb96EaSThB99nn1sfdLUVA&sai=AMfl-YQnEWbMsjSjacBFuDSZYBKMEmKKzBu2DfZp4NvX97wZY_VWzrDUdMNdYSYHWZmMydySnFDVQyGisH1jY5HWiGopNThAl0BQJtMSDajNcgA2FtUYR6UUofWgp4xGTRDBKGOJc1kTD8abLa7HM2U-&sig=Cg0ArKJSzIT5JvpsVmU7EAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1116&p=77,196,167,924&mtos=1116,1116,1116,1116,1116&tos=1116,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2675502559&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838604&rpt=1805&isd=0&lsd=0&met=ie&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 09 Dec 2022 06:04:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 87a665a6e9dbcd52321e3255c65f0f1f
1b862aa663ca4b1fbbc2279ea6cadd4223fb70bd
79cd6539962ee3b2822e12cf3e3c59dd12132ceb70c8f6df658ce33cd106d869
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 02:15:46 GMT
Expires: Wed, 14 Dec 2022 02:15:45 GMT
Etag: "1b862aa663ca4b1fbbc2279ea6cadd4223fb70bd"
Cache-Control: max-age=417702,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b8a82d803b517-OSL
ads.servenobid.com/sync?pid=327&uid=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9&gdpr=0&gdpr_consent=&us_privacy=1YNY
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=327&uid=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9&gdpr=0&gdpr_consent=&us_privacy=1YNY
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9&gdpr=0&gdpr_consent=&us_privacy=1YNY HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:02 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
18.200.80.180200 OK 208 kB URL HTTP/2 g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
IP 18.200.80.180:0
Size 208 kB (207946 bytes)
Hash ffb749e51b393b957c858eee1de4cf40
82dcf06075ae7f668db47f33ca9352822039e82f
f647d22d3fe7cf59d7b7847449a987a417af55385ace7becfa81d9e681db6192
GET /usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: text/html;charset=UTF-8
server: nginx
set-cookie: vst=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53; Domain=.gumgum.com; Expires=Sat, 09-Dec-2023 06:04:02 GMT; Path=/; Secure; SameSite=None
etag: W/"0ba711804b1de16b670fbef35281c45ac"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 49cea5c9c728417c1053379df6f29783
5af4586b2cd4fc46b3bc40c25c9df169396d006d
b6e4995f12e9e7a0a03a21149f6e2bda28c7b6f32781b763aef5c0d9276dc77f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 21:12:05 GMT
Expires: Fri, 09 Dec 2022 21:12:05 GMT
ETag: "5af4586b2cd4fc46b3bc40c25c9df169396d006d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
p.rfihub.com/cm?pub=44007&in=1
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=44007&in=1
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=44007&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 06:04:02 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MjE0NDUwMTI2thDiM9QtdS7yNfApDDXxTskDAFJ0fE4lAAAA; Path=/; Domain=.rfihub.com; Expires=Wed, 3 Jan 2024 06:04:02 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MjE0NDUwMTI2thDiM9QtdS7yNfApDDXxTskDAFJ0fE4lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_zslzmtoZm5gamZqYWJkYmYCACKndPoQAAAA; Path=/; Domain=.rfihub.com; Expires=Wed, 3 Jan 2024 06:04:02 GMT; Secure; SameSite=None
Location: https://ads.servenobid.com/sync?pid=324&uid=5124322324115042338
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 49cea5c9c728417c1053379df6f29783
5af4586b2cd4fc46b3bc40c25c9df169396d006d
b6e4995f12e9e7a0a03a21149f6e2bda28c7b6f32781b763aef5c0d9276dc77f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 21:12:05 GMT
Expires: Fri, 09 Dec 2022 21:12:05 GMT
ETag: "5af4586b2cd4fc46b3bc40c25c9df169396d006d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
37.252.171.85302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ads.servenobid.com/sync?pid=312&uid=0
AN-X-Request-Uuid: ad2a12e0-eac8-4a72-81e9-1f11694afa47
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/58559/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:04:02 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNLPkmMCEDav9Fg-4AKwK4SvpugY6aYFEgEBAQEhlGOcYwAAAAAA_eMAAA&S=AQAAAsCSDW80bgXDuBuw69dN1mI; Expires=Sat, 9 Dec 2023 12:04:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
72.251.249.14302 Found 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
IP 72.251.249.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 06:04:02 GMT
Set-Cookie: ljt_reader=FySMpRZH9boT4_4bR6CDRnui; Path=/; Domain=.lijit.com; Expires=Sat, 09-Dec-2023 06:04:02 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
Location: https://ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
Content-Length: 0
