Report - daily-horoscope.us/s?s=zUmxt

Report Overview

Visited public
2023-12-04 18:06:26
Tags
URL
daily-horoscope.us/s?s=zUmxt
Finishing URL
daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1
IP / ASN
3.89.228.143
#14618 AMAZON-AES
Title
Text messages | Unsubscribe | Daily-horoscope.us

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
s3.amazonaws.com	unknown	2005-08-18	2020-05-13 22:53:44	2023-11-20 03:46:36	2.7 kB	165 kB	52.216.209.120
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-12-04 05:09:08	2.6 kB	880 B	216.239.34.36
connect-metrics-collector.s-onetag.com	2958	2017-05-03	2020-04-29 14:09:59	2023-12-02 18:30:51	489 B	137 B	99.83.181.31
ioadserve.com	82120	2018-05-31	2018-10-22 11:42:26	2023-12-02 21:55:15	3.5 kB	13 kB	34.197.163.17
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-04 06:26:24	44 kB	3.5 MB	216.58.207.227
event.trk-keingent.com	unknown	2022-08-15	2022-10-02 16:13:05	2023-12-03 20:50:48	1.1 kB	3.2 kB	172.64.135.38
bat.bing.com	387	1996-01-29	2014-04-08 11:23:16	2023-12-04 05:12:40	2.8 kB	53 kB	204.79.197.200
trk-keingent.com	unknown	2022-08-15	2022-08-16 11:30:10	2023-12-03 16:16:54	485 B	3.8 kB	172.64.134.38
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2023-12-04 06:35:54	512 B	20 kB	104.16.56.101
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-04 05:09:04	937 B	9.0 kB	104.17.24.14
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-12-04 06:22:54	5.8 kB	676 kB	142.250.74.35
ssl.gstatic.com	unknown	2008-02-11	2012-05-23 08:57:57	2023-12-04 15:49:17	463 B	17 kB	142.250.74.35
onetag-geo.s-onetag.com	4143	2017-05-03	2020-07-28 23:40:09	2023-12-03 05:55:34	445 B	1.1 kB	143.204.55.96
res.cloudinary.com	2520	2011-05-24	2012-10-03 10:31:44	2023-12-04 05:27:41	512 B	54 kB	23.38.200.38
ib.adnxs.com	241	2008-05-27	2012-05-20 21:01:49	2023-12-03 10:03:05	1.0 kB	2.2 kB	37.252.171.149
c.mgid.com	5843	2001-12-30	2017-01-30 06:04:01	2023-12-03 05:23:55	1.1 kB	321 B	104.19.132.76
zerossl.ocsp.sectigo.com	4049	2018-08-16	2020-05-09 21:05:29	2023-12-04 05:13:54	696 B	2.4 kB	172.64.149.23
daily-horoscope.us	614472	2016-11-16	2016-11-18 17:14:31	2023-11-20 00:00:55	32 kB	1.6 MB	3.89.228.143
play.google.com	34	1997-09-15	2013-05-31 01:24:35	2023-12-04 11:07:26	2.3 kB	3.2 kB	142.250.74.14
signal-beacon.s-onetag.com	4352	2017-05-03	2020-08-11 09:13:14	2023-12-04 07:20:49	429 B	7.8 kB	143.204.55.41
signal-metrics-collector-beta.s-onetag.com	2964	2017-05-03	2020-01-02 15:46:15	2023-12-03 18:13:15	1.0 kB	274 B	99.83.181.31
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-19 18:48:38	1.8 kB	64 kB	142.250.74.132
onetag-sys.com	1840	2015-04-05	2015-04-08 13:30:19	2023-12-04 05:30:59	661 B	273 B	51.89.9.253
signal-segments.s-onetag.com	25318	2017-05-03	2021-10-08 09:46:38	2023-12-02 14:38:11	975 B	886 B	54.230.111.51
get.s-onetag.com	3473	2017-05-03	2020-07-28 23:18:04	2023-12-03 18:04:45	455 B	27 kB	54.230.111.42
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-04 07:58:24	874 B	328 kB	142.250.74.168
status.geotrust.com	3662	1999-04-04	2017-12-01 09:55:31	2023-12-04 05:15:31	343 B	735 B	192.229.221.95
served-by.pixfuture.com	28841	2010-10-22	2019-03-13 09:03:31	2023-12-03 04:07:37	5.0 kB	24 kB	161.35.253.218
fundingchoicesmessages.google.com	2397	1997-09-15	2019-01-16 16:59:52	2023-12-04 05:10:57	1.9 kB	313 kB	216.58.211.14
prebidserver.pixfuture.com	62447	2010-10-22	2020-02-06 02:23:16	2023-11-25 15:30:05	2.1 kB	3.4 kB	137.184.242.150
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-12-04 08:26:47	584 B	578 B	142.250.74.163
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-04 06:42:16	2.8 kB	171 kB	142.250.74.106
docs.google.com	122	1997-09-15	2013-05-31 01:34:47	2023-12-04 14:21:04	2.1 kB	65 kB	142.250.74.142
api.justservices.cc	unknown	2020-06-19	2022-04-04 16:31:05	2023-11-25 10:09:11	1.6 kB	1.8 kB	34.199.157.218
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-04 05:09:20	898 B	3.7 kB	151.101.193.229
jsc.mgid.com	7902	2001-12-30	2012-09-30 20:50:35	2023-12-03 05:23:55	909 B	324 kB	104.19.132.76
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2023-12-04 07:43:01	1.2 kB	304 kB	104.16.122.175
cdn.pixfuture.com	39923	2010-10-22	2018-04-25 14:44:02	2023-12-02 02:26:25	2.8 kB	473 kB	104.26.7.68
js.justservices.cc	unknown	2020-06-19	2022-01-27 15:33:45	2023-11-20 04:15:35	2.3 kB	140 kB	34.199.157.218

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-04 18:06:05	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:05	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:06	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:06	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:06	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:08	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:11	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:11	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:11	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:12	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-04 18:06:12	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (90)

	URL	From	Size	First Seen	Last Seen
	www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=1/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=viewer_base	ScriptElement	428 kB	2023-11-30	2023-12-11
Pretty URL www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=1/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=viewer_base IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 15:37 Last Seen2023-12-11 09:20 Times Seen14 Hash c48ebb1720f3b81678403766424787e5 6e88336a86b77e765b177f8ebb4740c115cbb12b bd7c1f69eb115b399312e1ff64f110d38c2c86eca01ac59a1b789d664e8ae9f0 Loading...

	ioadserve.com/siteAds.js	ScriptElement	1.1 kB	2023-03-07	2025-04-14
Pretty URL ioadserve.com/siteAds.js IP 34.197.163.17 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2025-04-14 16:36 Times Seen600 Hash 6733f28f2d0dd08db3bc0e0d046b1b8b c7a4234dc0b5de2f64ba6f0e5eb8a8c729b2ba4c 4541ea998f96ca8b30aff5e46506a876dbefadd52a2d3535ea0ab6366efe66e8 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	183 B	2023-03-12	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:25 Last Seen2024-08-20 22:07 Times Seen27 Hash bd507b04c67d3115bcd09b841dfd4529 c3bd3f589f35709ad7018736c3433edbdcc5ec86 8b5adb6bdc46134beb67921754ee4bb1d4fec4cca873acd6ba0526a4f2c36d65 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	373 B	2023-03-07	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash 59bead4981f1303dffaa50ffdaf1df09 67df79da18bfe91b6f5e6841ddb5787a79993fcb 78d4efbdd8b18c5fee1e19359083b7675ae058376db6be288b3e16b889919c6b Loading...

	docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true	ScriptElement	200 B	2023-03-07	2025-05-09
Pretty URL docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 23:08 Last Seen2025-05-09 03:54 Times Seen585 Hash 818b5f82ffbb05426d0a1411fb995bbc 19586ce5fdbc67a60faebd0e3230de521795f3d1 b30385b82a634c8a242dc54f0b2a6644c8aa8763de6326143ccfafd5420a56af Loading...

	daily-horoscope.us/js/build/banners-events.min.js?1701686076	ScriptElement	350 B	2023-07-13	2024-08-20
Pretty URL daily-horoscope.us/js/build/banners-events.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-13 05:10 Last Seen2024-08-20 18:43 Times Seen12 Hash bea0ce497d3a0b77cbd4b4919deff263 3330e17414be33910202d4ad36ad5d12cb4665a4 3a21485802209642a26c2bd7df5e4d5f3f0a7467c030efb488ee2362ddea2993 Loading...

	ioadserve.com/siteAds/io_6065e98ab4a5d/1260/300/250/daily-horoscope.us?190	ScriptElement	1.7 kB	2023-12-04	2023-12-07
Pretty URL ioadserve.com/siteAds/io_6065e98ab4a5d/1260/300/250/daily-horoscope.us?190 IP 34.197.163.17 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2023-12-07 22:12 Times Seen2 Hash 8c5a0adba5917f98ae4bfa0c00a10903 ca0e2405f14f1d74a9d7369057e539e17cee3794 0c8e5f674b597e605b84823a1edf22ce633000d56b53e21aa23952ce859703f6 Loading...

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	ScriptElement	20 kB	2023-10-13	2025-05-09
Pretty URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:51 Last Seen2025-05-09 13:23 Times Seen17152 Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Loading...

	daily-horoscope.us/js/build/http-request.min.js?1701686076	ScriptElement	752 B	2023-03-07	2024-08-20
Pretty URL daily-horoscope.us/js/build/http-request.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash 495814f03bec7af1b0bda03c8b62cc80 fd0440bd74e0b16105308d45f5b4cc0917027d48 1167e88260cf2227ef7f475f0c3889810bcd60a04342c0e893ad4404f53a11fb Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	180 B	2023-10-28	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen27 Hash a6285847b62f0f3ad20f914961b21953 66360c2fa2dd094d08f474edd7bd7ab462bcd7da ed7ccb382e239f45f44a71292ae849109683e60edb64c8b71e28de0639cfedc2 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	587 B	2023-03-13	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:40 Last Seen2024-08-20 22:07 Times Seen27 Hash 66f83d76e5e6d37c0314c5166e39824a 26fd897a6fa44abdf2eeb7c0bd6515b77cf108f8 88141dceb675bcb568c8e73273c05e4bc0a46fb007123d9c263eb76bf24ef0be Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	500 B	2023-03-13	2025-01-03
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 14:49 Last Seen2025-01-03 12:00 Times Seen34 Hash 2560fee4aea84356239fe839c64f0f7f a15941f4c89797cb8aece0d6420af96c6c28a247 43c646cd0bf0f4430ff3cfc49adaddf159a1d04b6e4d9bd1688cd90a6aa612eb Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	101 B	2023-03-13	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 02:29 Last Seen2024-08-20 16:47 Times Seen2 Hash a64a6cdd523b4a66f7171a99138c4bf0 39b4b248b67748318a9b3e40648d3b71bfa02314 2e227553e76bcf70dfd59368a0f32608b223915412a9e35efca8dbc2a39114ef Loading...

	bat.bing.com/p/action/73004260.js	ScriptElement	3.7 kB	2023-10-28	2024-08-20
Pretty URL bat.bing.com/p/action/73004260.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen26 Hash db3e36aba5ce6188fa9bc66872d9bc41 57000f4b48856e94bca4163a98fd3e5028bf61bc 141a8dfd861761a4eccf7073d336d86ceb786643a86389fc5232e5b252b9c4c4 Loading...

	daily-horoscope.us/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.FaYPuRweqII.es5.O/d=1/exm=kernel_loader,loader_js_executable/ed=1/rs=AJlcJMzufRugCfZ2QricSdnhl71g5NspTQ/m=web_iab_tcf_v2_wall_executable	ScriptElement	376 kB	2024-08-20	2024-08-20
Pretty URL daily-horoscope.us/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.FaYPuRweqII.es5.O/d=1/exm=kernel_loader,loader_js_executable/ed=1/rs=AJlcJMzufRugCfZ2QricSdnhl71g5NspTQ/m=web_iab_tcf_v2_wall_executable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:47 Last Seen2024-08-20 16:47 Times Seen1 Hash 9b1834cd18394dca059e25e2fde65002 e16ee908d5b8405b53f0f8d9f78a32e072d89625 27f48255adb45427c5320e5fa7b38bf60a5d0044286c0fa3dd9634661ce84318 Loading...

	unknown	EventHandler	35 B	2023-04-10	2025-05-10
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:44 Last Seen2025-05-10 21:22 Times Seen782 Hash dd2c92e945f0fae3a7c9ce7ea1a85ac3 23beb8128d11d5de27395c2480f43281f0240f88 78e72866a87ca4fd2a51de352eedb0fcfabf6a8d707c67f944a12b28f115bb03 Loading...

	ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?769	ScriptElement	1.5 kB	2023-12-04	2023-12-04
Pretty URL ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?769 IP 34.197.163.17 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2023-12-04 19:06 Times Seen1 Hash 58fff6b17e14c372110b71034c1737a8 ab3277b160e1a506128a406f823ac3656ec8458c f214485a62a639d3bd70f25aea05b3a7cdf191acf6be5cc7267a885a51553d30 Loading...

	daily-horoscope.us/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.FaYPuRweqII.es5.O/am=CAM/d=1/rs=AJlcJMwtXJqxLeKc2R0IUIFp1d5liGKRSg/m=kernel_loader,loader_js_executable	ScriptElement	181 kB	2023-12-04	2023-12-04
Pretty URL daily-horoscope.us/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.FaYPuRweqII.es5.O/am=CAM/d=1/rs=AJlcJMwtXJqxLeKc2R0IUIFp1d5liGKRSg/m=kernel_loader,loader_js_executable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2023-12-04 19:06 Times Seen1 Hash 8018bde7ec37086dd005edde04675313 03df72b164957a807154a69211678a7e23bc89d8 4288a4bb767b0fa2e5b590db7841d4122dd877911aa3cfa5096c69bf52e38ae9 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	219 B	2023-03-07	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash aaa7464ca46f5e81776bbc4abddf4847 8abbdb8daaabd00530a80cce2ae53c79296140c2 95cce07479db19d1e309da4b19e00d63290fb12ea634c965f3fca802bdbfcc18 Loading...

	docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true	ScriptElement	184 B	2024-08-20	2024-08-20
Pretty URL docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:47 Last Seen2024-08-20 16:47 Times Seen1 Hash 1a738bb4fe2b1ae249b4aaf8b0e8e87d 5eeb3b539ff83a93fe2d48797f749df09021095c 1b2f50d02f35a79c244dd5b0435b33341f422727e207dca374d2981240b029db Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	93 B	2023-03-07	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash 7088a7a1b2f5d80fe765d4452aac0182 f96a94c98211f9af527adc8a189f2297b22db9da a4d08a95b1753a58dfb39b0895e5694387e19bff000931d9f51f624e6841f40c Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	49 B	2023-03-12	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:25 Last Seen2024-08-20 18:43 Times Seen8 Hash 389aac34722f9a82778b096fdbead439 e11ffff0506fea4a420a10ece2887b77ab18f6d6 88d102b23724231118c8f6a7479e2461581bc691c9bea0be9c01676a07a582a9 Loading...

	ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?251	ScriptElement	1.7 kB	2023-11-21	2023-12-08
Pretty URL ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?251 IP 34.197.163.17 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-21 02:05 Last Seen2023-12-08 21:06 Times Seen4 Hash 723f47b87bc7821c86a8562cbd290598 1403cfc6e4fefd407de2a84bbe2fc3884f809dd6 a6dff7a98f5bf19ea6b6260737cf7184fe2a9e63628fc9fdeafafd945deacf90 Loading...

	daily-horoscope.us/sandbox%20eval%20code		136 B	2023-04-11	2025-05-11
Pretty URL daily-horoscope.us/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23 Last Seen2025-05-11 11:09 Times Seen41657 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	bat.bing.com/bat.js	ScriptElement	46 kB	2023-11-10	2024-09-19
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-10 23:20 Last Seen2024-09-19 20:57 Times Seen11863 Hash 7f75f159026f3a2c8cccda487b43157b 021cf5c854db063cd79bf0394c24eb994e095640 5e319852607809336b2534ffeb96f6933f26994dd040f535302c84f59cc0a214 Loading...

	unknown	Function	80 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:41 Last Seen2025-05-11 00:20 Times Seen1584 Hash 985fc03237c0627c6917c1318eddb2dd bc7ed05f47cdccd9678eb254287fd852a315b09e 25e130b987458c7e6c8f17c8b2a170f1f53800b163b9832711eabd699a3693e9 Loading...

	cdn.pixfuture.com/pixf_sync.html	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL cdn.pixfuture.com/pixf_sync.html IP 104.26.7.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 11:55 Times Seen4654027 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true	ScriptElement	16 kB	2024-08-20	2024-08-20
Pretty URL docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:47 Last Seen2024-08-20 16:47 Times Seen1 Hash 093dee48c6dbbcee3575e9ea2b69bd78 b84198da41843852765b94538bfc8bdb0003cb9c b2af664ea95ca11f84cfa9d2e69b1c5ac77ee58d3d5e29bb2d7bd7ccf436631a Loading...

	daily-horoscope.us/sandbox%20eval%20code		128 B	2023-05-06	2025-05-11
Pretty URL daily-horoscope.us/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-05-11 11:48 Times Seen24431 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	daily-horoscope.us/js/build/banner-mchat.min.js?1701686076	ScriptElement	596 B	2023-10-28	2024-08-20
Pretty URL daily-horoscope.us/js/build/banner-mchat.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen27 Hash 3e5f45afdd91c43cbd04f300f1dbc085 380866dc8602c1ff23bac29dc5c9926cf1cab145 aa8dbc5ff9241e6a490c7b4c0559c03d4c50fe79c400ec3062ed9a1b2a9aab6f Loading...

	daily-horoscope.us/js/build/header-popup.min.js?1701686076?v1	ScriptElement	4.3 kB	2023-06-15	2024-08-20
Pretty URL daily-horoscope.us/js/build/header-popup.min.js?1701686076?v1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-15 01:14 Last Seen2024-08-20 22:07 Times Seen27 Hash a05c78de9470469a48eba37e7c9f8740 cf3cc84841d609538078b93ad7b2698629b3573f a19084e5148ad1d6d3c287f3c1ea97f5cae25132fdc58b00b64f387015fb9844 Loading...

	ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?661	ScriptElement	1.6 kB	2023-03-12	2023-12-08
Pretty URL ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?661 IP 34.197.163.17 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:09 Last Seen2023-12-08 21:06 Times Seen3 Hash 4fe70b53bcaf5e33a86f96eb0a4bf232 3185a2bc637b28d60371bfe416da90fb9ee4edb4 0aa3d8de6faa6ada402450bb30e36cb3fbd9260d1eb3354f4a5138e3e4e6d7ca Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	ScriptElement	1.6 kB	2023-05-06	2025-05-11
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-05-11 11:48 Times Seen24221 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	www.google.com/recaptcha/enterprise.js?render=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7	ScriptElement	974 B	2023-11-20	2023-12-08
Pretty URL www.google.com/recaptcha/enterprise.js?render=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-20 00:21 Last Seen2023-12-08 21:06 Times Seen15 Hash a0dac7612c4b6275510ccab6ca9a9861 49b100a34780cb87c4b53735c078d510924a5c7e dd1546ba1d6a654e0ca292317d7135098b66edab217f9768db462d35439d4b1f Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	58 B	2023-06-09	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-09 14:23 Last Seen2024-08-20 18:43 Times Seen13 Hash 48b3aab99877d75334b6630b4462178e 29c94f3812379ac3604e09bf48baf0fe911c9db6 b37649f64679c55c7069bbb698cdaf81a1fe104f1c6a681450432dddeef82581 Loading...

	served-by.pixfuture.com/www/delivery/ads.js	ScriptElement	3.0 kB	2023-03-12	2023-12-08
Pretty URL served-by.pixfuture.com/www/delivery/ads.js IP 161.35.253.218 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:25 Last Seen2023-12-08 21:06 Times Seen9 Hash cea14c36c9d1472881ad6c99786ff575 ed9c00f77b342c1666e3d8328e216b4aaf22255b c839a0b02171ddc076c247aa0193d3e4058287a213d338b39bc43eb651ecfd78 Loading...

	unknown	ScriptElement	49 B	2023-03-07	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 18:43 Times Seen8 Hash 428bd75698dc24ad258efc726d20d920 76b691674c348f6624e74e22aaf6e90dc80debd9 917f34e7a44e56fab2de905be2bbb2f6f3b82b69681577cefaab8c277dbec19e Loading...

	get.s-onetag.com/6a105cf8-5d47-4e0a-8c4b-7c60422256d2/tag.min.js	ScriptElement	27 kB	2023-03-09	2024-09-20
Pretty URL get.s-onetag.com/6a105cf8-5d47-4e0a-8c4b-7c60422256d2/tag.min.js IP 54.230.111.42 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:25 Last Seen2024-09-20 20:10 Times Seen85 Hash 34bbd675e8b425becff971d5a4756c10 4eedbdbafad51de7d9ea7e021cd9fd2428dfec62 04da339baae1948d51e6ffcd4f1f118fe304f7aef2884cd164714df856f0e7f0 Loading...

	unknown	ScriptElement	449 B	2023-10-28	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen27 Hash ca1b09c94bc0daddae38fe7dce18ccef 98e61255d209ab2d1d501d64ef9a1eaedeedd18c 8839357005e6f4788c9cf33a61eeb971c8b588c889ec4eaff326729a171d547c Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	28 B	2023-10-28	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen27 Hash 626889ca714a1301e35b71d398b7c004 e549ed60d912d7c356a4fc948d1d922694784c34 1af13be72587eff8ee64374247fa78ac5591cbb056f5b603619782c07676e3ca Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	520 B	2024-08-20	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:47 Last Seen2024-08-20 16:47 Times Seen1 Hash a0acd73d81b23b33fbc3a7874656a569 943c250f60e0e4004eeccef08082b0b56e45550e 41c788346cc3907a1bfbc5ef21ee8b92a612199a5ec989932eb8b922f7d3008b Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	64 B	2023-03-07	2025-05-10
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:27 Last Seen2025-05-10 03:22 Times Seen234 Hash 70957b6ae83bf1935f2916febf7391da fe30cd795d82f571f1a536490848ba717b62d2d3 cacff1f6e2c3732b8ae94335c5162b5a3291d6ae9cd72c6cc1acfa567f83ee5a Loading...

	cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js	ScriptElement	2.0 kB	2023-03-07	2025-05-05
Pretty URL cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-05 14:52 Times Seen1535 Hash 45f12de4d7b95a193ecdc5cfde664bb9 ee9541cf1a95d2a885f8b143a105caaa08ca9c9d 39b8fe6364621725ff90431a34af0f87976d95c00cbfd1d0f3711a3f1fa1a07b Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	1.5 kB	2023-07-13	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-13 05:10 Last Seen2024-08-20 22:07 Times Seen27 Hash cb98c7a8238053f03689e17f905300ea 85ddaebd4e20c1a4af32a07f86ca00d60b7e09f7 b2547486459d5634dc815b6bad7284b2c607e6752d4e4024e099eb1e420f54cd Loading...

	daily-horoscope.us/js/build/lazy-background.min.js?1701686076	ScriptElement	455 B	2023-12-04	2025-03-29
Pretty URL daily-horoscope.us/js/build/lazy-background.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2025-03-29 01:00 Times Seen36 Hash 2bd4151b4d2ebba5943bf1ca03528e66 d77a80b1234ade5a24f4a86a9b04c6ebcfe10275 1b1998b99742a3b0289db5459f05466eaea20437e45f7441636d855c84f64e06 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt	ScriptElement	75 B	2023-03-07	2025-05-11
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15 Last Seen2025-05-11 11:04 Times Seen14265 Hash dca9d53787fff314e5bd1a123b28906a 1350c858f60bbb03d1b53b05cbad6cea82ff29d1 2475d902b4182bac667d464a44c89ee405e5cfd64156b30f811557cf2b347e2f Loading...

	www.googletagmanager.com/gtag/js?id=G-Q5R676DMGQ	ScriptElement	301 kB	2023-12-04	2023-12-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-Q5R676DMGQ IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2023-12-04 19:06 Times Seen2 Hash db7332d56e97fab856c9899d4f63670a 27452e33339bd8df59b49a4cb42ca15df888a0d4 7a632da869678722ad8ea801fef0781f76a95a8b54fc5f824ea257afc5a133c9 Loading...

	jsc.mgid.com/d/a/daily-horoscope.us.1547327.es6.js	ScriptElement	320 kB	2023-12-04	2023-12-08
Pretty URL jsc.mgid.com/d/a/daily-horoscope.us.1547327.es6.js IP 104.19.132.76 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2023-12-08 21:06 Times Seen4 Hash 12a4cc0e0f02570a5f03d4e639ee3948 2f8a3395b4d8cda90a77207d3c36a58186d13f94 3f658d9269bfe130effb4fc6a0935b58bf1467e64b298befcf095af1f5e996cc Loading...

	daily-horoscope.us/vendor/just-validate/dist/js/just-validate.min.js?1701686076	ScriptElement	14 kB	2023-03-07	2024-08-20
Pretty URL daily-horoscope.us/vendor/just-validate/dist/js/just-validate.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash c1070a4ea8f60b50a79d6e91dba32882 c7e49a3ebf32624e7717f529df2f4fd2abf3d1cb 9d6afd655c971b33f5c8cd6c166efd1bb678b8fefa1f1946aa1bce26e567bb2c Loading...

	daily-horoscope.us/js/build/popup/widget-bottom-subscribe.min.js?1701686076	ScriptElement	535 B	2023-03-10	2024-08-20
Pretty URL daily-horoscope.us/js/build/popup/widget-bottom-subscribe.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:27 Last Seen2024-08-20 22:07 Times Seen27 Hash 3fbad032abcc0628186c7aad89ad0be2 ec6455638dc1f811f16eccc2005cd9edbee3616b 47365f044c7c6e5df004d2bc84a490f943ae29d4a9194ac7b08eb3465dcf8f20 Loading...

	unknown	ScriptElement	281 B	2023-03-07	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash d0590744feaa8bab58fa442761937913 33f39c1212f1ebc706aff930c6c8071378b71cfe cffecbdf4476a5b049ecbfc281c454930a90f0a8c7d05e1cfc8b0be289ed6e62 Loading...

	docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true	ScriptElement	1.1 kB	2023-05-09	2024-08-20
Pretty URL docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-09 23:13 Last Seen2024-08-20 18:43 Times Seen12 Hash 8dfa6d8111d08e02852df0a44f0f5fa3 cf1818978242906db6cb481e9eeab886a6c17d67 57dc68148aebf1e926a516772afdbd7e88e294b4805c34fe0d6bbe4cd7ba9aff Loading...

	cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.js	ScriptElement	21 kB	2023-03-07	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30 Last Seen2025-05-10 03:57 Times Seen1179 Hash 4a48532bf0b17c058b8b6854f49de23f 9cbada4bd617c86c638cf2ebddec724ad596907b e55842a856a6d829feca3c3ad736c136b6c7549e9247274f78aa296259e06e24 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KDSNQ9B	ScriptElement	229 kB	2023-12-04	2023-12-04
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KDSNQ9B IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2023-12-04 19:06 Times Seen1 Hash 265275d21ee254e763608df446634cb5 a9e5e13682729bc01ef082f39992633764f9a64c 9edf088f8ac69b701c1be7137d8ec46c53697c33ac58b986f442ec43a6cdb888 Loading...

	daily-horoscope.us/js/build/navigation.min.js?1701686076	ScriptElement	114 B	2023-07-13	2024-08-20
Pretty URL daily-horoscope.us/js/build/navigation.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-13 05:10 Last Seen2024-08-20 22:07 Times Seen27 Hash bcb26afc6c4726bc735fe6a21517280d e8c248582ddc21487afdfdaae827f06d7014895c 465f1a07929f259d813ea0cd7e1e948a7fc9671cea5aa94623cd8f6f4ac10925 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	147 B	2023-05-23	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-23 07:28 Last Seen2024-08-20 22:07 Times Seen11 Hash e06703158b2099b1156030e5e90e0923 2550778e2670c018e58e8a6e59fd07787923b008 2ff4bace488c3ded0e1dae2a4e7c691718f1b6706fed2c1da1066eeaf6a317ea Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	80 B	2023-03-13	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 02:29 Last Seen2024-08-20 16:47 Times Seen2 Hash 2de2bb32b0d13c3b763dc908b56fa68f fecb649d78f5e95deede4dc57b269773d432947d c42037acb90615be03825cf8b84f1151b3c7d25b88527cd6eea4b67f0663b934 Loading...

	daily-horoscope.us/js/build/random-item-banner.min.js?1701686076	ScriptElement	295 B	2023-07-13	2024-08-20
Pretty URL daily-horoscope.us/js/build/random-item-banner.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-13 05:10 Last Seen2024-08-20 18:43 Times Seen12 Hash 8126e7a8ead6842aaafd9504c6f4841c 599b774d8e432ff10677af6dd3c9536fd7bd73af 56eee3fbc18ced21344547bb6126547986be7300c9eeef47a5fb37b213a05699 Loading...

	unpkg.com/imask	ScriptElement	110 kB	2023-07-18	2024-08-21
Pretty URL unpkg.com/imask IP 104.16.122.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-18 09:57 Last Seen2024-08-21 09:40 Times Seen161 Hash c411b791cf977df363dbd6ab49a417e9 af7c0a6c376bd138f6c966ea86a0e008edd236b3 42e7a5c70376b125d470d570585ff230cd777cfbbd9e4fbedc18d2de0c8dc83d Loading...

	js.justservices.cc/digest/2.0.0/JustDigest.min.js	ScriptElement	68 kB	2023-03-07	2024-08-20
Pretty URL js.justservices.cc/digest/2.0.0/JustDigest.min.js IP 34.199.157.218 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash 58380596ef73783833f0b4dc742777cb 43dfbc07a9d22e9a52e1f74e9640e26470eef056 8c22e9e8c4b45cd989096b839b0711a075c8f8ae4408dbe76797e32223a5ec87 Loading...

	daily-horoscope.us/js/build/custom-link-ads.min.js?1701686076?v1	ScriptElement	50 kB	2023-10-28	2024-08-20
Pretty URL daily-horoscope.us/js/build/custom-link-ads.min.js?1701686076?v1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen17 Hash 25b140d54e2829acc28f5880299b8c3c bb1d711db9e41b2a2ca4d254571fabcfee40d366 e70fa27e49c0e0f36dca9e181416f28f0d928fdc24d49724ac2903f8851d7771 Loading...

	daily-horoscope.us/js/build/validate/phone/validate-phone-unsub.min.js?1701686076	ScriptElement	1.7 kB	2023-05-23	2024-08-20
Pretty URL daily-horoscope.us/js/build/validate/phone/validate-phone-unsub.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 07:28 Last Seen2024-08-20 18:43 Times Seen10 Hash b82a3b5896eeb7c3e407f8facf19cf76 4c7d4505f3b112c5e594b71e24202efb1b1f29d2 2ce92ace89bf1f3aecaaeaff1b1db9916d9801e603df2e2b9cb2bc8351309c0a Loading...

	trk-keingent.com/scripts/push/script/zqd2my4gk3?url=daily-horoscope.us&alturl=/texts-unsubscribe	ScriptElement	7.3 kB	2023-03-29	2024-08-20
Pretty URL trk-keingent.com/scripts/push/script/zqd2my4gk3?url=daily-horoscope.us&alturl=/texts-unsubscribe IP 172.64.134.38 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:47 Last Seen2024-08-20 22:07 Times Seen27 Hash 58074d1392646ffcce9a2072bc47d251 68bdef7874108b6d1aeb1e1af2b5e558b2cbfa32 b43911696f2229050a8f27860db8877edc551c80601a3c1d2fba05a6151d52f7 Loading...

	signal-beacon.s-onetag.com/beacon.min.js	ScriptElement	23 kB	2023-06-14	2024-08-21
Pretty URL signal-beacon.s-onetag.com/beacon.min.js IP 143.204.55.41 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-14 15:11 Last Seen2024-08-21 09:41 Times Seen418 Hash 565eb88b90415391668a5cb7cfb4557a a7d074dfd994f6ed3317551db84b21d3eef10d32 b0a16378462c7afcb27d8e14cf50e2cd3a8980af2895d20622640b096920719e Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	620 B	2024-08-20	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:47 Last Seen2024-08-20 16:47 Times Seen1 Hash e50fd5fd28316d60e81d3623ab53b85a dbf0367b1927d5705f10db3a56f562f0e58f36b3 7d21f541be73b22258a2ed09a6dc850ff924ae675a46b61c673340c30b272e6e Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	176 B	2023-03-25	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-25 22:19 Last Seen2024-08-20 22:07 Times Seen27 Hash 0d107652591d68817a66f34f768db30b f2aaa2d9abffca0a0ddb315593dd79ae5b2d74fe 48b99e64170b9c328728774f9e5bcc7c18dd1e5fb0c5dc6c2e4b1561eb0ecc63 Loading...

	daily-horoscope.us/js/build/popup/popup-signup.min.js?1701686076	ScriptElement	4.6 kB	2023-10-28	2024-08-20
Pretty URL daily-horoscope.us/js/build/popup/popup-signup.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen24 Hash 0575935ae2a2024c72a214b403ef3c3e 9d233d1d6f70f0b9232cbe29ab34d6acb4b7c61c 117aa5bad867d1c9796a64cb0e069c0b604d41c1dfbbbf9143366d2773f65757 Loading...

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js	ScriptElement	476 kB	2023-11-14	2024-08-20
Pretty URL www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 09:02 Last Seen2024-08-20 19:39 Times Seen12206 Hash 23b9dd721490a4062ba8d01454ef6ba9 efdbb7331585411f7d397dacbf51fd3e95f3031d 4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	588 B	2023-11-20	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-20 00:21 Last Seen2024-08-20 18:44 Times Seen26 Hash 6e25f242b96423bbaea4f3d3d8159ac3 1eea2c9b7ef258ab6c0fae6e71a0e864cde0aa6c 4b70d661b4888ef6e61233b55ca42de5aea1d417afe22cb7117213cf758f6d7f Loading...

	cdn.pixfuture.com/pxft_iel.js	ScriptElement	5.0 kB	2023-03-09	2025-03-29
Pretty URL cdn.pixfuture.com/pxft_iel.js IP 104.26.7.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:25 Last Seen2025-03-29 07:48 Times Seen99 Hash 7afc7a46a0b0e60c6ed63f2a501805ee 3c8738f3be1cb2d92cff2c6cb35c0cd99c4cd767 22de3cfef032de2d4fdb9617e21c37a4e1b94d3c388eacf661428139aac3e19c Loading...

	daily-horoscope.us/js/build/more-readings-events.min.js?1701686076	ScriptElement	1.0 kB	2023-10-28	2024-08-20
Pretty URL daily-horoscope.us/js/build/more-readings-events.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:01 Last Seen2024-08-20 22:07 Times Seen19 Hash d2c67d9631a7daf0e5f3c48c1935c709 1d32ad2c0309383bd76da28189bf8c0476a1bfa8 a719ffd48927bef8aee73908be77e38cd67cdcd6183b75163747c7736c3ab8ba Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	ScriptElement	13 kB	2023-04-05	2025-05-11
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46 Last Seen2025-05-11 11:09 Times Seen39477 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	daily-horoscope.us/js/build/tarot-card-unsubscribe.min.js?1701686076	ScriptElement	210 B	2023-03-12	2024-08-20
Pretty URL daily-horoscope.us/js/build/tarot-card-unsubscribe.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:25 Last Seen2024-08-20 18:43 Times Seen12 Hash de46151ba41cc577650421812520be5f 775f736f4b00302f10d7443b8ed74e7f6e6f19dc 8ad8a495c9a48cb9d2fa80dcb8bc180a85dda6b41d9d70906c7af43bb01c6e9c Loading...

	jsc.mgid.com/d/a/daily-horoscope.us.1547327.js	ScriptElement	3.8 kB	2023-12-04	2024-08-20
Pretty URL jsc.mgid.com/d/a/daily-horoscope.us.1547327.js IP 104.19.132.76 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:06 Last Seen2024-08-20 16:47 Times Seen6 Hash f76a200e29173caa622932b4c964188e 7d64d7e709ec7d4d2b7fa3df15432c34989079ff e237e3e4e5d903ca17666ed101434b5246332ea4c6c3309ad50fb2d40da60109 Loading...

	cdn.pixfuture.com/pbix.js	ScriptElement	406 kB	2023-03-13	2024-08-21
Pretty URL cdn.pixfuture.com/pbix.js IP 104.26.7.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:28 Last Seen2024-08-21 09:40 Times Seen90 Hash ce8971decbae8701b1b29d820c1b58df 079821dcb0f1230594b55accc35f2bd4c9d94546 8e4196faa28def3b310eed8c11827e29b55f9f3d2bfdd31d3d72669fea7f8c92 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt	ScriptElement	52 kB	2024-08-20	2024-08-20
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:47 Last Seen2024-08-20 16:47 Times Seen1 Hash dbb1728e579f8d8b3c543edf18b8d998 4d5b4c0d582f772195445bd4fe1627fb9f06a85c 00b2c824fcd14bd251b418863ac4ed53697b4ea3be9f423a12a333478383b231 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	338 B	2023-03-12	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:25 Last Seen2024-08-20 18:43 Times Seen12 Hash a936a89d259381b6e5a8201e64043ada dbc54fb5b00f5338df1de2072327fc3e5fc784af 6738187b95637f6f262c6ea8a547e36445b0d6f2e4d3dc2f43caef20a613600e Loading...

	cdn.pixfuture.com/hb_v2.js	ScriptElement	57 kB	2023-08-09	2024-08-21
Pretty URL cdn.pixfuture.com/hb_v2.js IP 104.26.7.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 19:18 Last Seen2024-08-21 09:40 Times Seen59 Hash 2dc2e4bedb5b14e387644bfac84d8abf 4c1ee3105927df3f95eb7cd9e0860520b96f6385 4c2bbbb5c5f4c4757aa651d7d97109fcc5309df91c17b2ba54cf34db0d0c3f8e Loading...

	daily-horoscope.us/js/build/footer-install.min.js?1701686076	ScriptElement	354 B	2023-03-07	2024-08-20
Pretty URL daily-horoscope.us/js/build/footer-install.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2024-08-20 22:07 Times Seen27 Hash 131d8558144c1932ddcf396f79a263dc cdf4c8eb03e0c50f8e27d09a7de79166ad68226c 2904e95cc25d84bc23faab995a4a19bb9505b2a16dfa68f7076bf8185659fac7 Loading...

	daily-horoscope.us/js/build/header-menu.min.js?1701686076	ScriptElement	950 B	2023-07-13	2024-08-20
Pretty URL daily-horoscope.us/js/build/header-menu.min.js?1701686076 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-13 05:10 Last Seen2024-08-20 22:07 Times Seen27 Hash c930f71828fb009c13bc87ccad912329 372423665caa752cd27ac7695e11f6e1b4ba72b1 e33d436afaa9f15f3ae535565d5fb9de3e3a3154f79599a30f887a5fb8a42db3 Loading...