X-Sovrn-Pod: ad_ap1ams1
ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
72.251.249.14204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
IP 72.251.249.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Fri, 09 Dec 2022 06:04:02 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap1ams1
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 14e312edef3eefad20f3ba3957573993
5aed236d4e0f27c08539ca132e181aa918730ae3
26b984fb682fb299e0fc748c2c15e4861cc25b69fee2b9fe3fdd14546dbf9790
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 19:34:28 GMT
Expires: Fri, 09 Dec 2022 19:34:28 GMT
ETag: "5aed236d4e0f27c08539ca132e181aa918730ae3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 068f63ebddb5ec907f721cdd345a7dcd
248914b81d932524b0823af0abbcc2575fc2c70f
c9c228cf218aea26f3593c44801e29d03c52a237b820bb1cb41fc690e1171230
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=112553
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "6391d210-1d7"
Expires: Sat, 10 Dec 2022 13:19:55 GMT
Last-Modified: Thu, 08 Dec 2022 12:01:20 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dnO-ilwt9R96u3hLyGdTJem149Dvzfl7wvoCduB6kTvreg2LT7TB0A==
Age: 4715
ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
2.18.172.200200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=162338
expires: Sun, 11 Dec 2022 03:09:40 GMT
date: Fri, 09 Dec 2022 06:04:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=309&uid=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=309&uid=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=309&uid=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_309=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:02 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
198.47.127.19200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 198.47.127.19:0
File type ASCII text, with no line terminators
Hash 34154801005ba93756ddcbb610de0198
7e3393c1ede90d19534d8926d85000478689b679
0954ab39b135039a641de05cb746c02c6ac0745e0f96a1e1a476c89861241fbd
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Wed, 8 Mar 2023 21:24:19 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Fri, 09 Dec 2022 06:04:01 GMT
content-length: 60
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
104.85.187.217301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
IP 104.85.187.217:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=gumgum HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=gumgum
date: Fri, 09 Dec 2022 06:04:02 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2715f5915b9247b6085955babd20b1ce
4474df207a343c12c04945316c4b680b5e5091ab
b02ec373ec692cda672caa42141f302082ce1d86b860e277a5a6feec68983cea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2911
Cache-Control: max-age=165093
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "6392a658-118"
Expires: Sun, 11 Dec 2022 03:55:35 GMT
Last-Modified: Fri, 09 Dec 2022 03:07:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuNUomf7Ts7xCMEGO-b7k257P7dXu5Yyiauna6E3boEuVkGFhlsQxumqHoKtue3YlxxwwryyhIFgHP_-gHhtroDOItzoyq0fx0mI28dWG9H45qTvQnvPA4OdBIbZGkvBCcsj8TI6w&sai=AMfl-YT6KvTd7jID-GZKT9vmjYpfmxp7Mc4gBR1vDmckfjlORr90L6lotAiQcCI0mbFIBmrRRcdueastBMUYX6Zppm-VeNn9PKAYXL29J6jcVfJFmPEbDZVi9IcbPlMH05Y7oPXBZOnBqRMoEa12bR8e&sig=Cg0ArKJSzBRipxiz7lYcEAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1379&p=77,946,327,1246&mtos=1379,1379,1379,1379,1379&tos=1379,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2311931128&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838636&rpt=1795&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuNUomf7Ts7xCMEGO-b7k257P7dXu5Yyiauna6E3boEuVkGFhlsQxumqHoKtue3YlxxwwryyhIFgHP_-gHhtroDOItzoyq0fx0mI28dWG9H45qTvQnvPA4OdBIbZGkvBCcsj8TI6w&sai=AMfl-YT6KvTd7jID-GZKT9vmjYpfmxp7Mc4gBR1vDmckfjlORr90L6lotAiQcCI0mbFIBmrRRcdueastBMUYX6Zppm-VeNn9PKAYXL29J6jcVfJFmPEbDZVi9IcbPlMH05Y7oPXBZOnBqRMoEa12bR8e&sig=Cg0ArKJSzBRipxiz7lYcEAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1379&p=77,946,327,1246&mtos=1379,1379,1379,1379,1379&tos=1379,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2311931128&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838636&rpt=1795&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsuNUomf7Ts7xCMEGO-b7k257P7dXu5Yyiauna6E3boEuVkGFhlsQxumqHoKtue3YlxxwwryyhIFgHP_-gHhtroDOItzoyq0fx0mI28dWG9H45qTvQnvPA4OdBIbZGkvBCcsj8TI6w&sai=AMfl-YT6KvTd7jID-GZKT9vmjYpfmxp7Mc4gBR1vDmckfjlORr90L6lotAiQcCI0mbFIBmrRRcdueastBMUYX6Zppm-VeNn9PKAYXL29J6jcVfJFmPEbDZVi9IcbPlMH05Y7oPXBZOnBqRMoEa12bR8e&sig=Cg0ArKJSzBRipxiz7lYcEAE&cid=CAQSTADq26N9CSXbz9WISxF-PCWr-JAkhMTJCwRlzkHgryHzq5D01cyxRM_LmAP_FlIH0PUJQiV_uR8Uvll4K5Td82G-Ct-V-PSEuVxIv3YYASAT&id=lidar2&mcvt=1379&p=77,946,327,1246&mtos=1379,1379,1379,1379,1379&tos=1379,0,0,0,0&v=20221207&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2311931128&rs=4&la=0&cr=0&vs=4&r=v&rst=1670565838636&rpt=1795&isd=0&lsd=0&met=ie&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9a983d0f0bd53021a5dda3fa639a296b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 09 Dec 2022 06:04:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58632/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 06:04:02 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNLPkmMCEOvR1PEzDxMIsS8NuHobvq8FEgEBAQEhlGOcYwAAAAAA_eMAAA&S=AQAAAljdl6RkQoxS2g9fQHPPVis; Expires=Sat, 9 Dec 2023 12:04:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
cdn.indexww.com/ht/htw-pixel.gif?0
172.64.151.162200 OK 43 B URL HTTP/2 cdn.indexww.com/ht/htw-pixel.gif?0
IP 172.64.151.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /ht/htw-pixel.gif?0 HTTP/1.1
Host: cdn.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 24 Jan 2017 19:36:04 GMT
etag: "761e21-2b-546dc3a097100"
cache-control: public, max-age=86400
expires: Sat, 10 Dec 2022 06:04:02 GMT
edge-control: cache-maxage=1h
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 27152
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 776b8a855c090afe-OSL
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
IP 213.19.147.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-36c5e58a-5b20-4bbf-a8f8-e9bbcce95684-003%22%2C%22zdxidn%22%3A%222069.26%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D%22%7D; path=/; expires=Sat, 09 Dec 2023 06:04:02 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1670565842387
etag: RX36c5e58a5b204bbfa8f8e9bbcce95684003
X-Firefox-Spdy: h2
sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
69.166.1.12302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
IP 69.166.1.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-113
X-Xss-Protection: 0
Location: https://ads.servenobid.com/sync?pid=332&uid=a58a4ebf-01d6-4df0-b22c-85ad69e62134
Server: sonobi-go
Set-Cookie: __uis=a58a4ebf-01d6-4df0-b22c-85ad69e62134; expires=Sun, 08 Jan 2023 06:04:02 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s85113|Y5LP1; path=/; domain=.go.sonobi.com; SameSite=None; secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b974e044aef6db48a5e4619d6cc65f8
43fd923959529e2e5e6c34bc7380c999759167ec
d9395dd4c5af74a710a0e1edaddd53dc0a5564c9c4d54157f075a463cb1fcbd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3958
Cache-Control: max-age=162899
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "639299af-1d7"
Expires: Sun, 11 Dec 2022 03:19:01 GMT
Last-Modified: Fri, 09 Dec 2022 02:13:03 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
104.18.33.19200 OK 101 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
IP 104.18.33.19:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 972203580e20c4793ef943dd20341589
bfd7af05ce5a986f97369b7c88bc6b03387cbf70
14f706e5c53d3418781c60274ddff1349ff65825c01553a9479a6c4a5a449d2a
GET /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js-sec.indexww.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: text/html
cf-ray: 776b8a822b2bb4ff-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ITb%2Fx1QzXxj5BS%2FgfnxWcNH43uQSz%2BxvLtUZ%2FQFMGLlXhLBM%2FtJullR3r4qKdCWmXZgcL%2FDhnupqHpRrOYc3rfCYwngkVyvCmEwe1TbaeYSkx8VH6%2BCZQcwIFPiwmzYqKFQHwQ3av%2BofPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 73a7602e4733c9bf6ab78aaf4d267c52
cc6498210fdeabe840a1d63d4fa954a8e0a055ec
5422df3bef8cc8cab0647d693ddcba122f73c7512d0924e9811c5c21ae3f36b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3884
Cache-Control: max-age=146984
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "63925bcf-1d7"
Expires: Sat, 10 Dec 2022 22:53:46 GMT
Last-Modified: Thu, 08 Dec 2022 21:49:03 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
eus.rubiconproject.com/usync.html?p=gumgum
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=gumgum
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=gumgum HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 09 Dec 2022 06:04:02 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.66.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.66.133:0
Hash b7a4398b7fc459b866e5dbb20494ce85
54a4f475e079e2a8f61d86fa0d448740af30f805
983b3b7226ca50d2f80be8ab0bce48a041ba32706e2c5f9ab7786ec8a5b008e4
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Tue, 13 Dec 2022 04:09:23 GMT