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	ScriptElement	173 B	2023-11-20	2024-08-20
Pretty URL daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-20 00:21 Last Seen2024-08-20 18:44 Times Seen38 Hash 689e0c1ec52e1cae548eb6d40fb151af c38699bb185a8515ce5230d59a01529636db8a84 49afd388fcb9cdba29b67d8fb7d2945ffea6a48410ea1967df7a208a1f6f0b16 Loading...

	daily-horoscope.us/js/build/action-sender.min.js?1701686076?v1	ScriptElement	320 B	2023-11-20	2024-08-20
Pretty URL daily-horoscope.us/js/build/action-sender.min.js?1701686076?v1 IP 3.89.228.143 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-20 00:21 Last Seen2024-08-20 18:44 Times Seen38 Hash 6176be3be622c94565491d6fbc3b608b b3cc090dd28271e2dd12e62f7152effc8da109fa 16e425e8a960670ca15ac7d8c77a105a6435c67241ee4472bb3f0fc63198e216 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 026563c41efb71a66cbc9f91eb1f8452	23 kB	2023-12-04 19:06	2024-08-20 16:47
Pretty Observations First Seen2023-12-04 19:06 Last Seen2024-08-20 16:47 Times Seen5 Hash 026563c41efb71a66cbc9f91eb1f8452 ea1ef1378b4d40648669189fc1ce20da0819023a 1317b89728fc9ceac119908f3de6b584e4836b80c38d31291c3a1e488974a950 Loading...

	#2 Eval - 6849ac7417e371c470e87652f1a6b682	17 kB	2023-11-09 09:25	2024-08-20 20:18
Pretty Observations First Seen2023-11-09 09:25 Last Seen2024-08-20 20:18 Times Seen1454 Hash 6849ac7417e371c470e87652f1a6b682 05826541aa11d2ae47fb24183366557f0230a5ed 99732ec9500587fc6461e5339a61b4bd05a2716691eb751302e9154f0639fb4f Loading...

	#3 Eval - 66680d9c8adc15cd29b65a8d17a97bfb	17 kB	2024-08-20 16:47	2024-08-20 16:47
Pretty Observations First Seen2024-08-20 16:47 Last Seen2024-08-20 16:47 Times Seen1 Hash 66680d9c8adc15cd29b65a8d17a97bfb d662bc73a24a022ea10dc995a2846df088aabeba 1bb28bb8591bbf5421d5e277e63a16942b5954ae76f108fb4f969ac2be164b74 Loading...

	#4 Eval - be9bd07c871f93960cbf60e10c37d06c	22 B	2023-11-09 09:25	2024-08-20 20:18
Pretty Observations First Seen2023-11-09 09:25 Last Seen2024-08-20 20:18 Times Seen1456 Hash be9bd07c871f93960cbf60e10c37d06c c15c47568161d52233ee386e2201c2d404316491 645ff9aee4745c6d17672ff94a247b1dfcec8b107af91dd39cc66da2cd0b700a Loading...

	#5 Eval - bdfd1fcd1d60ba31a8fcb284247edc9b	602 kB	2023-12-04 19:06	2024-08-20 16:47
Pretty Observations First Seen2023-12-04 19:06 Last Seen2024-08-20 16:47 Times Seen4 Hash bdfd1fcd1d60ba31a8fcb284247edc9b 311244366395c7119f8891998ff2c095545a890a 2e53d30456e1645db2b55c9ac8ef950452a862b1a1661b7acd90a38ba45524a1 Loading...

	#6 Eval - 97e6c2f32f8d34ba4862b2ef00e3e51b	64 B	2023-11-09 09:25	2024-08-20 20:18
Pretty Observations First Seen2023-11-09 09:25 Last Seen2024-08-20 20:18 Times Seen1454 Hash 97e6c2f32f8d34ba4862b2ef00e3e51b 0fbf01302c7704e2150b6911770008833551e153 ebaecce1797fe6783a9debd0d3736abc44fef16a019cd228323ae6496b992c5d Loading...

	#7 Eval - 1d67376dbddf41b70dbae89581a72526	22 B	2023-11-09 09:25	2024-08-20 20:18
Pretty Observations First Seen2023-11-09 09:25 Last Seen2024-08-20 20:18 Times Seen1455 Hash 1d67376dbddf41b70dbae89581a72526 5a5cda2c89c72e02982347c72a2a37f7f5537f39 d27712119f87276bd3aa647025d0613f03d00ba550b771026a6c8ab1c83873cf Loading...

		Size	First Seen	Last Seen
	#1 Write - db4f821a6cb42f16cac4b31ad55e339f	299 B	2023-05-09 23:13	2024-08-20 18:43
Pretty Observations First Seen2023-05-09 23:13 Last Seen2024-08-20 18:43 Times Seen8 Hash db4f821a6cb42f16cac4b31ad55e339f 5cafdcb95026144bbe7745d084859fbbc5073069 6abe1af03a330c964b812e4670c07158d01bdb6442cea362aad310b910c86950 Loading...

HTTP Transactions (224)

	URL	IP	Response	Size
	zerossl.ocsp.sectigo.com/	172.64.149.23		727 B
URL zerossl.ocsp.sectigo.com/ IP 172.64.149.23:0 ASN #13335 CLOUDFLARENET File type data Size 727 B (727 bytes) Hash b0f3e247ae27f33e933a12036b0020c4 7326f52e2d9cc143e992b2730ff65338afbdcef2 29eb56aea0bba38001b157530d3541a8e4babb2c8e22055c62f772d6626f01e1 HTTP Headers `POST / HTTP/1.1 Host: zerossl.ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:00 GMT Content-Type: application/ocsp-response Content-Length: 727 Connection: keep-alive Last-Modified: Sun, 03 Dec 2023 06:09:20 GMT Expires: Sun, 10 Dec 2023 06:09:19 GMT Etag: "7326f52e2d9cc143e992b2730ff65338afbdcef2" Cache-Control: max-age=474798,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 8305fb14db4e7127-OSL`

	daily-horoscope.us/just.config.json	3.89.228.143	200 OK	23 kB
URL GET HTTP/2 daily-horoscope.us/just.config.json IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 23 kB (23242 bytes) Hash 48c5187d14ab721b8f987ee16d6ba7f6 1130eed6f7e6a83694e3c545c6bf9cae00bf9f91 ff500df1b8e051f602af8477b7b59f186f11b699dda5cadde93401f2586af4b3 HTTP Headers `GET /just.config.json HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/s?s=zUmxt DNT: 1 Connection: keep-alive Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:00 GMT content-type: application/json last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-69" x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/favicon/favicon-16x16.png	3.89.228.143	200 OK	1.2 kB
URL GET HTTP/2 daily-horoscope.us/favicon/favicon-16x16.png IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Size 1.2 kB (1221 bytes) Hash a3b90f4e3c4ce6adcfe638ae19366056 be5a19b51422ad3c9b996e6722464b056f33bd16 1273548a0ec784fa0c712c89e4751c4809cd681633321a12c0b2e6db627659ca HTTP Headers GET /favicon/favicon-16x16.png HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/s?s=zUmxt Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:01 GMT content-type: image/png content-length: 1221 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-4c5" expires: Tue, 03 Dec 2024 18:06:01 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	daily-horoscope.us/lottie/preloader-logo.json?1701686076	3.89.228.143	200 OK	75 kB
URL GET HTTP/2 daily-horoscope.us/lottie/preloader-logo.json?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 75 kB (74776 bytes) Hash dbd89749e8f28403c0c7a8143bbacb18 9603409a5d540cb690b214ffc6c803623b1a3406 07193937160b7bf63575e63d47de588c7f5aeadf8ed4f6635c61218faf8dcc1c HTTP Headers GET /lottie/preloader-logo.json?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/s?s=zUmxt Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:00 GMT content-type: application/json last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-23672" x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	zerossl.ocsp.sectigo.com/	172.64.149.23		728 B
URL zerossl.ocsp.sectigo.com/ IP 172.64.149.23:0 ASN #13335 CLOUDFLARENET File type data Size 728 B (728 bytes) Hash e7cca316e7e1a5290b0f9cf823dfdb03 60c6a5176228ee8a08366e7854422ef397c3078f 102eea18076ee42776fd4d37d51626575dcfcfd6c44c3ad60f8cf94f4639d9fc HTTP Headers `POST / HTTP/1.1 Host: zerossl.ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:01 GMT Content-Type: application/ocsp-response Content-Length: 728 Connection: keep-alive Last-Modified: Sat, 02 Dec 2023 05:23:19 GMT Expires: Sat, 09 Dec 2023 05:23:18 GMT Etag: "60c6a5176228ee8a08366e7854422ef397c3078f" Cache-Control: max-age=385654,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 8305fb18f8417127-OSL`

	api.justservices.cc/api/tracker/v2/tracking	34.199.157.218	200 OK	22 B
URL OPTIONS HTTP/2 api.justservices.cc/api/tracker/v2/tracking IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerZeroSSL Subjectapi.justservices.cc FingerprintFC:27:63:CE:52:EA:8E:98:B1:F8:25:B7:CF:F1:E4:D7:14:92:E9:38 ValiditySat, 25 Nov 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 22 B (22 bytes) Hash 444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df HTTP Headers `OPTIONS /api/tracker/v2/tracking HTTP/1.1 Host: api.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: x-auth-token Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:01 GMT content-type: application/json content-length: 22 access-control-allow-credentials: true access-control-allow-headers: X-AUTH-TOKEN access-control-allow-methods: POST,GET,OPTIONS access-control-allow-origin: https://daily-horoscope.us access-control-max-age: 86400 cache-control: max-age=0, must-revalidate, private content-encoding: gzip expires: Mon, 04 Dec 2023 18:06:01 GMT pragma: no-cache strict-transport-security: max-age=63072000 X-Firefox-Spdy: h2

	api.justservices.cc/api/tracker/v2/tracking	34.199.157.218	200 OK	202 B
URL OPTIONS HTTP/2 api.justservices.cc/api/tracker/v2/tracking IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerZeroSSL Subjectapi.justservices.cc FingerprintFC:27:63:CE:52:EA:8E:98:B1:F8:25:B7:CF:F1:E4:D7:14:92:E9:38 ValiditySat, 25 Nov 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 202 B (202 bytes) Hash db60728e36bcd2237e021cf0e17a16cf b2199c49493d236f0dec57bbb31b4e117ece9b63 b57a2dabb95fe72d1f578968f13776f6d6470249e2d9cef7a9ca757583b02527 HTTP Headers POST /api/tracker/v2/tracking HTTP/1.1 Host: api.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded X-AUTH-TOKEN: ba8zh3nsuSyQ9kLxqA1R0itjOXE4K2WT Content-Length: 11 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/json content-length: 202 access-control-allow-credentials: true access-control-allow-origin: https://daily-horoscope.us cache-control: max-age=0, must-revalidate, private content-encoding: gzip expires: Mon, 04 Dec 2023 18:06:02 GMT pragma: no-cache strict-transport-security: max-age=63072000 X-Firefox-Spdy: h2`

	cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js	151.101.193.229	200 OK	1.1 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js IP 151.101.193.229:443 ASN #54113 FASTLY Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text, with very long lines (1619) Size 1.1 kB (1078 bytes) Hash 45f12de4d7b95a193ecdc5cfde664bb9 ee9541cf1a95d2a885f8b143a105caaa08ca9c9d 39b8fe6364621725ff90431a34af0f87976d95c00cbfd1d0f3711a3f1fa1a07b HTTP Headers `GET /npm/js-cookie@2/src/js.cookie.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=604800, s-maxage=43200 cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 2.2.1 x-jsd-version-type: version etag: W/"79f-7pVBzxqV0qiF+LFDoQXKqgjKnJ0" content-encoding: br accept-ranges: bytes date: Mon, 04 Dec 2023 18:06:02 GMT age: 36464 x-served-by: cache-fra-eddf8230099-FRA, cache-bma1651-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 1078 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.css	104.17.24.14	200 OK	1.1 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.css IP 104.17.24.14:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (1460) Size 1.1 kB (1055 bytes) Hash acf82ee47549fdc386d02768992a49ad de7b617c2d6c095ff286235e6cf64c328da1a4bf cd0d0b6e50ff01ff2f3a9a70d7cfb66a7c6cb9acf7a566325568be6d3bd31fc4 HTTP Headers `GET /ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:02 GMT content-type: text/css; charset=utf-8 content-length: 1055 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e2d-135e" last-modified: Mon, 04 May 2020 16:09:17 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1088077 expires: Sat, 23 Nov 2024 18:06:02 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pfgb9WgelBsUqPg3w4YPLRXl8J4MZ29d3yFbi2j3PM453NmXqnUfj%2BPyQDUFrVIUKcZyPf0q2WaCAdgaDplVn3bXKDHId7QUNJEejodWtuAYIUmOhvsXw6N0y8Gf6JPbCuEiC%2BBh"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 8305fb22a8d156aa-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.js	104.17.24.14	200 OK	5.9 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.js IP 104.17.24.14:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (20693), with no line terminators Size 5.9 kB (5908 bytes) Hash 4a48532bf0b17c058b8b6854f49de23f 9cbada4bd617c86c638cf2ebddec724ad596907b e55842a856a6d829feca3c3ad736c136b6c7549e9247274f78aa296259e06e24 HTTP Headers `GET /ajax/libs/cookieconsent2/3.1.1/cookieconsent.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript; charset=utf-8 content-length: 5908 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e2d-50d5" last-modified: Mon, 04 May 2020 16:09:17 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1000808 expires: Sat, 23 Nov 2024 18:06:02 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AjOZeDs%2FquTOhfKOACkCnjTO275gNS4uwYvHlaih2r1uPBpR3cf2MOT2mozHWx90ihZekxMKtr2CDMt3TUn8EOkJfN82zkcDiahTB0iN2WQExPs6rTFfDXnJJzJQcmyiNOj0ED5%2B"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 8305fb22b8e456aa-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-Q5R676DMGQ	142.250.74.168	200 OK	97 kB
URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-Q5R676DMGQ IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34 ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT File type ASCII text, with very long lines (7711) Size 97 kB (97364 bytes) Hash db7332d56e97fab856c9899d4f63670a 27452e33339bd8df59b49a4cb42ca15df888a0d4 7a632da869678722ad8ea801fef0781f76a95a8b54fc5f824ea257afc5a133c9 HTTP Headers `GET /gtag/js?id=G-Q5R676DMGQ HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 04 Dec 2023 18:06:02 GMT expires: Mon, 04 Dec 2023 18:06:02 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 97364 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	status.geotrust.com/	192.229.221.95		471 B
URL status.geotrust.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 2ca73b8200acc3214684a8e84e844b12 c64e412ec84fda04f6b44d0f18e5093d4637e20d ec3d210152aa33fef6e9a5c438f68dc2846d225ed08478e3efd4944d37eee308 HTTP Headers `POST / HTTP/1.1 Host: status.geotrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3009 Cache-Control: max-age=7200 Content-Type: application/ocsp-response Date: Mon, 04 Dec 2023 18:06:02 GMT Last-Modified: Mon, 04 Dec 2023 17:15:53 GMT Server: ECAcc (amb/6A94) X-Cache: HIT Content-Length: 471`