ETag: "54a4f475e079e2a8f61d86fa0d448740af30f805"
Last-Modified: Fri, 09 Dec 2022 04:09:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 06:04:02 GMT
Age: 3317
X-Served-By: cache-qpg1235-QPG, cache-bma1645-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 35, 25
X-Timer: S1670565843.913978,VS0,VE0
ads.servenobid.com/sync?pid=324&uid=5124322324115042338
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=324&uid=5124322324115042338
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=324&uid=5124322324115042338 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9; pid_309=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_324=5124322324115042338; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:02 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e4d1b05f6474156cf828027b7b1dfedb
3e470478630e08c11dfc99f58ed6d72d731ea0d8
c8282e2a34a7c4493a6152182106e6fc0a6c1d534302004036339e651de69241
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2329
Cache-Control: max-age=96446
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:02 GMT
Etag: "63919c77-1d7"
Expires: Sat, 10 Dec 2022 08:51:28 GMT
Last-Modified: Thu, 08 Dec 2022 08:12:39 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9dfb6f98524703cb28aa777c06f8307d
0259f1b07774b87d9bf5d69228f549946a1dd747
7b5ecd4e9bf216f4c71747b9eab5f135a610972adeb28d4f61118fab6decc065
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 13:56:48 GMT
Expires: Tue, 13 Dec 2022 13:56:47 GMT
Etag: "0259f1b07774b87d9bf5d69228f549946a1dd747"
Cache-Control: max-age=373364,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b8a863a94b517-OSL
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 5ed935cfadef72c8c0ef9ea0fc353f65
247b558ac8d7ca8d913ea41b3a9b2434aa58abd3
01c2a3855094778f40f63849cfaaa2399031a392a339701b012bfc040de7dfd2
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 08:46:39 GMT
Expires: Fri, 09 Dec 2022 08:46:39 GMT
ETag: "247b558ac8d7ca8d913ea41b3a9b2434aa58abd3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
creativecdn.com/cm-notify?pi=gumgum
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm-notify?pi=gumgum HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=8qI0mJvZA3W8F3PxXp0z;Path=/;Domain=.creativecdn.com;Expires=Sat, 09-Dec-2023 06:04:02 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1670565842;Path=/;Domain=.creativecdn.com;Expires=Sat, 09-Dec-2023 06:04:02 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/cm-notify?pi=gumgum&tc=1
content-length: 0
X-Firefox-Spdy: h2
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
52.0.108.169302 Found 0 B URL HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP 52.0.108.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-length: 0
location: https://cs.iqzone.com/a6da5bf591376177b08e1eb90117169d.gif?puid=[UID]&gdpr=&gdpr_consent=&us_privacy=&redir=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D18%26buyeruid%3D%5BUID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhoSOAE=
vary: origin
cache-control: no-store
pragma: no-cache
expires: 0
set-cookie: zeta-ssp-user-id=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a; Max-Age=31536000; Expires=Sat, 09 Dec 2023 06:04:02 GMT; Path=/; Domain=disqus.com; Secure; SameSite=None
X-Firefox-Spdy: h2
sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
185.29.134.248302 Moved Temporarily 0 B URL HTTP/1.1 sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
IP 185.29.134.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d HTTP/1.1
Host: sync.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Fri, 09 Dec 2022 06:04:02 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Access-Control-Allow-Origin: *
Server: MT3 180 1fd3e2d master cdg-pixel-x33 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: uuid=57836392-cfd2-4800-ac34-79b0f135a553; domain=.mathtag.com; path=/; expires=Sat, 06-Jan-2024 06:04:02 GMT; SameSite=None; Secure
location: https://usersync.gumgum.com/usersync?b=mmh&i=57836392-cfd2-4800-ac34-79b0f135a553&gdpr=0&gdpr_consent=
Expires: Fri, 09 Dec 2022 06:04:01 GMT
ads.servenobid.com/sync?pid=333&uid=0
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=333&uid=0
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=333&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_333=0; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:03 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
52.223.40.198200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=312&uid=0