	jsc.mgid.com/d/a/daily-horoscope.us.1547327.js	104.19.132.76	200 OK	1.9 kB
URL GET HTTP/2 jsc.mgid.com/d/a/daily-horoscope.us.1547327.js IP 104.19.132.76:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint44:BF:9D:AD:98:A7:1A:F2:1D:18:EF:4E:3E:BE:C0:D8:28:4D:9F:04 ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (3772), with no line terminators Size 1.9 kB (1865 bytes) Hash f76a200e29173caa622932b4c964188e 7d64d7e709ec7d4d2b7fa3df15432c34989079ff e237e3e4e5d903ca17666ed101434b5246332ea4c6c3309ad50fb2d40da60109 HTTP Headers `GET /d/a/daily-horoscope.us.1547327.js HTTP/1.1 Host: jsc.mgid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:02 GMT content-type: text/javascript cf-bgj: minify cf-polished: origSize=3773 etag: W/"d21a244af5de57ecf659ba4a9bcaac9d" last-modified: Mon, 27 Nov 2023 14:34:07 GMT x-amz-id-2: kP8u21wEkOqG/UXP7Dzl+k6i1fFD7KQjLvVWDDpQTK6u8yTy16pjZs7y6FZoap/k7Fpd9xn/+f8= x-amz-request-id: BZ3YRK50RC9KMB6G x-amz-server-side-encryption: AES256 x-amz-version-id: CZJQeFkvxVqSnamBqR.BC03umNKpXo9D cf-cache-status: HIT age: 1029 expires: Mon, 04 Dec 2023 21:06:02 GMT cache-control: public, max-age=10800 set-cookie: __cf_bm=udio2c2oEjXvzNYvo50KLyQuiG7N7NyX2X0ec86fzLM-1701713162-0-AfcaD7kxwtfeWfMZzubd3mdXdYLMJhk00JO3N72tTzDib6XtXu6g3rHw2u1zQzVnhvBwWU+xmFSBGziBWWTJiF8=; path=/; expires=Mon, 04-Dec-23 18:36:02 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload access-control-allow-origin: * server: cloudflare cf-ray: 8305fb228b11b51d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	ioadserve.com/siteAds.js	34.197.163.17	200 OK	1.1 kB
URL GET HTTP/1.1 ioadserve.com/siteAds.js IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type C source, ASCII text Size 1.1 kB (1121 bytes) Hash 6733f28f2d0dd08db3bc0e0d046b1b8b c7a4234dc0b5de2f64ba6f0e5eb8a8c729b2ba4c 4541ea998f96ca8b30aff5e46506a876dbefadd52a2d3535ea0ab6366efe66e8 HTTP Headers `GET /siteAds.js HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:02 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 Last-Modified: Tue, 14 May 2019 13:50:02 GMT ETag: "461-588d94f409f14" Accept-Ranges: bytes Content-Length: 1121 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/javascript`

	served-by.pixfuture.com/www/delivery/ads.js	161.35.253.218	200 OK	3.0 kB
URL GET HTTP/1.1 served-by.pixfuture.com/www/delivery/ads.js IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (3041), with no line terminators Size 3.0 kB (3041 bytes) Hash cea14c36c9d1472881ad6c99786ff575 ed9c00f77b342c1666e3d8328e216b4aaf22255b c839a0b02171ddc076c247aa0193d3e4058287a213d338b39bc43eb651ecfd78 HTTP Headers `GET /www/delivery/ads.js HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK accept-ranges: bytes content-length: 3041 content-type: text/javascript; charset=utf-8 last-modified: Tue, 28 Nov 2023 22:23:44 GMT date: Mon, 04 Dec 2023 18:06:02 GMT`

	daily-horoscope.us/js/build/banners-events.min.js?1701686076	3.89.228.143	200 OK	725 B
URL GET HTTP/2 daily-horoscope.us/js/build/banners-events.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 725 B (725 bytes) Hash c6579170493e5048db3317a7edae5579 fa30707964f1d684427187b0e151886c65140d84 bbd09ab5a14c91e7df5385417d93c0bcd33d3a39a5c4a2d97845f52664e0d3d4 HTTP Headers GET /js/build/banners-events.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-15e" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js	151.101.193.229	200 OK	1.1 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js IP 151.101.193.229:443 ASN #54113 FASTLY Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text, with very long lines (1619) Size 1.1 kB (1078 bytes) Hash 45f12de4d7b95a193ecdc5cfde664bb9 ee9541cf1a95d2a885f8b143a105caaa08ca9c9d 39b8fe6364621725ff90431a34af0f87976d95c00cbfd1d0f3711a3f1fa1a07b HTTP Headers `GET /npm/js-cookie@2/src/js.cookie.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 1078 access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=604800, s-maxage=43200 cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 2.2.1 x-jsd-version-type: version etag: W/"79f-7pVBzxqV0qiF+LFDoQXKqgjKnJ0" content-encoding: br accept-ranges: bytes date: Mon, 04 Dec 2023 18:06:03 GMT age: 36465 x-served-by: cache-fra-eddf8230099-FRA, cache-bma1663-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	daily-horoscope.us/img/background/bg_pattern.webp	3.89.228.143	200 OK	2.1 kB
URL GET HTTP/2 daily-horoscope.us/img/background/bg_pattern.webp IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x634, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 2.1 kB (2144 bytes) Hash 1f4f1a8d92acc2165ea788664c26b113 220a1b8dfbc197ebebdd10aa2089c9ba099e43db 7050e73c645991be63570d26384eb28fccb001a07c0fc590bdc0a1f7906c963c HTTP Headers GET /img/background/bg_pattern.webp HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/css/style.min.css?1701686076 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/webp content-length: 2144 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-860" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	served-by.pixfuture.com/www/delivery/ads.js	161.35.253.218	200 OK	3.0 kB
URL GET HTTP/1.1 served-by.pixfuture.com/www/delivery/ads.js IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (3041), with no line terminators Size 3.0 kB (3041 bytes) Hash cea14c36c9d1472881ad6c99786ff575 ed9c00f77b342c1666e3d8328e216b4aaf22255b c839a0b02171ddc076c247aa0193d3e4058287a213d338b39bc43eb651ecfd78 HTTP Headers `GET /www/delivery/ads.js HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK accept-ranges: bytes content-length: 3041 content-type: text/javascript; charset=utf-8 last-modified: Tue, 28 Nov 2023 22:23:44 GMT date: Mon, 04 Dec 2023 18:06:03 GMT`

	daily-horoscope.us/js/build/header-menu.min.js?1701686076	3.89.228.143	200 OK	14 kB
URL GET HTTP/2 daily-horoscope.us/js/build/header-menu.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 14 kB (14337 bytes) Hash 6a919fcddb8c1a49b5e6711a3130e5c0 7914e8c30260c25e0ad5d3df1e5eaaadab8fcd9c 1e0f3e6f490fcad0fd3ff02b93d92cb842bcd2719d30cae86b2e857b985e18a5 HTTP Headers GET /js/build/header-menu.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-3b6" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/header-popup.min.js?1701686076?v1	3.89.228.143	200 OK	30 kB
URL GET HTTP/2 daily-horoscope.us/js/build/header-popup.min.js?1701686076?v1 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 30 kB (29626 bytes) Hash 8978c3f661108ce84694579364626c4c 3e4bc9d11dee2ea24f87d87e41360a42acdd3a19 0deae92a420bdb712fd4897d5bae05efab96985d872565b185f23f3f2cb72221 HTTP Headers GET /js/build/header-popup.min.js?1701686076?v1 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-10d8" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	ioadserve.com/siteAds/io_6065e98ab4a5d/1260/300/250/daily-horoscope.us?190	34.197.163.17	200 OK	1.7 kB
URL GET HTTP/1.1 ioadserve.com/siteAds/io_6065e98ab4a5d/1260/300/250/daily-horoscope.us?190 IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type ASCII text Size 1.7 kB (1661 bytes) Hash 8c5a0adba5917f98ae4bfa0c00a10903 ca0e2405f14f1d74a9d7369057e539e17cee3794 0c8e5f674b597e605b84823a1edf22ce633000d56b53e21aa23952ce859703f6 HTTP Headers `GET /siteAds/io_6065e98ab4a5d/1260/300/250/daily-horoscope.us?190 HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:03 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 X-Powered-By: PHP/7.0.33 Content-Length: 1661 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: application/javascript`

	unpkg.com/imask	104.16.122.175	302 Found	82 kB
URL GET HTTP/2 unpkg.com/imask IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type data Size 82 kB (81754 bytes) Hash 3f130641a5fe4b4d3218f5d46726bbe3 bdf5f7fb2a10b3cb2340aafab0b4528db6881be7 bab381570d7e709e066f924c19e0af6a15117abbf2347ba514e07ecdb30f07a1 HTTP Headers `GET /imask HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Mon, 04 Dec 2023 18:06:02 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /imask@7.1.3 vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01HGTZY5EKFM0WE4XN3WGYJAF4-arn cf-cache-status: HIT age: 204 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 8305fb22a9b30b45-OSL X-Firefox-Spdy: h2`

	daily-horoscope.us/astrostore/img/astrostore/tarot-relationship-insights.webp	3.89.228.143	200 OK	6.8 kB
URL GET HTTP/2 daily-horoscope.us/astrostore/img/astrostore/tarot-relationship-insights.webp IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 6.8 kB (6800 bytes) Hash a6a7b79a9b9d5649f557e5b7fbab2e18 f1599fbe7fdb0719e584c0ed18a149180f90982d 8323bbf6151d15452d8dfc325f965373b1f34762a067fea6356578f43fa7d471 HTTP Headers GET /astrostore/img/astrostore/tarot-relationship-insights.webp HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/webp content-length: 6800 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-1a90" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data Size 48 kB (48432 bytes) Hash e2d74c5e631bc53a7240bbfe4be99c8f eb513857bb01cc4f7249067fc7e969bef415fc90 9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5 HTTP Headers GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48432 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:00:58 GMT expires: Fri, 29 Nov 2024 05:00:58 GMT cache-control: public, max-age=31536000 age: 392705 last-modified: Thu, 14 Sep 2023 00:40:31 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	daily-horoscope.us/astrostore/img/astrostore/your-present-and-your-future.webp	3.89.228.143	200 OK	5.2 kB
URL GET HTTP/2 daily-horoscope.us/astrostore/img/astrostore/your-present-and-your-future.webp IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 5.2 kB (5186 bytes) Hash 9ff0aad29419e237661975bae0206354 ba2ad2d31290ebc4643b8b738118b031ea4930f3 36f63624fc0e7a028d1c5554856e873a03815756912e1c5ef961cb64fd4a090f HTTP Headers GET /astrostore/img/astrostore/your-present-and-your-future.webp HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/webp content-length: 5186 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-1442" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/footer-install.min.js?1701686076	3.89.228.143	200 OK	7.5 kB
URL GET HTTP/2 daily-horoscope.us/js/build/footer-install.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 7.5 kB (7536 bytes) Hash 81fd1aa895d361eae789b558c55640ea 06520005afcaee3212b612ea9f2e61218407cc44 1cbbd5a54ab1af017bdb922815a0868451104e1cb0c7df25b06412fd6e222d6a HTTP Headers GET /js/build/footer-install.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-162" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/more-readings-events.min.js?1701686076	3.89.228.143	200 OK	49 kB
URL GET HTTP/2 daily-horoscope.us/js/build/more-readings-events.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 49 kB (48924 bytes) Hash cc5758242eb283f58990dc122ac655ed 08d258deee3a11fcf2e4010da32b21d59f25942e ca4b2b5f0c21c86336bb0e642d7f630648d11e5e36cc4f64750a41d5f1b797ee HTTP Headers GET /js/build/more-readings-events.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-403" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data Size 48 kB (48432 bytes) Hash e2d74c5e631bc53a7240bbfe4be99c8f eb513857bb01cc4f7249067fc7e969bef415fc90 9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5 HTTP Headers GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48432 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:00:58 GMT expires: Fri, 29 Nov 2024 05:00:58 GMT cache-control: public, max-age=31536000 age: 392705 last-modified: Thu, 14 Sep 2023 00:40:31 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	daily-horoscope.us/astrostore/img/astrostore/runic-loving-cup.webp	3.89.228.143	200 OK	14 kB
URL GET HTTP/2 daily-horoscope.us/astrostore/img/astrostore/runic-loving-cup.webp IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 14 kB (14014 bytes) Hash 7924162a38b504b32af1bbf71aaddb49 6516d5759c4991363fe0f2c82b98c423e2d42678 d479b0d8862232b827b7b2c2adbf6d03af54291dbbf0e20dfc5aae331b070470 HTTP Headers GET /astrostore/img/astrostore/runic-loving-cup.webp HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/webp content-length: 14014 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-36be" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	served-by.pixfuture.com/www/delivery/ads.js	161.35.253.218	200 OK	3.0 kB
URL GET HTTP/1.1 served-by.pixfuture.com/www/delivery/ads.js IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (3041), with no line terminators Size 3.0 kB (3041 bytes) Hash cea14c36c9d1472881ad6c99786ff575 ed9c00f77b342c1666e3d8328e216b4aaf22255b c839a0b02171ddc076c247aa0193d3e4058287a213d338b39bc43eb651ecfd78 HTTP Headers `GET /www/delivery/ads.js HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK accept-ranges: bytes content-length: 3041 content-type: text/javascript; charset=utf-8 last-modified: Tue, 28 Nov 2023 22:23:44 GMT date: Mon, 04 Dec 2023 18:06:03 GMT`

	daily-horoscope.us/js/build/banner-mchat.min.js?1701686076	3.89.228.143	200 OK	392 B
URL GET HTTP/2 daily-horoscope.us/js/build/banner-mchat.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 392 B (392 bytes) Hash 175009e84f112541779e563c3523aefb fbf3dd087317e5a395de94cdee1b53af41699257 c86d540ec4c27c194847a1bf9e9817b4fff68f77e077beb6a9cb6b862168d19c HTTP Headers GET /js/build/banner-mchat.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-254" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	served-by.pixfuture.com/www/delivery/hb_v2.php?dat=14320x300x250x2025x_ADSLOT3&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713168970	161.35.253.218	200 OK	4.0 kB
URL POST HTTP/1.1 served-by.pixfuture.com/www/delivery/hb_v2.php?dat=14320x300x250x2025x_ADSLOT3&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713168970 IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (1541) Size 4.0 kB (3991 bytes) Hash ad4aca70d175f6208cbdbc9191e165c5 dff954c7ebc73284ffa246124ad258832d68f9a9 6e4241689e663c18ef191403a930e1b2456e167be1caaf87489dc19f69986bcc HTTP Headers POST /www/delivery/hb_v2.php?dat=14320x300x250x2025x_ADSLOT3&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713168970 HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Content-Length: 0 HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Pragma,Access-Control-Max-Age,Expires,Vary,Cache-Control,Access-Control-Allow-Origin access-control-allow-origin: https://daily-horoscope.us cache-control: no-cache, no-store, must-revalidate content-type: application/json expires: 0 pragma: no-cache date: Mon, 04 Dec 2023 18:06:03 GMT transfer-encoding: chunked

	served-by.pixfuture.com/www/delivery/hb_v2.php?dat=11395x300x250x2025x_ADSLOT1&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713168971	161.35.253.218	200 OK	4.0 kB
URL POST HTTP/1.1 served-by.pixfuture.com/www/delivery/hb_v2.php?dat=11395x300x250x2025x_ADSLOT1&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713168971 IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (1541) Size 4.0 kB (3994 bytes) Hash de6bf495a12800c6c4c9478bc0cbcf07 3c979eb18f70e0e157f9efdcafc0235172463441 39a391d099e424b4e4859dc8eca6256c8ac69680df2ac78970d59c3f418d8ea9 HTTP Headers POST /www/delivery/hb_v2.php?dat=11395x300x250x2025x_ADSLOT1&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713168971 HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Content-Length: 0 HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Pragma,Access-Control-Max-Age,Expires,Vary,Cache-Control,Access-Control-Allow-Origin access-control-allow-origin: https://daily-horoscope.us cache-control: no-cache, no-store, must-revalidate content-type: application/json expires: 0 pragma: no-cache date: Mon, 04 Dec 2023 18:06:03 GMT transfer-encoding: chunked

	served-by.pixfuture.com/www/delivery/hb_v2.php?dat=14300x300x250x2025x_ADSLOT2&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713169197	161.35.253.218	200 OK	4.0 kB
URL POST HTTP/1.1 served-by.pixfuture.com/www/delivery/hb_v2.php?dat=14300x300x250x2025x_ADSLOT2&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713169197 IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (1541) Size 4.0 kB (3994 bytes) Hash 19464265f66fc88459e0b455c4fb6c39 28aa9e282287b2d7e5bba8bfe688ca75a09d30a7 538f4bbe83ef3cde3e49c8c1d12003437272daf8e91e51f3a201f7084e50882c HTTP Headers POST /www/delivery/hb_v2.php?dat=14300x300x250x2025x_ADSLOT2&keywords=text,messages,unsubscribe,dailyhoroscopeus&refUrl=https://daily-horoscope.us/s?s=zUmxt&refresh=false&innerWidth=1280&cb=1701713169197 HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Content-Length: 0 HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Pragma,Access-Control-Max-Age,Expires,Vary,Cache-Control,Access-Control-Allow-Origin access-control-allow-origin: https://daily-horoscope.us cache-control: no-cache, no-store, must-revalidate content-type: application/json expires: 0 pragma: no-cache date: Mon, 04 Dec 2023 18:06:03 GMT transfer-encoding: chunked