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=312&uid=0
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=312&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9; pid_309=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53; pid_324=5124322324115042338
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_312=0; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:03 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
151.101.66.49302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
IP 151.101.66.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y5LP0wACl_YBEAAo; Path=/; Domain=.everesttech.net; Expires=Sat, 09-Dec-2023 06:04:03 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y5LP0wACl_YBEAAo
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:04:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1673-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670565843.978615,VS0,VE92
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
72.251.249.14204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
IP 72.251.249.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Fri, 09 Dec 2022 06:04:03 GMT
Set-Cookie: ljt_reader=FySMpRZHPspNchcYRaST49Ap; Path=/; Domain=.lijit.com; Expires=Sat, 09-Dec-2023 06:04:03 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap1ams1
cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
3.75.3.113302 Found 0 B URL HTTP/2 cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent= HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html
date: Fri, 09 Dec 2022 06:04:02 GMT
location: https://ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
set-cookie: euid=57561670565843080312f1; Max-Age=2592000; Expires=Sun, 08 Jan 2023 06:04:02 GMT; Domain=.emxdgt.com; Path=/; HttpOnly
content-length: 0
X-Firefox-Spdy: h2
x.bidswitch.net/sync?ssp=gumgum2&user_id=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53&gdpr=0&gdpr_consent=&us_privacy=1---
18.158.238.72302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=gumgum2&user_id=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53&gdpr=0&gdpr_consent=&us_privacy=1---
IP 18.158.238.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=gumgum2&user_id=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:03 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53&gdpr=0&gdpr_consent=&us_privacy=1---
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=d9423788-b2d6-4f9d-9ad0-7b4e142b1fd0; path=/; expires=Sat, 09-Dec-2023 06:04:03 GMT; domain=.bidswitch.net; samesite=none; secure
c=1670565843; path=/; expires=Sat, 09-Dec-2023 06:04:03 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1670565843; path=/; expires=Sat, 09-Dec-2023 06:04:03 GMT; domain=.bidswitch.net; samesite=none; secure
c=1670565843; path=/; expires=Sat, 09-Dec-2023 06:04:03 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
37.252.171.149307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 09 Dec 2022 06:04:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
AN-X-Request-Uuid: 3d9c0305-520d-4069-8d74-4f438c03a070
Set-Cookie: uuid2=5774862709460557509; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 09-Mar-2023 06:04:03 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
54.73.28.235200 OK 43 B URL HTTP/2 pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
IP 54.73.28.235:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 13e1c7a2184e36d7ae519e99b1aa226f
355ccad4eac39838e1cc76fd0b670fd2ea1e5aa3
48a33ca9f42b91902d57ad8ac52e1ce32b92c8c10c732f2dbb6fe960ebfd9438
GET /sync/gumgum?gdpr=0&gdpr_consent= HTTP/1.1
Host: pr-bh.ybp.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/gif
content-length: 43
age: 0
strict-transport-security: max-age=31536000
server: ATS
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 76ab40ab6403ea449a18fb59b1da283e
db5c8571f91993f10ab9f1edc212b5f3b402afc5
97269d6d012a98d1369a5e4b99db28ccd38c6086c386cc03508aff94f5a1c2e3
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4910
Cache-Control: max-age=145856
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:03 GMT
Etag: "63925365-1d7"
Expires: Sat, 10 Dec 2022 22:34:59 GMT
Last-Modified: Thu, 08 Dec 2022 21:13:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,2&crs=&lat=&lon=&c29=plid,16705658364949755&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1670565841&rnd=255279
46.51.201.242200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,2&crs=&lat=&lon=&c29=plid,16705658364949755&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1670565841&rnd=255279
IP 46.51.201.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=myv43g9baubzdppimhohay03a2tu71670565836&fp_id=a8dwebzrcbhejjtm569wwso2sywmv1670565836&fp_cr_tm=1670565836498&fp_acc_tm=1670565836498&fp_emm_tm=1670565836498&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,2&crs=&lat=&lon=&c29=plid,16705658364949755&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1670565841&rnd=255279 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=48096920-7787-11ed-8651-b51511eca5a4; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Wed, 03-Jan-2024 06:04:03 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d643e5897a58a331e34df081ee65199f
f1f3a6681b624c7a807c609d03b96c5ead929fb0
bad01d3f637f732185a10b237aafa90f004e328f3bb2a560116dca536f6118a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2935
Cache-Control: max-age=125493
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:03 GMT
Etag: "63920b91-1d7"
Expires: Sat, 10 Dec 2022 16:55:36 GMT
Last-Modified: Thu, 08 Dec 2022 16:06:41 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d7257c218dd8cf7e760ca15149137dd4
34d7df8baf1b651a9d235e93527fcbfae8bd5ac2
8962302132e987f04b76d3c45d7092b22336837ba27d89e45df92719f4fb7d4d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3416
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:03 GMT
Last-Modified: Fri, 09 Dec 2022 05:07:07 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c847d1a84e3415b57f545523f1b0d222
c3963484143b19cddf2bd87d3c74672d5e38146d
78e3df650e947922d17f4bc3746d00380e26ecd7a0e68f5431c1c8c95d4d560e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 06:04:03 GMT
Last-Modified: Fri, 09 Dec 2022 04:52:34 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SfGIbLnjud8gUu9FcczH4aypg7P07-flt0A5LuUgMtpVvyLKWNreXg==
Age: 4289
ads.servenobid.com/sync?pid=317&uid=4276341973148044525&gdpr=0&gdpr_consent=
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=317&uid=4276341973148044525&gdpr=0&gdpr_consent=
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=317&uid=4276341973148044525&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9; pid_309=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53; pid_324=5124322324115042338; pid_333=0; pid_312=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_317=4276341973148044525; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:03 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=321&uid=OPTOUT
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=321&uid=OPTOUT
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=321&uid=OPTOUT HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9; pid_309=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53; pid_324=5124322324115042338; pid_333=0; pid_312=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_321=OPTOUT; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:03 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=332&uid=a58a4ebf-01d6-4df0-b22c-85ad69e62134
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=332&uid=a58a4ebf-01d6-4df0-b22c-85ad69e62134
IP 34.248.67.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=332&uid=a58a4ebf-01d6-4df0-b22c-85ad69e62134 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=2e40cc6a-31d5-41e4-90d5-3d2a69b4aeb9; pid_309=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53; pid_324=5124322324115042338; pid_333=0; pid_312=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_332=a58a4ebf-01d6-4df0-b22c-85ad69e62134; domain=servenobid.com; SameSite=None; Expires=Fri, 16 Dec 2022 06:04:03 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
creativecdn.com/cm-notify?pi=gumgum&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=gumgum&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 9bca4a3812d7baf016cd4ed545d5956c
58432bc99d02b9061cc84d028fb87396d603ef1e
323dd9de73a77d889e9ca2323f8801b666ec9675fc261ba8b7ca24d4794d6a16
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171003
Date: Fri, 09 Dec 2022 06:04:03 GMT
Etag: "6392b5ae-1d7"
Expires: Sun, 11 Dec 2022 05:34:06 GMT
Last-Modified: Fri, 09 Dec 2022 04:12:30 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: onitkKNTN0XZ4x0Bz-gaMrt0HFv05wTc1BKFZf2BnSE5D8BgF6qj-w==
Age: 4896
sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
70.42.32.223302 Found 0 B URL HTTP/1.1 sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
IP 70.42.32.223:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 06:04:03 GMT
Content-Length: 0
Connection: close
set-cookie: obuid=9b3961f9-992c-4c26-8e24-9921a7c1b3eb; Max-Age=7776000; Expires=Thu, 09 Mar 2023 06:04:03 GMT; Path=/; Domain=.outbrain.com