	cdn.pixfuture.com/cdn-cgi/rum?	104.26.7.68	204 No Content	0 B
URL POST HTTP/2 cdn.pixfuture.com/cdn-cgi/rum? IP 104.26.7.68:443 ASN #13335 CLOUDFLARENET Requested by https://cdn.pixfuture.com/pixf_sync.html Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE4:41:E5:09:43:A1:11:6E:75:2D:45:1A:68:2F:2F:EB:DA:2E:D9:71 ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: cdn.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1299 Origin: https://cdn.pixfuture.com DNT: 1 Connection: keep-alive Referer: https://cdn.pixfuture.com/pixf_sync.html Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Mon, 04 Dec 2023 18:06:04 GMT access-control-allow-origin: https://cdn.pixfuture.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 8305fb2b2f08b4f4-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/random-item-banner.min.js?1701686076	3.89.228.143	200 OK	60 kB
URL GET HTTP/2 daily-horoscope.us/js/build/random-item-banner.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 60 kB (60092 bytes) Hash 7acbc0d7c42ee7e58a44974d529313c2 1149eefeee56b3b2728a37ce7e658999eb3e3071 564e67a82dac98ae3217c79c1dd5ca0900ff4bef0cadd818903e50909eb1878c HTTP Headers GET /js/build/random-item-banner.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-127" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	www.gstatic.com/_/freebird/_/ss/k=freebird.v.cmImS56Q7jQ.L.F4.O/am=EAY/d=1/rs=AMjVe6igOZm_vT8YRoAfFhLgrshdU54L3w	142.250.74.35	200 OK	111 kB
URL GET HTTP/2 www.gstatic.com/_/freebird/_/ss/k=freebird.v.cmImS56Q7jQ.L.F4.O/am=EAY/d=1/rs=AMjVe6igOZm_vT8YRoAfFhLgrshdU54L3w IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 111 kB (110910 bytes) Hash 35afbae8dafd5f57b49270d7502036b7 fc02f9fdaa75d0d234f82c3972b7bf3a8f681598 25d914997b24b5bd742adb609135a4abce4ca341a539c9c00f51aa10fc0af3e2 HTTP Headers `GET /_/freebird/_/ss/k=freebird.v.cmImS56Q7jQ.L.F4.O/am=EAY/d=1/rs=AMjVe6igOZm_vT8YRoAfFhLgrshdU54L3w HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-forms cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-forms" report-to: {"group":"apps-forms","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-forms"}]} content-length: 110910 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 07:44:49 GMT expires: Fri, 29 Nov 2024 07:44:49 GMT cache-control: public, max-age=31536000 last-modified: Wed, 22 Nov 2023 15:29:21 GMT content-type: text/css; charset=UTF-8 vary: Accept-Encoding, Origin age: 382875 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=1/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=viewer_base	142.250.74.35	200 OK	138 kB
URL GET HTTP/2 www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=1/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=viewer_base IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (1546) Size 138 kB (138347 bytes) Hash c48ebb1720f3b81678403766424787e5 6e88336a86b77e765b177f8ebb4740c115cbb12b bd7c1f69eb115b399312e1ff64f110d38c2c86eca01ac59a1b789d664e8ae9f0 HTTP Headers `GET /_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=1/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=viewer_base HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-forms cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-forms" report-to: {"group":"apps-forms","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-forms"}]} content-length: 138347 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:52:29 GMT expires: Fri, 29 Nov 2024 05:52:29 GMT cache-control: public, max-age=31536000 last-modified: Wed, 29 Nov 2023 17:28:06 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding, Origin age: 389615 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	event.trk-keingent.com/register/event_log/poe72226g0	172.64.135.38	200 OK	0 B
URL POST HTTP/2 event.trk-keingent.com/register/event_log/poe72226g0 IP 172.64.135.38:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subjecttrk-keingent.com FingerprintB6:7A:88:8A:E1:CC:8A:5B:E7:4B:17:9D:1C:60:45:9B:78:E0:68:CB ValidityFri, 01 Dec 2023 01:25:51 GMT - Thu, 29 Feb 2024 01:25:50 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /register/event_log/poe72226g0 HTTP/1.1 Host: event.trk-keingent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://daily-horoscope.us/ Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:04 GMT content-length: 0 expires: 0 cache-control: no-cache, no-store, max-age=0, must-revalidate access-control-allow-headers: content-type x-xss-protection: 1; mode=block pragma: no-cache referrer-policy: strict-origin-when-cross-origin content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data: access-control-allow-methods: POST x-frame-options: SAMEORIGIN access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params access-control-allow-origin: * vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers x-content-type-options: nosniff permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=() access-control-max-age: 1800 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PFWIWW0SNXdFud%2BYeFt0OiLmTcYyknR%2BEqd08HKb2M9FgG56VPBthtq0YJ4rRLQjo2v6nozXXdQhj0PYhe%2FxMLEfwa1%2Bifrk0k0aOubnSJ%2BE7%2Fe60CKCsqqyLMxUXj4NechFHSM4JuAy"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8305fb2bbd06654d-LHR alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	daily-horoscope.us/css/banners.min.css?1701686076	3.89.228.143	200 OK	52 kB
URL GET HTTP/2 daily-horoscope.us/css/banners.min.css?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type gzip compressed data, from Unix\012- data Size 52 kB (52277 bytes) Hash 830837a3f9170960b374e6fdb7ab63c5 bbfb746888011a2bd1b71f402063cb2ecfef55e4 5815189db9c9518bdfe236a0972cbcd52e660ef0606b240f54f3a8ca17d1e328 HTTP Headers GET /css/banners.min.css?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: text/css last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-2311" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	event.trk-keingent.com/register/event_log/poe72226g0	172.64.135.38	200 OK	0 B
URL POST HTTP/2 event.trk-keingent.com/register/event_log/poe72226g0 IP 172.64.135.38:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subjecttrk-keingent.com FingerprintB6:7A:88:8A:E1:CC:8A:5B:E7:4B:17:9D:1C:60:45:9B:78:E0:68:CB ValidityFri, 01 Dec 2023 01:25:51 GMT - Thu, 29 Feb 2024 01:25:50 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /register/event_log/poe72226g0 HTTP/1.1 Host: event.trk-keingent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ Content-type: application/json Content-Length: 234 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:04 GMT content-length: 0 expires: 0 cache-control: no-cache, no-store, max-age=0, must-revalidate x-xss-protection: 1; mode=block pragma: no-cache referrer-policy: strict-origin-when-cross-origin x-pushplatformapp-params: content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data: x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted x-frame-options: SAMEORIGIN access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params access-control-allow-origin: * vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers x-content-type-options: nosniff permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=() cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BBTeJ%2F2LsyJgAQMxdObVk4Y%2FT%2F0OcN6kwMTsxOUSrgbkxVLABAtj2qjKPrMaVasw3e0Uh0ZdSFPiPgadRQGeUXokeXrWqT1fUHTLjI3Ig0QrWAdRpgHC5lrCmcg%2BNrKcgRZ71jB0MndR"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8305fb2c9ec7654d-LHR alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docs.google.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:57:34 GMT expires: Fri, 29 Nov 2024 04:57:34 GMT cache-control: public, max-age=31536000 age: 392910 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2	216.58.207.227	200 OK	34 kB
URL GET HTTP/2 fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 34108, version 1.0\012- data Size 34 kB (34108 bytes) Hash c15d33a9508923be839d315a999ab9c7 d17f6e786a1464e13d4ec8e842f4eb121b103842 65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98 HTTP Headers GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docs.google.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 34108 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:22:06 GMT expires: Fri, 29 Nov 2024 23:22:06 GMT cache-control: public, max-age=31536000 age: 326638 last-modified: Tue, 23 May 2023 16:36:00 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2	216.58.207.227	200 OK	35 kB
URL GET HTTP/2 fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 35060, version 1.0\012- data Size 35 kB (35060 bytes) Hash 0360dbc6e8c09dce9183a1fd78f3be2e 6cd4b65a94707ae941d78b12f082c968cb05ec92 2db6bc36808d43fa89029c652636e206fa3e889b35ecf71814ab85f8ba944af3 HTTP Headers GET /s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docs.google.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 35060 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:51 GMT expires: Fri, 29 Nov 2024 23:21:51 GMT cache-control: public, max-age=31536000 age: 326653 last-modified: Tue, 19 Apr 2022 17:57:49 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	daily-horoscope.us/user/get-pushes	3.89.228.143	403 Forbidden	191 kB
URL POST HTTP/2 daily-horoscope.us/user/get-pushes IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type ASCII text, with very long lines (563) Size 191 kB (190714 bytes) Hash 674521af73a4e6dbf6c392daa64f0c11 c480501e2218728d9d2b57f694d3425f9b6aea95 027456897cdbb37e4fe0af1c9b9dadb16bcf636c1c75297fd96b853dd10bae31 HTTP Headers POST /user/get-pushes HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 0 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt%22%2C%22svsds%22%3A1%7D%2C%22C1547327%22%3A%7B%22page%22%3A1%7D%7D; _ga_Q5R676DMGQ=GS1.1.1701713169.1.0.1701713169.60.0.0; _ga=GA1.1.604891606.1701713169; _gcl_au=1.1.1094123491.1701713169 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 403 Forbidden server: nginx content-type: text/html; charset=UTF-8 cache-control: max-age=0, must-revalidate, private date: Mon, 04 Dec 2023 18:06:04 GMT content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/favicon/favicon-194x194.png	3.89.228.143	200 OK	23 kB
URL GET HTTP/2 daily-horoscope.us/favicon/favicon-194x194.png IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type PNG image data, 194 x 194, 8-bit/color RGBA, non-interlaced\012- data Size 23 kB (23121 bytes) Hash 6d3185695d1b89f3309541af284d10f1 0fcbf052a915a8e0087a8015b4ad5c706e8bbd1a 96aad07322fce8dd5a10c792e8f3141ee519cd1bb235f9528223ea9e40b311a7 HTTP Headers GET /favicon/favicon-194x194.png HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt%22%2C%22svsds%22%3A1%7D%2C%22C1547327%22%3A%7B%22page%22%3A1%7D%7D; _ga_Q5R676DMGQ=GS1.1.1701713169.1.0.1701713169.60.0.0; _ga=GA1.1.604891606.1701713169; _gcl_au=1.1.1094123491.1701713169 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:04 GMT content-type: image/png content-length: 23121 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-5a51" expires: Tue, 03 Dec 2024 18:06:04 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q5R676DMGQ&cid=604891606.1701713169&gtm=45je3bt0v9126671330&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1364851132	142.250.74.163	200 OK	42 B
URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q5R676DMGQ&cid=604891606.1701713169&gtm=45je3bt0v9126671330&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1364851132 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google.no Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32 ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q5R676DMGQ&cid=604891606.1701713169&gtm=45je3bt0v9126671330&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1364851132 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Mon, 04 Dec 2023 18:06:04 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	daily-horoscope.us/js/build/navigation.min.js?1701686076	3.89.228.143	200 OK	20 kB
URL GET HTTP/2 daily-horoscope.us/js/build/navigation.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Size 20 kB (20154 bytes) Hash 305f34f1a62b3563731e9f5674ffc789 d15637e33bbb459988fdc827a3d8779b5de80abf cd2b10b89dd84bb2515a91f710ebd2580f335836332fbb91c04b0966609b3a3e HTTP Headers GET /js/build/navigation.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-72" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/favicon/favicon-16x16.png	3.89.228.143	200 OK	1.2 kB
URL GET HTTP/2 daily-horoscope.us/favicon/favicon-16x16.png IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Size 1.2 kB (1221 bytes) Hash a3b90f4e3c4ce6adcfe638ae19366056 be5a19b51422ad3c9b996e6722464b056f33bd16 1273548a0ec784fa0c712c89e4751c4809cd681633321a12c0b2e6db627659ca HTTP Headers GET /favicon/favicon-16x16.png HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt%22%2C%22svsds%22%3A1%7D%2C%22C1547327%22%3A%7B%22page%22%3A1%7D%7D; _ga_Q5R676DMGQ=GS1.1.1701713169.1.0.1701713169.60.0.0; _ga=GA1.1.604891606.1701713169; _gcl_au=1.1.1094123491.1701713169 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:04 GMT content-type: image/png content-length: 1221 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-4c5" expires: Tue, 03 Dec 2024 18:06:04 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	www.gstatic.com/images/branding/googlelogo/svg/googlelogo_dark_clr_74x24px.svg	142.250.74.35	200 OK	689 B
URL GET HTTP/3 www.gstatic.com/images/branding/googlelogo/svg/googlelogo_dark_clr_74x24px.svg IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1510), with no line terminators Size 689 B (689 bytes) Hash ceca603bd198568dab00e6dfc3120706 871c637521103dce8f6df9aac0d1b62900d511b8 f4af84efe90891185d9b29a841181ca9d26d7560864ea47b6cd709d3b964aee3 HTTP Headers `GET /images/branding/googlelogo/svg/googlelogo_dark_clr_74x24px.svg HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 689 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 11:35:31 GMT expires: Fri, 29 Nov 2024 11:35:31 GMT cache-control: public, max-age=31536000 last-modified: Tue, 22 Oct 2019 18:15:00 GMT content-type: image/svg+xml vary: Accept-Encoding, Origin age: 369033 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	ssl.gstatic.com/docs/forms/qp_sprite190.svg	142.250.74.35	200 OK	16 kB
URL GET HTTP/3 ssl.gstatic.com/docs/forms/qp_sprite190.svg IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (2276) Size 16 kB (16114 bytes) Hash 2f51b4ddac953a6bbf86a2046fa1fbf5 fe3f80bf9609afb159f0044436db6c9cc26482aa f9bdf07dd3e4b16ee2d791d1be994d36a9bb1f473bcbfd56eef1c6ba68ea6fb2 HTTP Headers `GET /docs/forms/qp_sprite190.svg HTTP/1.1 Host: ssl.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gstatic.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: br content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/docs cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="docs" report-to: {"group":"docs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/docs"}]} content-length: 16114 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 12:50:32 GMT expires: Fri, 29 Nov 2024 12:50:32 GMT cache-control: public, max-age=31536000 last-modified: Sun, 29 Oct 2023 19:48:00 GMT content-type: image/svg+xml vary: Accept-Encoding, Origin age: 364532 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=0/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=sy1h,vGOnYd,sy8,syh,IZT63,syu,vfuNJf,MpJwZc,n73qwf,sy13,ws9Tlc,syb,syj,syi,sy15,sy1c,sy1a,sy1b,siKnQd,T8YtQb,sym,syp,syq,syr,sy1k,syw,sy18,sy1r,sy1u,V3dDOb,sy2i,sy2j,sy4l,sy4h,sy4j,sy4g,sy4k,OShpD,sy4i,sy4o,sy4p,sy4n,sy4m,sy4q,J8mJTc,gkf10d,j2YlP,syz,sy17,sy9,syc,syg,syo,sys,cEt90b,KUM7Z,yxTchf,sy14,sy16,xQtZb,qddgKe,wR5FRb,pXdRYb,iFQyKf,syk,sy7,syl,YNjGDd,syn,syt,PrPYRd,syv,syx,hc6Ubd,sy1e,SpsfSb,dIoSBb,sy1f,sy1g,zbML3c,zr1jrb,EmZ2Bf,sy19,Uas9Hd,sy69,WO9ee,sy1j,sy1n,sy1o,sy1d,sy1p,sy1s,sy1t,A4UTCb,sy6u,owcnme,UUJqVe,CP1oW,sy22,sy21,sy1w,sy20,sy1y,sy1z,sy23,pxq3x,sy1m,O6y8ed,sy4y,sy50,sy5o,Sk9apb,sy4u,sy7n,sy7p,sy5w,sy7o,sy7q,sy7r,sy7s,Xhpexc,Q91hve,sy4s,sy5t,sy5u,sy5v,sy5x,sy5s,mRfQQ,sy7u,sy7t,CFa0o,szrus,sy1l,sy1x,VXdfxd,syd,sy11,sy2m,sy5,sy12,sy2l,s39S4,sy25,ENNBBf,L1AAkb,QvB8bb,bCfhJc,sy4x,sy4v,u9ZRK,pItcJd,yZuGp,aW3pY,mvo1oc,sy4,sy3g,sy3h,sy1v,sy3i,sy4e,I6YDgd,sy29,sy28,sy2a,sy2b,sy2g,sy1i,sy24,sy26,sy2c,sy2d,sy2e,sy2f,fgj8Rb,sy27,N5Lqpc,IvDHfc,sy53,p2tbsc,sy54,sy68,LxALBf,sy2o,sy6v,sy2w,sy2y,sy6y,sy34,sy31,sy3o,sy6w,qNG0Fc,sy6z,sy71,sy2p,i5dxUd,sy39,sy3b,ywOR5c,sy73,sy77,sy3s,EcW08c,wg1P6b,sy70,sy72,sy74,sy75,sy76,t8tqF,SM1lmd,sy7b,sy6a,sy6d,sy79,sy7a,sy7c,vofJp,Vnjw0c,QwQO1b,sy52,sy67,sy66,sy4z,sy65,QMSdQb,X16vkb,WdhPgc,JCrucd,sy7l,sy7k,sy7m,Ibqgte,ok0nye,DhgO0d,oZECf,sy2k,akEJMc,zG2TEe,fvFQfe,CNqcN,sbHRWb,sy7v,TOfxwf,sy2n,sy3a,sy80,sy5z,sy62,sy7x,sy81,sy82,sy85,sy89,sy8f,sy8g,A2m8uc,jjSbr,sy7j,sy8b,sy8d,sy8a,sy5n,riEgMd,sy8e,lSvzH,sy7w,yUS4Lc,v4y9Mc,KOZzeb,sy5a,sy5c,sy5d,sy5b,xKXrob,sy57,sy5l,sy61,sy63,sy64,DPwS9e,lWjoT,sW52Ae,sy7y,sy84,sy86,sy83,RGrRJf,OkF2xb,syf,sy58,sy5y,xmYr4,ID6c7,sy8h,rmdjlf	142.250.74.35	200 OK	194 kB
URL GET HTTP/3 www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=0/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=sy1h,vGOnYd,sy8,syh,IZT63,syu,vfuNJf,MpJwZc,n73qwf,sy13,ws9Tlc,syb,syj,syi,sy15,sy1c,sy1a,sy1b,siKnQd,T8YtQb,sym,syp,syq,syr,sy1k,syw,sy18,sy1r,sy1u,V3dDOb,sy2i,sy2j,sy4l,sy4h,sy4j,sy4g,sy4k,OShpD,sy4i,sy4o,sy4p,sy4n,sy4m,sy4q,J8mJTc,gkf10d,j2YlP,syz,sy17,sy9,syc,syg,syo,sys,cEt90b,KUM7Z,yxTchf,sy14,sy16,xQtZb,qddgKe,wR5FRb,pXdRYb,iFQyKf,syk,sy7,syl,YNjGDd,syn,syt,PrPYRd,syv,syx,hc6Ubd,sy1e,SpsfSb,dIoSBb,sy1f,sy1g,zbML3c,zr1jrb,EmZ2Bf,sy19,Uas9Hd,sy69,WO9ee,sy1j,sy1n,sy1o,sy1d,sy1p,sy1s,sy1t,A4UTCb,sy6u,owcnme,UUJqVe,CP1oW,sy22,sy21,sy1w,sy20,sy1y,sy1z,sy23,pxq3x,sy1m,O6y8ed,sy4y,sy50,sy5o,Sk9apb,sy4u,sy7n,sy7p,sy5w,sy7o,sy7q,sy7r,sy7s,Xhpexc,Q91hve,sy4s,sy5t,sy5u,sy5v,sy5x,sy5s,mRfQQ,sy7u,sy7t,CFa0o,szrus,sy1l,sy1x,VXdfxd,syd,sy11,sy2m,sy5,sy12,sy2l,s39S4,sy25,ENNBBf,L1AAkb,QvB8bb,bCfhJc,sy4x,sy4v,u9ZRK,pItcJd,yZuGp,aW3pY,mvo1oc,sy4,sy3g,sy3h,sy1v,sy3i,sy4e,I6YDgd,sy29,sy28,sy2a,sy2b,sy2g,sy1i,sy24,sy26,sy2c,sy2d,sy2e,sy2f,fgj8Rb,sy27,N5Lqpc,IvDHfc,sy53,p2tbsc,sy54,sy68,LxALBf,sy2o,sy6v,sy2w,sy2y,sy6y,sy34,sy31,sy3o,sy6w,qNG0Fc,sy6z,sy71,sy2p,i5dxUd,sy39,sy3b,ywOR5c,sy73,sy77,sy3s,EcW08c,wg1P6b,sy70,sy72,sy74,sy75,sy76,t8tqF,SM1lmd,sy7b,sy6a,sy6d,sy79,sy7a,sy7c,vofJp,Vnjw0c,QwQO1b,sy52,sy67,sy66,sy4z,sy65,QMSdQb,X16vkb,WdhPgc,JCrucd,sy7l,sy7k,sy7m,Ibqgte,ok0nye,DhgO0d,oZECf,sy2k,akEJMc,zG2TEe,fvFQfe,CNqcN,sbHRWb,sy7v,TOfxwf,sy2n,sy3a,sy80,sy5z,sy62,sy7x,sy81,sy82,sy85,sy89,sy8f,sy8g,A2m8uc,jjSbr,sy7j,sy8b,sy8d,sy8a,sy5n,riEgMd,sy8e,lSvzH,sy7w,yUS4Lc,v4y9Mc,KOZzeb,sy5a,sy5c,sy5d,sy5b,xKXrob,sy57,sy5l,sy61,sy63,sy64,DPwS9e,lWjoT,sW52Ae,sy7y,sy84,sy86,sy83,RGrRJf,OkF2xb,syf,sy58,sy5y,xmYr4,ID6c7,sy8h,rmdjlf IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (1612) Size 194 kB (193605 bytes) Hash e31985b746b478608e59b80533443311 3770d096b3814b667a6023691ab3e007ceec318c 52e48ae2c277c0de557df6d0c91e26b1407336a8043c296b132d0c1c963c3d2b HTTP Headers GET /_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=0/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=sy1h,vGOnYd,sy8,syh,IZT63,syu,vfuNJf,MpJwZc,n73qwf,sy13,ws9Tlc,syb,syj,syi,sy15,sy1c,sy1a,sy1b,siKnQd,T8YtQb,sym,syp,syq,syr,sy1k,syw,sy18,sy1r,sy1u,V3dDOb,sy2i,sy2j,sy4l,sy4h,sy4j,sy4g,sy4k,OShpD,sy4i,sy4o,sy4p,sy4n,sy4m,sy4q,J8mJTc,gkf10d,j2YlP,syz,sy17,sy9,syc,syg,syo,sys,cEt90b,KUM7Z,yxTchf,sy14,sy16,xQtZb,qddgKe,wR5FRb,pXdRYb,iFQyKf,syk,sy7,syl,YNjGDd,syn,syt,PrPYRd,syv,syx,hc6Ubd,sy1e,SpsfSb,dIoSBb,sy1f,sy1g,zbML3c,zr1jrb,EmZ2Bf,sy19,Uas9Hd,sy69,WO9ee,sy1j,sy1n,sy1o,sy1d,sy1p,sy1s,sy1t,A4UTCb,sy6u,owcnme,UUJqVe,CP1oW,sy22,sy21,sy1w,sy20,sy1y,sy1z,sy23,pxq3x,sy1m,O6y8ed,sy4y,sy50,sy5o,Sk9apb,sy4u,sy7n,sy7p,sy5w,sy7o,sy7q,sy7r,sy7s,Xhpexc,Q91hve,sy4s,sy5t,sy5u,sy5v,sy5x,sy5s,mRfQQ,sy7u,sy7t,CFa0o,szrus,sy1l,sy1x,VXdfxd,syd,sy11,sy2m,sy5,sy12,sy2l,s39S4,sy25,ENNBBf,L1AAkb,QvB8bb,bCfhJc,sy4x,sy4v,u9ZRK,pItcJd,yZuGp,aW3pY,mvo1oc,sy4,sy3g,sy3h,sy1v,sy3i,sy4e,I6YDgd,sy29,sy28,sy2a,sy2b,sy2g,sy1i,sy24,sy26,sy2c,sy2d,sy2e,sy2f,fgj8Rb,sy27,N5Lqpc,IvDHfc,sy53,p2tbsc,sy54,sy68,LxALBf,sy2o,sy6v,sy2w,sy2y,sy6y,sy34,sy31,sy3o,sy6w,qNG0Fc,sy6z,sy71,sy2p,i5dxUd,sy39,sy3b,ywOR5c,sy73,sy77,sy3s,EcW08c,wg1P6b,sy70,sy72,sy74,sy75,sy76,t8tqF,SM1lmd,sy7b,sy6a,sy6d,sy79,sy7a,sy7c,vofJp,Vnjw0c,QwQO1b,sy52,sy67,sy66,sy4z,sy65,QMSdQb,X16vkb,WdhPgc,JCrucd,sy7l,sy7k,sy7m,Ibqgte,ok0nye,DhgO0d,oZECf,sy2k,akEJMc,zG2TEe,fvFQfe,CNqcN,sbHRWb,sy7v,TOfxwf,sy2n,sy3a,sy80,sy5z,sy62,sy7x,sy81,sy82,sy85,sy89,sy8f,sy8g,A2m8uc,jjSbr,sy7j,sy8b,sy8d,sy8a,sy5n,riEgMd,sy8e,lSvzH,sy7w,yUS4Lc,v4y9Mc,KOZzeb,sy5a,sy5c,sy5d,sy5b,xKXrob,sy57,sy5l,sy61,sy63,sy64,DPwS9e,lWjoT,sW52Ae,sy7y,sy84,sy86,sy83,RGrRJf,OkF2xb,syf,sy58,sy5y,xmYr4,ID6c7,sy8h,rmdjlf HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: https://docs.google.com content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-forms cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-forms" report-to: {"group":"apps-forms","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-forms"}]} content-length: 193605 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 03 Dec 2023 20:13:51 GMT expires: Mon, 02 Dec 2024 20:13:51 GMT cache-control: public, max-age=31536000 last-modified: Wed, 29 Nov 2023 17:28:06 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding, Origin age: 78733 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fundingchoicesmessages.google.com/i/pub-9067164180551135?ers=1	216.58.211.14	200 OK	59 kB
URL GET HTTP/2 fundingchoicesmessages.google.com/i/pub-9067164180551135?ers=1 IP 216.58.211.14:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type ASCII text, with very long lines (3561) Size 59 kB (59218 bytes) Hash 8018bde7ec37086dd005edde04675313 03df72b164957a807154a69211678a7e23bc89d8 4288a4bb767b0fa2e5b590db7841d4122dd877911aa3cfa5096c69bf52e38ae9 HTTP Headers `GET /i/pub-9067164180551135?ers=1 HTTP/1.1 Host: fundingchoicesmessages.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site timing-allow-origin: * cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 04 Dec 2023 18:06:04 GMT content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport, script-src 'nonce-_kwYQl7O_fRj3RWMVIx3ig' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorServingWebSwitchboardHttp/cspreport/allowlist accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version cross-origin-resource-policy: cross-origin permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version=* cross-origin-opener-policy: same-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	bat.bing.com/action/0?ti=73004260&Ver=2&mid=b0436c0b-87f9-4c61-8b6c-401519a978cd&sid=cdc7f94092cf11eeb4502991680c7e46&vid=cdc806d092cf11ee8ea7e54eaa75ad64&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&kw=daily%20horoscope,my%20daily%20horoscope,horoscope%20for%20the%20day,%20horoscopes,%20horoscope,%20daily%20horoscope,%20free%20horoscopes,%20astrology,%20zodiac,%20free,%20daily,%20zodiac%20signs,%20psychic,%20chinese,%20zodiac%20101,%20sun%20sign%20compatibility&p=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&r=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&lt=1528&evt=pageLoad&sv=1&rn=241689	204.79.197.200	204 No Content	0 B
URL GET HTTP/2 bat.bing.com/action/0?ti=73004260&Ver=2&mid=b0436c0b-87f9-4c61-8b6c-401519a978cd&sid=cdc7f94092cf11eeb4502991680c7e46&vid=cdc806d092cf11ee8ea7e54eaa75ad64&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&kw=daily%20horoscope,my%20daily%20horoscope,horoscope%20for%20the%20day,%20horoscopes,%20horoscope,%20daily%20horoscope,%20free%20horoscopes,%20astrology,%20zodiac,%20free,%20daily,%20zodiac%20signs,%20psychic,%20chinese,%20zodiac%20101,%20sun%20sign%20compatibility&p=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&r=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&lt=1528&evt=pageLoad&sv=1&rn=241689 IP 204.79.197.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/0?ti=73004260&Ver=2&mid=b0436c0b-87f9-4c61-8b6c-401519a978cd&sid=cdc7f94092cf11eeb4502991680c7e46&vid=cdc806d092cf11ee8ea7e54eaa75ad64&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&kw=daily%20horoscope,my%20daily%20horoscope,horoscope%20for%20the%20day,%20horoscopes,%20horoscope,%20daily%20horoscope,%20free%20horoscopes,%20astrology,%20zodiac,%20free,%20daily,%20zodiac%20signs,%20psychic,%20chinese,%20zodiac%20101,%20sun%20sign%20compatibility&p=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&r=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&lt=1528&evt=pageLoad&sv=1&rn=241689 HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 204 No Content cache-control: no-cache, must-revalidate pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT set-cookie: MUID=181D1F84F5E46F3331170C59F4B36EFC; domain=.bing.com; expires=Sat, 28-Dec-2024 18:06:04 GMT; path=/; SameSite=None; Secure; Priority=High; strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 8B34F237B1534309B5266AFE024B4162 Ref B: OSL30EDGE0310 Ref C: 2023-12-04T18:06:04Z date: Mon, 04 Dec 2023 18:06:04 GMT X-Firefox-Spdy: h2