location: https://usersync.gumgum.com/usersync?b=obn&i=ENC%284fkijFMRt-SPr1NQw26x6iX7u3XKTTwQWUouY0yp_AGhWc2HDpTu9S_ZPGXpaWZy%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%284fkijFMRt-SPr1NQw26x6iX7u3XKTTwQWUouY0yp_AGhWc2HDpTu9S_ZPGXpaWZy%29
X-TraceId: edba20659e40080b187e3681110059e6
sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1670565842387
213.19.147.44302 Found 315 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1670565842387
IP 213.19.147.44:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a70a1ff2668a47db53ff711e4a833f8c
36a34f30c9b8576559a9935893fc7fa926fffd47
230bc017916a689c46dfe5b27464722bdf429782fd2b6ab1d740dde52addbc12
GET /usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1670565842387 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://ads.servenobid.com/sync?pid=321&uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
3.126.98.227302 Found 0 B URL HTTP/2 ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
IP 3.126.98.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
set-cookie: tuuid=c5f1f08d-501d-4d1f-90c2-e7e136f15fb7; Expires=Thu, 09 Mar 2023 06:04:03 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1670565843; Expires=Thu, 09 Mar 2023 06:04:03 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Z-zJNL7qsHM
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Z-zJNL7qsHM
IP 142.250.74.131:0
Hash ff85c0c33e4f331edf725786bf440f62
a973684047b6ab16bbe47e5b49c81347c77daeda
435a45b9a1f6a9aacc7001bef3e140b11e3ca779353deb5bb468a8ed85ea360b
POST /s/gts1d4/Z-zJNL7qsHM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 06:04:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b1sync.zemanta.com/usersync/gumgum/?puid=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
64.74.236.31302 Found 366 B URL HTTP/1.1 b1sync.zemanta.com/usersync/gumgum/?puid=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
IP 64.74.236.31:0
File type HTML document, ASCII text, with very long lines (364)
Hash 35a4a82456667189f381a6c81e2608a8
56feda6da8600915643059e4db62384b6c30e6f7
d804e823028f271c795f608cb3164318afe6599c801d1c503ff5666c185d22cc
GET /usersync/gumgum/?puid=e_033bb5b6-5acc-49ed-8cc1-096a0a198c53&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 366
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://stags.bluekai.com/site/23178?id=2c16-Jcl76fViKUwzSs7&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2MTDGE3C2STDNQ3TMZSWNFFVK532KNZTOJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1---
P3p: CP="We do not support P3P header."
Pragma: no-cache
Set-Cookie: zuid=2c16-Jcl76fViKUwzSs7; Path=/; Domain=zemanta.com; Expires=Sat, 09 Dec 2023 06:04:03 GMT; Max-Age=31536000; Secure; SameSite=None
Date: Fri, 09 Dec 2022 06:04:03 GMT
sync-tm.everesttech.net/upi/pid/btu4jd3a?redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D191940%26nid%3D3778%26put%3D%24%7BUSER_ID%7D&us_privacy=1YNY
151.101.66.49302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/btu4jd3a?redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D191940%26nid%3D3778%26put%3D%24%7BUSER_ID%7D&us_privacy=1YNY
IP 151.101.66.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/btu4jd3a?redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D191940%26nid%3D3778%26put%3D%24%7BUSER_ID%7D&us_privacy=1YNY HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y5LP0wACD3ZZmQAe; Path=/; Domain=.everesttech.net; Expires=Sat, 09-Dec-2023 06:04:03 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/btu4jd3a?redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D191940%26nid%3D3778%26put%3D%24%7BUSER_ID%7D&us_privacy=1YNY&_test=Y5LP0wACD3ZZmQAe
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:04:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1673-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670565843.231555,VS0,VE92
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
193.122.128.135204 No Content 0 B URL HTTP/2 sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
IP 193.122.128.135:0
ASN #31898 ORACLE-BMC-31898
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D HTTP/1.1
Host: sync.technoratimedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 06:04:03 GMT
set-cookie: tads_uid=GDPR; Max-Age=157680000; Expires=Wed, 08 Dec 2027 06:04:03 GMT; Path=/; Domain=.technoratimedia.com; Secure; SameSite=None
access-control-allow-origin: https://g2.gumgum.com/
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,HEAD,OPTIONS
x-varnish: 1034662336
age: 0
via: 1.1 varnish
X-Firefox-Spdy: h2
sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y5LP0wACl_YBEAAo
151.101.66.49200 OK 85 B URL HTTP/2 sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y5LP0wACl_YBEAAo
IP 151.101.66.49:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a
GET /ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y5LP0wACl_YBEAAo HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Fri, 09 Dec 2022 06:04:03 GMT
via: 1.1 varnish
age: 777
x-served-by: cache-bma1673-BMA
x-cache: HIT
x-cache-hits: 1137
x-timer: S1670565843.326485,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 33b53969aa903dd1c3da196a178b8f47
9abd56c552f3387707a1b3aa1ecb5e12a2aafbf3
33342111496d3b8b9484c0df8c616ceddb9dd1af400d421e244110cf982887c7
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 06:04:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 21:19:25 GMT
Expires: Fri, 09 Dec 2022 21:19:25 GMT
ETag: "9abd56c552f3387707a1b3aa1ecb5e12a2aafbf3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
IP 213.19.147.44:0
GET /usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-11aaac65-16df-44fa-a8eb-548996359c36-003%22%2C%22zdxidn%22%3A%221506%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D%22%7D; path=/; expires=Sat, 09 Dec 2023 06:04:02 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1670565842697
etag: RX11aaac6516df44faa8eb548996359c36003
X-Firefox-Spdy: h2
bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
198.148.27.139302 Found 0 B URL HTTP/2 bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
IP 198.148.27.139:0
GET /bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25 HTTP/1.1
Host: bh.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
cw-server: bh-deployment-574cff5bc6-5ml9b
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: V=EOluNB9PQHLt;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Mon, 04-Dec-2023 06:04:03 GMT;Max-Age=31104000;SameSite=None
pb_rtb_ev=3-1hop|7bq.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Sat, 09-Dec-2023 06:04:03 GMT;Max-Age=31536000;SameSite=None
INGRESSCOOKIE=f94c63eb961a4a7d; path=/; HttpOnly; Secure; SameSite=None
location: https://usersync.gumgum.com/usersync?b=pln&i=EOluNB9PQHLt&ev=1&pid=558355
server: Jetty(9.4.14.v20181114)
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1670565842697
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1670565842697
IP 213.19.147.44:0
GET /usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1670565842697 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 06:04:03 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
104.18.33.19200 OK 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
IP 104.18.33.19:0
GET /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:04:02 GMT
content-type: text/html
cf-ray: 776b8a820b15b4ff-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=doJUzP%2BkQn2Lmrav%2Br0UxBjLL1KODWJEgzhRnWFOufePxkCzDUWN396YSqlzRhfI7kbYyYSlRyNeR60UpabfVLV5OWRXVZJKYgJlNOcnd8EbtgKPkikVDMj3wSXXYjKimhboq8f%2B0P8crQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/v60a.js
54.230.111.95200 OK 0 B URL HTTP/2 cdn-gl.imrworldwide.com/v60a.js
IP 54.230.111.95:0
GET /v60a.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 25 Jul 2022 13:33:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: c8VfWXv7S6pgr9z4BXPhlw..1tDQQwHP
server: AmazonS3
content-encoding: gzip
date: Thu, 08 Dec 2022 16:51:07 GMT
cache-control: max-age=86400
etag: W/"a63502ab51b5896d4875d375d8d72fc3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Rm3Q-XFW4BjEHPVz4fmDVwauTr0J4HfDra-0fGgFQClxl_d9YJxlyg==
age: 47570
X-Firefox-Spdy: h2
prebid.media.net/rtb/prebid?cid=8CUYEJ1S6
34.107.148.139200 OK 0 B URL HTTP/2 prebid.media.net/rtb/prebid?cid=8CUYEJ1S6
IP 34.107.148.139:0
POST /rtb/prebid?cid=8CUYEJ1S6 HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3134
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 06:03:57 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
accept-ch: Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model
expires: Fri, 09 Dec 2022 06:03:57 GMT
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ads.servenobid.com/adreq?cb=3127
34.248.67.80200 OK 0 B URL HTTP/2 ads.servenobid.com/adreq?cb=3127
IP 34.248.67.80:0
POST /adreq?cb=3127 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 926
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 06:03:58 GMT
content-type: application/json
access-control-allow-origin: https://www.speedtest.net
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2