	www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=0/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=sy7z,sWGJ4b,sy5f,sy5g,sy6f,sy6g,sy6h,EGNJFf,iSvg6e,sy6i,uY3Nvd	142.250.74.35	200 OK	8.0 kB
URL GET HTTP/3 www.gstatic.com/_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=0/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=sy7z,sWGJ4b,sy5f,sy5g,sy6f,sy6g,sy6h,EGNJFf,iSvg6e,sy6i,uY3Nvd IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (655) Size 8.0 kB (7977 bytes) Hash 1d4a6b79507b246d1155fdb9b4858d8e b465fe8e3437c2c116027224c97897a30e00fc83 abf7e61e9c6882a777208559237e50ea3355d5a439d71da3fb508ea86684bbcf HTTP Headers GET /_/freebird/_/js/k=freebird.v.no.PVJjj1RhHyw.O/am=EAY/d=0/rs=AMjVe6gs40qhdQ8lrVNv8BbZnvcy9cMrgw/m=sy7z,sWGJ4b,sy5f,sy5g,sy6f,sy6g,sy6h,EGNJFf,iSvg6e,sy6i,uY3Nvd HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: https://docs.google.com content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-forms cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-forms" report-to: {"group":"apps-forms","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-forms"}]} content-length: 7977 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 08:50:57 GMT expires: Fri, 29 Nov 2024 08:50:57 GMT cache-control: public, max-age=31536000 last-modified: Wed, 29 Nov 2023 17:28:06 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding, Origin age: 378907 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	play.google.com/log?format=json&hasfast=true&authuser=0	142.250.74.14	200 OK	0 B
URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0 IP 142.250.74.14:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 Host: play.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: x-goog-authuser Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK access-control-allow-origin: https://docs.google.com access-control-allow-methods: GET, POST, OPTIONS access-control-max-age: 86400 access-control-allow-credentials: true access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser content-type: text/plain; charset=UTF-8 date: Mon, 04 Dec 2023 18:06:05 GMT server: Playlog content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+729; expires=Wed, 03-Dec-2025 18:06:05 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 expires: Mon, 04 Dec 2023 18:06:05 GMT cache-control: private X-Firefox-Spdy: h2

	play.google.com/log?format=json&hasfast=true&authuser=0	142.250.74.14	200 OK	131 B
URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0 IP 142.250.74.14:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type JSON data\012- , ASCII text, with no line terminators Size 131 B (131 bytes) Hash ca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358 HTTP Headers POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 Host: play.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ X-Goog-AuthUser: 0 Content-Type: application/x-www-form-urlencoded;charset=utf-8 Content-Length: 3149 Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK access-control-allow-origin: https://docs.google.com cross-origin-resource-policy: cross-origin access-control-allow-credentials: true access-control-allow-headers: X-Playlog-Web content-type: text/plain; charset=UTF-8 content-encoding: gzip date: Mon, 04 Dec 2023 18:06:05 GMT server: Playlog cache-control: private content-length: 131 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+111; expires=Wed, 03-Dec-2025 18:06:05 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 expires: Mon, 04 Dec 2023 18:06:05 GMT X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Archivo\|Arimo\|Bitter\|EB+Garamond\|Lato\|Libre+Baskerville\|Libre+Franklin\|Lora\|Google+Sans:regular,medium\|Material+Icons\|Google+Symbols\|Merriweather\|Montserrat\|Mukta\|Muli\|Nunito\|Open+Sans:400,600,700\|Open+Sans+Condensed:300,400,600,700\|Oswald\|Playfair+Display\|Poppins\|Raleway\|Roboto\|Roboto+Condensed\|Roboto+Slab\|Slabo+27px\|Source+Sans+Pro\|Ubuntu\|Volkhov&display=swap	142.250.74.106	200 OK	132 kB
URL GET HTTP/3 fonts.googleapis.com/css?family=Archivo\|Arimo\|Bitter\|EB+Garamond\|Lato\|Libre+Baskerville\|Libre+Franklin\|Lora\|Google+Sans:regular,medium\|Material+Icons\|Google+Symbols\|Merriweather\|Montserrat\|Mukta\|Muli\|Nunito\|Open+Sans:400,600,700\|Open+Sans+Condensed:300,400,600,700\|Oswald\|Playfair+Display\|Poppins\|Raleway\|Roboto\|Roboto+Condensed\|Roboto+Slab\|Slabo+27px\|Source+Sans+Pro\|Ubuntu\|Volkhov&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type gzip compressed data, max compression\012- data Size 132 kB (132484 bytes) Hash 0b48d77d3def855d49a47408426b48b2 899edb2d2ec737e46b21e5e6e2c88a71318a0583 9164171e0624e320b5578d1ec6d30db37a1032f55539839774a8a262de214b38 HTTP Headers GET /css?family=Archivo\|Arimo\|Bitter\|EB+Garamond\|Lato\|Libre+Baskerville\|Libre+Franklin\|Lora\|Google+Sans:regular,medium\|Material+Icons\|Google+Symbols\|Merriweather\|Montserrat\|Mukta\|Muli\|Nunito\|Open+Sans:400,600,700\|Open+Sans+Condensed:300,400,600,700\|Oswald\|Playfair+Display\|Poppins\|Raleway\|Roboto\|Roboto+Condensed\|Roboto+Slab\|Slabo+27px\|Source+Sans+Pro\|Ubuntu\|Volkhov&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 04 Dec 2023 18:06:05 GMT date: Mon, 04 Dec 2023 18:06:05 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data Size 48 kB (48432 bytes) Hash e2d74c5e631bc53a7240bbfe4be99c8f eb513857bb01cc4f7249067fc7e969bef415fc90 9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5 HTTP Headers GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48432 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:00:58 GMT expires: Fri, 29 Nov 2024 05:00:58 GMT cache-control: public, max-age=31536000 age: 392707 last-modified: Thu, 14 Sep 2023 00:40:31 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css	142.250.74.35	200 OK	25 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (56398), with no line terminators Size 25 kB (24606 bytes) Hash eb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050 HTTP Headers `GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 24606 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 03 Dec 2023 19:06:15 GMT expires: Mon, 02 Dec 2024 19:06:15 GMT cache-control: public, max-age=31536000 last-modified: Tue, 14 Nov 2023 05:42:11 GMT content-type: text/css vary: Accept-Encoding age: 82790 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fundingchoicesmessages.google.com/f/AGSKWxU3zEsdsSvgqKhL8BxEysb0QDrjU5iGqMwLFu4aJszJbAKEiH22_XewGerlK9_ZuCKO8oGlRj9bVR5LEYRrjzqehC7Am219hHHRfYSrTHa-a6YAyyaZdPF9IxeMr3Es8QVk-PL12w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzAxNzEzMTcwLDM5NDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXMvdGV4dHMtdW5zdWJzY3JpYmUiLG51bGwsW1s4LCJGYVlQdVJ3ZXFJSSJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdXV0	216.58.211.14	200 OK	249 kB
URL GET HTTP/3 fundingchoicesmessages.google.com/f/AGSKWxU3zEsdsSvgqKhL8BxEysb0QDrjU5iGqMwLFu4aJszJbAKEiH22_XewGerlK9_ZuCKO8oGlRj9bVR5LEYRrjzqehC7Am219hHHRfYSrTHa-a6YAyyaZdPF9IxeMr3Es8QVk-PL12w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzAxNzEzMTcwLDM5NDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXMvdGV4dHMtdW5zdWJzY3JpYmUiLG51bGwsW1s4LCJGYVlQdVJ3ZXFJSSJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdXV0 IP 216.58.211.14:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type ASCII text, with very long lines (6761) Size 249 kB (249418 bytes) Hash 9e7bea45c66825528807be8f7ffb1db6 3ad28310cdaddcd1aa6f64c52836fa6bea3c7980 3aec3be91cb0945dc4fa223b873e3846c1726be5d44174aa792cde493093ff25 HTTP Headers GET /f/AGSKWxU3zEsdsSvgqKhL8BxEysb0QDrjU5iGqMwLFu4aJszJbAKEiH22_XewGerlK9_ZuCKO8oGlRj9bVR5LEYRrjzqehC7Am219hHHRfYSrTHa-a6YAyyaZdPF9IxeMr3Es8QVk-PL12w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzAxNzEzMTcwLDM5NDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXMvdGV4dHMtdW5zdWJzY3JpYmUiLG51bGwsW1s4LCJGYVlQdVJ3ZXFJSSJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdXV0 HTTP/1.1 Host: fundingchoicesmessages.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK content-type: application/javascript; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site timing-allow-origin: * cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 04 Dec 2023 18:06:04 GMT content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'nonce-5-hYC7Q7REQrQIIl-SIkSA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version cross-origin-resource-policy: cross-origin permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version=* cross-origin-opener-policy: same-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fundingchoicesmessages.google.com/el/AGSKWxU7oE874x8htqDsHLBbUhVuBp6PLPqUUrnXyqHaK-KTN2N-J9RhwPecqpXj0UQ6eS712DtdyJAGWFSDpi1nWOplNU_oh0_TrIRM9O6hcFV20EU9HKs_yX76lNPoDCu0M40akAd_qg==	216.58.211.14	204 No Content	0 B
URL POST HTTP/3 fundingchoicesmessages.google.com/el/AGSKWxU7oE874x8htqDsHLBbUhVuBp6PLPqUUrnXyqHaK-KTN2N-J9RhwPecqpXj0UQ6eS712DtdyJAGWFSDpi1nWOplNU_oh0_TrIRM9O6hcFV20EU9HKs_yX76lNPoDCu0M40akAd_qg== IP 216.58.211.14:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /el/AGSKWxU7oE874x8htqDsHLBbUhVuBp6PLPqUUrnXyqHaK-KTN2N-J9RhwPecqpXj0UQ6eS712DtdyJAGWFSDpi1nWOplNU_oh0_TrIRM9O6hcFV20EU9HKs_yX76lNPoDCu0M40akAd_qg== HTTP/1.1 Host: fundingchoicesmessages.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 92 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 204 No Content content-type: text/html; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-methods: POST, GET, OPTIONS access-control-max-age: 86400 access-control-allow-origin: https://daily-horoscope.us access-control-allow-credentials: true cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 04 Dec 2023 18:06:05 GMT permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version=* content-security-policy: script-src 'nonce-2oAQFxp51QCUrek3eiimzA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport cross-origin-opener-policy: same-origin accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/naLogImpressions	142.250.74.142	204 No Content	0 B
URL POST HTTP/3 docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/naLogImpressions IP 142.250.74.142:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/naLogImpressions HTTP/1.1 Host: docs.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true X-Same-Domain: 1 Content-Type: application/x-www-form-urlencoded;charset=utf-8 Content-Length: 3905 Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 204 No Content cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 04 Dec 2023 18:06:05 GMT p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, base-uri 'self';object-src 'none';report-uri https://csp.withgoogle.com/csp/forms/prod;script-src 'nonce-o31VZBxefxra8VEuuVhkrA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval' server: GSE set-cookie: NID=511=l13qCzJaOxtqW0Td6kaOGsE9jd-xbPlF7IWouLnzqgRLd5nuSuOPtBHJihPAuHNpDdHHMHfLsUi7J1IV5-BUG94XA_7WwecnJ8DgIhrH-ymXh0YJp4DnXPjBWtBNVowetnC8Cm5ls-COYBANXPBbKN0J-CmtGguiFhleqpX7C9U; expires=Tue, 04-Jun-2024 18:06:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.227	200 OK	15 kB
URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Size 15 kB (15344 bytes) Hash 5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc HTTP Headers GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15344 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 10:04:07 GMT expires: Fri, 29 Nov 2024 10:04:07 GMT cache-control: public, max-age=31536000 last-modified: Mon, 16 Oct 2017 17:32:55 GMT content-type: font/woff2 age: 374518 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Size 16 kB (15552 bytes) Hash 285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7 HTTP Headers GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15552 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 11:28:20 GMT expires: Fri, 29 Nov 2024 11:28:20 GMT cache-control: public, max-age=31536000 last-modified: Mon, 16 Oct 2017 17:33:02 GMT content-type: font/woff2 age: 369465 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/recaptcha/api2/logo_48.png	142.250.74.35	200 OK	2.2 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data Size 2.2 kB (2228 bytes) Hash ef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a HTTP Headers GET /recaptcha/api2/logo_48.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 2228 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 21:37:43 GMT expires: Wed, 06 Dec 2023 21:37:43 GMT cache-control: public, max-age=604800 age: 419302 last-modified: Tue, 03 Mar 2020 20:15:00 GMT content-type: image/png alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js	142.250.74.35	200 OK	191 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (563) Size 191 kB (190682 bytes) Hash 23b9dd721490a4062ba8d01454ef6ba9 efdbb7331585411f7d397dacbf51fd3e95f3031d 4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7 HTTP Headers `GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 190682 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 03 Dec 2023 11:52:30 GMT expires: Mon, 02 Dec 2024 11:52:30 GMT cache-control: public, max-age=31536000 last-modified: Tue, 14 Nov 2023 05:42:11 GMT content-type: text/javascript vary: Accept-Encoding age: 108815 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	api.justservices.cc/api/content/v2/digest	34.199.157.218	200 OK	22 B
URL OPTIONS HTTP/2 api.justservices.cc/api/content/v2/digest IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerZeroSSL Subjectapi.justservices.cc FingerprintFC:27:63:CE:52:EA:8E:98:B1:F8:25:B7:CF:F1:E4:D7:14:92:E9:38 ValiditySat, 25 Nov 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 22 B (22 bytes) Hash 444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df HTTP Headers OPTIONS /api/content/v2/digest HTTP/1.1 Host: api.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: x-auth-token Referer: https://daily-horoscope.us/ Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:05 GMT content-type: application/json content-length: 22 access-control-allow-credentials: true access-control-allow-headers: X-AUTH-TOKEN access-control-allow-methods: POST,PUT,OPTIONS access-control-allow-origin: https://daily-horoscope.us access-control-max-age: 86400 cache-control: private, must-revalidate content-encoding: gzip expires: -1 pragma: no-cache set-cookie: device_view=full; expires=Thu, 04-Jan-2024 18:06:05 GMT; Max-Age=2678400; path=/; httponly; samesite=lax strict-transport-security: max-age=63072000 X-Firefox-Spdy: h2

	trk-keingent.com/scripts/push/script/zqd2my4gk3?url=daily-horoscope.us&alturl=/texts-unsubscribe	172.64.134.38	200 OK	2.5 kB
URL GET HTTP/2 trk-keingent.com/scripts/push/script/zqd2my4gk3?url=daily-horoscope.us&alturl=/texts-unsubscribe IP 172.64.134.38:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subjecttrk-keingent.com FingerprintB6:7A:88:8A:E1:CC:8A:5B:E7:4B:17:9D:1C:60:45:9B:78:E0:68:CB ValidityFri, 01 Dec 2023 01:25:51 GMT - Thu, 29 Feb 2024 01:25:50 GMT File type ASCII text, with very long lines (7347) Size 2.5 kB (2463 bytes) Hash 58074d1392646ffcce9a2072bc47d251 68bdef7874108b6d1aeb1e1af2b5e558b2cbfa32 b43911696f2229050a8f27860db8877edc551c80601a3c1d2fba05a6151d52f7 HTTP Headers `GET /scripts/push/script/zqd2my4gk3?url=daily-horoscope.us&alturl=/texts-unsubscribe HTTP/1.1 Host: trk-keingent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:03 GMT content-type: application/javascript;charset=UTF-8 expires: 0 cache-control: max-age=14400, must-revalidate x-xss-protection: 1; mode=block pragma: no-cache x-frame-options: SAMEORIGIN referrer-policy: strict-origin-when-cross-origin content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data: vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers x-content-type-options: nosniff permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=() cf-cache-status: MISS last-modified: Mon, 04 Dec 2023 18:06:03 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c7TdOljIyzbr8SfBd7ig3OikSajfq2wZhExgALjkVsCsfh784f6UkF%2FiP5m9FJ4zn0kZRCSgYXgijwZZMc%2BZfzHhEch%2B%2BtF7QfopistCTJ4hRR7TrPqGBPA3L%2F8Dj8Cf3HD1"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8305fb2688d96370-LHR content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/amaticsc/v26/TUZyzwprpvBS1izr_vOEDOSf.woff2	216.58.207.227	200 OK	4.2 kB
URL GET HTTP/3 fonts.gstatic.com/s/amaticsc/v26/TUZyzwprpvBS1izr_vOEDOSf.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 4196, version 1.0\012- data Size 4.2 kB (4196 bytes) Hash 92cff5bf3d47970defef49ebf56448db 163e2b870500ac648a075a008408c9fa73922953 afd7b4ce1230fc5d6cb58daebeed6bcd09ebee1e4414367596bc3bb33f62444c HTTP Headers GET /s/amaticsc/v26/TUZyzwprpvBS1izr_vOEDOSf.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 4196 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:46:24 GMT expires: Fri, 29 Nov 2024 04:46:24 GMT cache-control: public, max-age=31536000 last-modified: Thu, 24 Aug 2023 17:53:07 GMT content-type: font/woff2 age: 393581 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	ib.adnxs.com/ut/v3/prebid	37.252.171.149	200 OK	139 B
URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid IP 37.252.171.149:443 ASN #29990 ASN-APPNEX Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.adnxs.com Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08 ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 139 B (139 bytes) Hash 99f277f5cfa25aeb84adfe05919c66ed 1bbc31fe94ed4f9454f751b6284ed5200c147126 db641ac3c180430ade2a3469409fcecf1457f8eef48715849f86c4f376becbde HTTP Headers `POST /ut/v3/prebid HTTP/1.1 Host: ib.adnxs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1464 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx/1.23.4 date: Mon, 04 Dec 2023 18:06:05 GMT content-type: application/json; charset=utf-8 content-length: 139 cache-control: no-store, no-cache, private pragma: no-cache expires: Sat, 15 Nov 2008 16:00:00 GMT p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" x-xss-protection: 0 access-control-allow-credentials: true access-control-allow-origin: https://daily-horoscope.us accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness an-x-request-uuid: e47ada43-7148-4e9a-b315-9f53ac1f36da x-proxy-origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com X-Firefox-Spdy: h2

	fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9eIOpYQ.woff2	216.58.207.227	200 OK	4.3 kB
URL GET HTTP/3 fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9eIOpYQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 4280, version 1.0\012- data Size 4.3 kB (4280 bytes) Hash 35f2221688a86314a271f11bbf8e76bd 2e56e5fcce211eea8ca3709e0a8b33dd89ceda92 3c1d1b09af9ea0e4a497cf8f1baaf915bb032eca2ae369869566282d156cb25d HTTP Headers GET /s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9eIOpYQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 4280 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 01:27:27 GMT expires: Fri, 29 Nov 2024 01:27:27 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:31:45 GMT content-type: font/woff2 age: 405518 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMDrUfIA.woff2	216.58.207.227	200 OK	1.7 kB
URL GET HTTP/3 fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMDrUfIA.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1664, version 1.0\012- data Size 1.7 kB (1664 bytes) Hash f19ac4e354f2bce2e6341b804767e11a a197acf3fa097bfbad358400bd07ead8865f6fcc a631f36b97689ffb94afdaef8032e78479d469894a2b18f007dea806dc1172b3 HTTP Headers GET /s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMDrUfIA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1664 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 21:37:19 GMT expires: Thu, 28 Nov 2024 21:37:19 GMT cache-control: public, max-age=31536000 age: 419326 last-modified: Thu, 24 Aug 2023 21:23:31 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RkAo9_.woff2	216.58.207.227	200 OK	2.6 kB
URL GET HTTP/3 fonts.gstatic.com/s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RkAo9_.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 2568, version 1.0\012- data Size 2.6 kB (2568 bytes) Hash 573c8c3f244f4286999eb16fbee73181 464ec7f469b0f944beaf09607c0205ed1c529018 a817a663ee912ccf67f30d9cddfb563e15efdabb3de65fe491abdfbea5c6578f HTTP Headers GET /s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RkAo9_.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 2568 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 23:11:53 GMT expires: Thu, 28 Nov 2024 23:11:53 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:34:23 GMT content-type: font/woff2 age: 413652 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsWzLFneg.woff2	216.58.207.227	200 OK	1.3 kB
URL GET HTTP/3 fonts.gstatic.com/s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsWzLFneg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1260, version 1.0\012- data Size 1.3 kB (1260 bytes) Hash 1a6fba681a50bd6e9a060d45ab00573f 831c29d7a7e1f28b71aa147727b310742eec8b57 80083bb74056d4ea185160dd596de5a63d5ed834778a5d7f7e4e843ba4421345 HTTP Headers GET /s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsWzLFneg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1260 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 07:19:58 GMT expires: Fri, 29 Nov 2024 07:19:58 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:22:17 GMT content-type: font/woff2 age: 384367 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lobster/v30/neILzCirqoswsqX9zoSmMw.woff2	216.58.207.227	200 OK	4.3 kB
URL GET HTTP/3 fonts.gstatic.com/s/lobster/v30/neILzCirqoswsqX9zoSmMw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 4344, version 1.0\012- data Size 4.3 kB (4344 bytes) Hash e5a3502e3717398ee835d98f84874738 75c4c2d0f1a2eda7e16a16293ba840e19991ef1a e5acbe17fd4e63cca2ce1b72e482fc2411d27d9d534476ad7f0108b9df087fce HTTP Headers GET /s/lobster/v30/neILzCirqoswsqX9zoSmMw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 4344 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 15:10:13 GMT expires: Thu, 28 Nov 2024 15:10:13 GMT cache-control: public, max-age=31536000 last-modified: Thu, 24 Aug 2023 20:01:58 GMT content-type: font/woff2 age: 442552 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJHkq0.woff2	216.58.207.227	200 OK	1.4 kB
URL GET HTTP/3 fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJHkq0.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1396, version 1.0\012- data Size 1.4 kB (1396 bytes) Hash f36163666a04ba0d430a7dc1405f02db e8799a9938903be0d56d237578cb3b8441d5d9a2 6bba06493e9d01e72d0c0acfbf64abbf9f9198dbb7788285bf8d7b9005d0588f HTTP Headers GET /s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJHkq0.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1396 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 10:13:28 GMT expires: Fri, 29 Nov 2024 10:13:28 GMT cache-control: public, max-age=31536000 last-modified: Tue, 21 Feb 2023 21:45:49 GMT content-type: font/woff2 age: 373957 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-eiZM.woff2	216.58.207.227	200 OK	3.6 kB
URL GET HTTP/3 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-eiZM.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 3640, version 1.0\012- data Size 3.6 kB (3640 bytes) Hash 421b045b5eb019d56f6407ae63e57a92 f0d0d18a1887d371b18c1b06b99ad2d3c0923e8d 5dcebb5ec80a2ddab469a77f1a37412c34205ef76d054131083b0bf663b786fb HTTP Headers GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-eiZM.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 3640 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 10:13:28 GMT expires: Fri, 29 Nov 2024 10:13:28 GMT cache-control: public, max-age=31536000 last-modified: Tue, 26 Apr 2022 16:41:05 GMT content-type: font/woff2 age: 373957 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	prebidserver.pixfuture.com/cookie_sync	137.184.242.150	200 OK	1.1 kB
URL POST HTTP/1.1 prebidserver.pixfuture.com/cookie_sync IP 137.184.242.150:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (1075) Size 1.1 kB (1076 bytes) Hash 9e6428b7109e3f954e576263aff80a4c 158d5d85c478d24780dbb571613790206fa26926 f39a95391a0b250adab71200f72f9f3de816b9be5375919cda91ae0dbf143381 HTTP Headers `POST /cookie_sync HTTP/1.1 Host: prebidserver.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 165 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-origin: https://daily-horoscope.us cache-control: no-cache, no-store, must-revalidate content-type: application/json; charset=utf-8 expires: 0 pragma: no-cache vary: Origin date: Mon, 04 Dec 2023 18:06:05 GMT content-length: 1076`

	ib.adnxs.com/ut/v3/prebid	37.252.171.149	200 OK	146 B
URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid IP 37.252.171.149:443 ASN #29990 ASN-APPNEX Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.adnxs.com Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08 ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 146 B (146 bytes) Hash a3ce7c6caf615c70d6d875c74bb07874 95e075a7f0add24b8ceba44c806472d0c166526c 7ca1a2422c7cea08aeb90b124dbae3ffa20deaf4ecc67bf06b2dedd3ccb7c7a4 HTTP Headers `POST /ut/v3/prebid HTTP/1.1 Host: ib.adnxs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1465 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx/1.23.4 date: Mon, 04 Dec 2023 18:06:05 GMT content-type: application/json; charset=utf-8 content-length: 146 cache-control: no-store, no-cache, private pragma: no-cache expires: Sat, 15 Nov 2008 16:00:00 GMT p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" x-xss-protection: 0 access-control-allow-credentials: true access-control-allow-origin: https://daily-horoscope.us accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness an-x-request-uuid: cdb10499-3a17-49ca-9b61-d90e68ecf22b set-cookie: icu=ChkIvI-JARAKGAEgASgBMI2quKsGOAFAAUgBEI2quKsGGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 03-Mar-2024 18:06:05 GMT; Domain=.adnxs.com; Secure; HttpOnly uuid2=5130546415067441697; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 03-Mar-2024 18:06:05 GMT; Domain=.adnxs.com; Secure; HttpOnly x-proxy-origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com X-Firefox-Spdy: h2

	docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/font/getmetadata	142.250.74.142	200 OK	15 kB
URL POST HTTP/3 docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/font/getmetadata IP 142.250.74.142:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type ASCII text, with very long lines (65531) Size 15 kB (15240 bytes) Hash 90e2bb9ab67ca37df0286e88a514804d 6d4109f104ffa668906d4f1243839c15b5817b15 17e015630cea3ecd62dbd3175634fa88eead4e30674bbe86c975b0d8baa5855f HTTP Headers POST /forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/font/getmetadata HTTP/1.1 Host: docs.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true X-Same-Domain: 1 Content-Type: application/x-www-form-urlencoded;charset=utf-8 Content-Length: 246 Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK content-type: application/json; charset=utf-8 x-content-type-options: nosniff cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 04 Dec 2023 18:06:05 GMT content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt content-encoding: gzip p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block server: GSE set-cookie: NID=511=nH9jZVpjkDpveHr4qkPhzO1d0x58T-m4Kk4_ba92vg2w2hyccOHMRxpxbap5iglxERY5h5q8qM8vdRZRm4AELbwSqD8c5cAauon4BIybdpjnlqiIj2xfg5paZMX3nwqhXpxusjxZTE7ciSA_j5Qyo9VowtOLq0I36nHY-aaiRsg; expires=Tue, 04-Jun-2024 18:06:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw_aXo.woff2	216.58.207.227	200 OK	1.5 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw_aXo.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1516, version 1.0\012- data Size 1.5 kB (1516 bytes) Hash 314c94c93e0d293f63a2c41f8e82c852 a648b285460c78deadb882996f09fd75d8ecab74 cdaae795074ced24ad382f9f21c4f2e3443d3dc27bf6f75ab5cb43d54f23f009 HTTP Headers GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw_aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1516 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 14:06:26 GMT expires: Thu, 28 Nov 2024 14:06:26 GMT cache-control: public, max-age=31536000 age: 446380 last-modified: Wed, 13 Sep 2023 22:58:01 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTI3jw.woff2	216.58.207.227	200 OK	1.5 kB
URL GET HTTP/3 fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTI3jw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1528, version 1.0\012- data Size 1.5 kB (1528 bytes) Hash eb7377208715318b001d920f049e318b 9e428185fc78b5f18b11d1b29353433939b08b5b 10505df86b3638be7b5707a542c0c7c80ed856f14e037bb1c64bfaf712b0ab75 HTTP Headers GET /s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTI3jw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1528 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:55:32 GMT expires: Fri, 29 Nov 2024 04:55:32 GMT cache-control: public, max-age=31536000 age: 393034 last-modified: Wed, 13 Sep 2023 23:49:54 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUBiZQ.woff2	216.58.207.227	200 OK	1.4 kB
URL GET HTTP/3 fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUBiZQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1360, version 1.0\012- data Size 1.4 kB (1360 bytes) Hash 248816e2428823aa2ba6b223b82ec73b ec8dd868a619356c0e30606eca110a239ca0d83d 4524691b7547d0d9f1a34ff172d940bedafd7725a14a5bd1121807b7d993bffa HTTP Headers GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUBiZQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1360 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:57 GMT expires: Fri, 29 Nov 2024 23:21:57 GMT cache-control: public, max-age=31536000 age: 326649 last-modified: Tue, 15 Aug 2023 18:44:22 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6B6Mk.woff2	216.58.207.227	200 OK	5.0 kB
URL GET HTTP/3 fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6B6Mk.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 5044, version 1.0\012- data Size 5.0 kB (5044 bytes) Hash 5e37f6030cf935f9cbd3ff5a22e08d2e c77ae7dd7501f4f578884bc034004f8619fc3d17 867352b1c82c47d71a11744e3886441a848780dca87928bac596e5f3473bfaa3 HTTP Headers GET /s/pacifico/v22/FwZY7-Qmy14u9lezJ-6B6Mk.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 5044 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:53:39 GMT expires: Fri, 29 Nov 2024 04:53:39 GMT cache-control: public, max-age=31536000 age: 393147 last-modified: Mon, 09 May 2022 18:30:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDRbtM.woff2	216.58.207.227	200 OK	2.7 kB
URL GET HTTP/3 fonts.gstatic.com/s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDRbtM.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 2688, version 1.0\012- data Size 2.7 kB (2688 bytes) Hash ceb2af0c4664f8a0f15f1e8f9b12b2c7 33bd5189da156b45d6af87062333b48483fe93c7 ee21fa3a8dd34931830b255fb301dec184add039958f2378ec534733b4002011 HTTP Headers GET /s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDRbtM.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 2688 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 02:38:21 GMT expires: Fri, 29 Nov 2024 02:38:21 GMT cache-control: public, max-age=31536000 last-modified: Thu, 24 Aug 2023 20:29:13 GMT content-type: font/woff2 age: 401265 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5GxK.woff2	216.58.207.227	200 OK	1.8 kB
URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5GxK.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1756, version 1.0\012- data Size 1.8 kB (1756 bytes) Hash 075859be4e4f07f19a698d12c3beadde c82e3bab6ba88f4c4bb791c570e8d007ed3554dc 6c00994f426cdca41eb2fbd87b0f3610e37acb3d641b4297a5cfa3e969cd95ee HTTP Headers GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5GxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1756 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 21:20:24 GMT expires: Thu, 28 Nov 2024 21:20:24 GMT cache-control: public, max-age=31536000 age: 420342 last-modified: Wed, 11 May 2022 19:24:41 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_QuW4.woff2	216.58.207.227	200 OK	1.4 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_QuW4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 1416, version 1.0\012- data Size 1.4 kB (1416 bytes) Hash e2d07bcc7b3c68f09f3517cd26b496a9 1bc266cb846b248865b43e53ccd7c8117a70b7ba cc93b0c6ccf01063b9788530ca2389636059624b18599de8edef8d4054255474 HTTP Headers GET /s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_QuW4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 1416 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 07:19:59 GMT expires: Fri, 29 Nov 2024 07:19:59 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Sep 2023 01:07:20 GMT content-type: font/woff2 age: 384367 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotl6Z8AA.woff2	216.58.207.227	200 OK	2.5 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotl6Z8AA.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 2484, version 1.0\012- data Size 2.5 kB (2484 bytes) Hash c56af54151fde28a48dacd2ac2987e99 4d9c23be615f29828e8d5e1907712c50f4c88d5b 171d4c2505ae91856b2fe01ef5154d89feec1591421b5ee67f6ef8c0f50649c6 HTTP Headers GET /s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotl6Z8AA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 2484 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 20:37:55 GMT expires: Thu, 28 Nov 2024 20:37:55 GMT cache-control: public, max-age=31536000 last-modified: Mon, 03 Apr 2023 17:06:29 GMT content-type: font/woff2 age: 422891 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/spectral/v13/rnCr-xNNww_2s0amA9M_kng.woff2	216.58.207.227	200 OK	3.6 kB
URL GET HTTP/3 fonts.gstatic.com/s/spectral/v13/rnCr-xNNww_2s0amA9M_kng.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 3576, version 1.0\012- data Size 3.6 kB (3576 bytes) Hash 3451c91abe3e05f03bba52ce59a258e7 19fafd4f56fecdc013d8af0dee6c51e9a338fa5b d4ba92453033372b440e5e762eedec60dec8b3c32008f599b1c7f46376d64216 HTTP Headers GET /s/spectral/v13/rnCr-xNNww_2s0amA9M_kng.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 3576 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:58:33 GMT expires: Fri, 29 Nov 2024 05:58:33 GMT cache-control: public, max-age=31536000 last-modified: Tue, 30 Aug 2022 23:15:10 GMT content-type: font/woff2 age: 389253 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	js.justservices.cc/digest/2.0.0/css/style.min.css	34.199.157.218	200 OK	65 kB
URL GET HTTP/2 js.justservices.cc/digest/2.0.0/css/style.min.css IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerZeroSSL Subjectjs.justservices.cc Fingerprint95:C0:1A:22:90:24:13:D1:07:A6:71:F3:21:16:41:D2:B1:EF:A7:F1 ValidityMon, 20 Nov 2023 00:00:00 GMT - Sun, 18 Feb 2024 23:59:59 GMT File type gzip compressed data, max speed, from Unix\012- data Size 65 kB (64756 bytes) Hash ef156b919dd277151fe52e7e3607029a dc952c9084eb31f920498321fe12e8ab63cc24f0 0761e9690d0ce6c71cab0b9ff81aa73d61c4546c1bf9cc30144642bf0f912440 HTTP Headers `GET /digest/2.0.0/css/style.min.css HTTP/1.1 Host: js.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:05 GMT content-type: text/css last-modified: Mon, 30 Oct 2023 09:37:26 GMT etag: W/"653f7956-612" expires: Wed, 03 Jan 2024 18:06:05 GMT cache-control: max-age=2592000 strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsW_LU.woff2	216.58.207.227	200 OK	26 kB
URL GET HTTP/3 fonts.gstatic.com/s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsW_LU.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 25980, version 1.0\012- data Size 26 kB (25980 bytes) Hash 6570cef7695dd91e8b3ad396ed61b8b8 b08de546aa39a155ebb0cd3cf3109c753c66e20f 081a9357e5da041fc09dbef6c0abaa986251670aacbc6029228d37f34fd1fe25 HTTP Headers GET /s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsW_LU.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 25980 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 21:35:50 GMT expires: Thu, 28 Nov 2024 21:35:50 GMT cache-control: public, max-age=31536000 age: 419416 last-modified: Thu, 14 Sep 2023 01:10:12 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMPrE.woff2	216.58.207.227	200 OK	38 kB
URL GET HTTP/3 fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMPrE.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 37488, version 1.0\012- data Size 38 kB (37488 bytes) Hash 2a7652831c7699009e0c25dabf93430a 6b0a143d883afb8ff3ca2bf55b448af8b68f2f89 c3525fca875bf7203e92f116e0c5532dd5b5fe0f0ca5e12c6c4c8b9bd77566e2 HTTP Headers GET /s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMPrE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 37488 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 01:18:03 GMT expires: Fri, 29 Nov 2024 01:18:03 GMT cache-control: public, max-age=31536000 last-modified: Thu, 24 Aug 2023 20:50:24 GMT content-type: font/woff2 age: 406083 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrE.woff2	216.58.207.227	200 OK	37 kB
URL GET HTTP/3 fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrE.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 36840, version 1.0\012- data Size 37 kB (36840 bytes) Hash 3603078a7b178210ac17285e145b4a8c d57fd925f10c47d039fcda3cc8a2a12d23e134c5 dcbaf64460b4db78ba16ee6230d2c90215dda58ce8c285348d624fe32dbc470e HTTP Headers GET /s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 36840 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 08:05:39 GMT expires: Fri, 29 Nov 2024 08:05:39 GMT cache-control: public, max-age=31536000 last-modified: Thu, 24 Aug 2023 20:50:29 GMT content-type: font/woff2 age: 381627 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/amaticsc/v26/TUZ3zwprpvBS1izr_vOMscG6fA.woff2	216.58.207.227	200 OK	65 kB
URL GET HTTP/3 fonts.gstatic.com/s/amaticsc/v26/TUZ3zwprpvBS1izr_vOMscG6fA.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 64656, version 1.0\012- data Size 65 kB (64656 bytes) Hash 28e2b282cbdde4fbef925aa25df6fea3 764c6b373670d221c28cd5da0584fceb1c444905 b1de6eac3059ca778e6d2367182c7f11edc81e09971e56f788db308a674ea7ec HTTP Headers GET /s/amaticsc/v26/TUZ3zwprpvBS1izr_vOMscG6fA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 64656 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 11:21:51 GMT expires: Fri, 29 Nov 2024 11:21:51 GMT cache-control: public, max-age=31536000 last-modified: Thu, 24 Aug 2023 17:42:41 GMT content-type: font/woff2 age: 369855 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	prebidserver.pixfuture.com/openrtb2/auction	137.184.242.150	200 OK	491 B
URL POST HTTP/1.1 prebidserver.pixfuture.com/openrtb2/auction IP 137.184.242.150:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (490) Size 491 B (491 bytes) Hash f5705b5f87d91296a3ecfc917a19cbd9 5fad4511cfd9abb791831860f0f6ca6037c6a9fc 52d0fab7384922d539e32c1695dadc4e51c2d51ed3f322db1145dbdd5bb71641 HTTP Headers `POST /openrtb2/auction HTTP/1.1 Host: prebidserver.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1874 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-origin: https://daily-horoscope.us cache-control: no-cache, no-store, must-revalidate content-type: application/json expires: 0 pragma: no-cache vary: Origin x-prebid: pbs-go/unknown date: Mon, 04 Dec 2023 18:06:06 GMT content-length: 491`

	fonts.gstatic.com/s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WC9wR_LU.woff2	216.58.207.227	200 OK	27 kB
URL GET HTTP/3 fonts.gstatic.com/s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WC9wR_LU.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 26936, version 1.0\012- data Size 27 kB (26936 bytes) Hash e6846a793feddd3ca0729750a64ee6f1 6bbc22c3fcf60036ce9ca0c5dce899faa86edc33 5ee1925de22baa2ef5bcb426a76da601c7a094d4d87cc8703b80db62ac2452c1 HTTP Headers GET /s/lexend/v19/wlptgwvFAVdoq2_F94zlCfv0bz1WC9wR_LU.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 26936 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:06:21 GMT expires: Fri, 29 Nov 2024 05:06:21 GMT cache-control: public, max-age=31536000 age: 392385 last-modified: Thu, 14 Sep 2023 00:48:58 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9SIc.woff2	216.58.207.227	200 OK	101 kB
URL GET HTTP/3 fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9SIc.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 100756, version 1.0\012- data Size 101 kB (100756 bytes) Hash 4498a1a925fd2d5630ba89b78739e194 c757edcf6538b1f0968f69a7618c564dcaf7150a 54efcb5570863b2329c2c677749c85c7ed337f5c16bf38caea17807196150293 HTTP Headers GET /s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9SIc.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 100756 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 17:28:20 GMT expires: Fri, 29 Nov 2024 17:28:20 GMT cache-control: public, max-age=31536000 age: 347866 last-modified: Wed, 13 Sep 2023 23:32:28 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuyJD.woff2	216.58.207.227	200 OK	47 kB
URL GET HTTP/3 fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuyJD.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 46996, version 1.0\012- data Size 47 kB (46996 bytes) Hash 75c85cc2158df49dd5a1f04ebcbbefe4 c423d7fa0fe7bb9e82038b6423e1adf30a50a1c9 ae4ca9b9303fc55a1053c3a796249078fc00d2389cf2f4b1f006bb19917e3bef HTTP Headers GET /s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuyJD.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 46996 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 10:04:14 GMT expires: Fri, 29 Nov 2024 10:04:14 GMT cache-control: public, max-age=31536000 last-modified: Tue, 21 Feb 2023 21:46:00 GMT content-type: font/woff2 age: 374512 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787z5vCJD.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787z5vCJD.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 47568, version 1.0\012- data Size 48 kB (47568 bytes) Hash b059913de48428d675f5325883c65b8b b8c465b909556291cbb02b348ddb88e331f3a7a7 bbd98aaaf11a21804cbf7f5b10e7ef9a80c30a47840b7b1dfa51a84fb298ffad HTTP Headers GET /s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787z5vCJD.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 47568 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:48:27 GMT expires: Fri, 29 Nov 2024 04:48:27 GMT cache-control: public, max-age=31536000 age: 393459 last-modified: Tue, 21 Feb 2023 21:46:01 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lora/v32/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFkq0.woff2	216.58.207.227	200 OK	51 kB
URL GET HTTP/3 fonts.gstatic.com/s/lora/v32/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFkq0.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 50560, version 1.0\012- data Size 51 kB (50560 bytes) Hash 534f3895a7e6bd8ce04eca949680489a 045a10f216b8e56d72cc71a922fc20aa798cc297 07598e9c2aae44f349f488e73a31691f1f0f8c5eaedeaa69f2bcb56efa59a934 HTTP Headers GET /s/lora/v32/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFkq0.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 50560 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:50 GMT expires: Fri, 29 Nov 2024 23:21:50 GMT cache-control: public, max-age=31536000 age: 326656 last-modified: Tue, 21 Feb 2023 21:46:11 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lora/v32/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Ckq0.woff2	216.58.207.227	200 OK	50 kB
URL GET HTTP/3 fonts.gstatic.com/s/lora/v32/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Ckq0.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 50448, version 1.0\012- data Size 50 kB (50448 bytes) Hash 32180c71dc9a7d76ed260fbf27f69384 e8c209cacd36a7a96d5f623ad727caffbce87363 bf721c6995366adb25d098fe2b901999ed3a750a2cd7d0f57f0e9d85af2aee29 HTTP Headers GET /s/lora/v32/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Ckq0.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 50448 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 03:23:55 GMT expires: Fri, 29 Nov 2024 03:23:55 GMT cache-control: public, max-age=31536000 last-modified: Tue, 21 Feb 2023 21:46:10 GMT content-type: font/woff2 age: 398531 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5Ofg.woff2	216.58.207.227	200 OK	59 kB
URL GET HTTP/3 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5Ofg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 58892, version 1.0\012- data Size 59 kB (58892 bytes) Hash 386f2237074cc59495783195ea1f1295 81b3014b28b6e7ef2fdb39ed73d18ee38f1c36a5 66a070c331573aa324fa2deac1a1b42b2d58e9660268555ee382d857e651e33f HTTP Headers GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5Ofg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 58892 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 02:02:33 GMT expires: Fri, 29 Nov 2024 02:02:33 GMT cache-control: public, max-age=31536000 last-modified: Tue, 26 Apr 2022 15:46:07 GMT content-type: font/woff2 age: 403413 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eSZM.woff2	216.58.207.227	200 OK	58 kB
URL GET HTTP/3 fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eSZM.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 57612, version 1.0\012- data Size 58 kB (57612 bytes) Hash 10d2bdfd7a17f5e0210c90d99a8b5abb 89cf52504233c328782a7250f56dad603fa74a91 d8977152b314fcd5d04bec050367c0aafa91899501593e9ecb0d6090cdac29a6 HTTP Headers GET /s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eSZM.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 57612 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:57:14 GMT expires: Fri, 29 Nov 2024 04:57:14 GMT cache-control: public, max-age=31536000 age: 392932 last-modified: Tue, 26 Apr 2022 15:49:02 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Ew7.woff2	216.58.207.227	200 OK	40 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Ew7.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 39708, version 1.0\012- data Size 40 kB (39708 bytes) Hash f311a35802ef8fa61fa06206ef76278c 6179b813223849faeb0835b285a05e5b2a8a4ad4 ff8c9a38c906236a4025b752da6a83403df53f22f0fb8b88155b7b04a5229904 HTTP Headers GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Ew7.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 39708 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:53:51 GMT expires: Fri, 29 Nov 2024 04:53:51 GMT cache-control: public, max-age=31536000 age: 393135 last-modified: Wed, 13 Sep 2023 22:53:28 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM70w7.woff2	216.58.207.227	200 OK	40 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM70w7.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 40184, version 1.0\012- data Size 40 kB (40184 bytes) Hash 1c31342f0be5bc0e2b1549932cde2f81 a5aab8d96192515329b7d888cfc5b7b113fad53d 184819cfd66eee3bbf756a609a0ea8034f09dcf8c68cd817b08358d8e5579ca3 HTTP Headers GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM70w7.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 40184 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:56 GMT expires: Fri, 29 Nov 2024 23:21:56 GMT cache-control: public, max-age=31536000 age: 326650 last-modified: Wed, 13 Sep 2023 22:40:44 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq6R9aXo.woff2	216.58.207.227	200 OK	40 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq6R9aXo.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 40412, version 1.0\012- data Size 40 kB (40412 bytes) Hash 7332d3b0fa7568125ce6fe9ec4d55151 1822e1ef270f935e5ff8ef83bbe8d0c27ca3cc55 17406c4e4926c81dcd8f3832b79428ccf82f5a3af17c03afd0e37f13413851b7 HTTP Headers GET /s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq6R9aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 40412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:00:52 GMT expires: Fri, 29 Nov 2024 04:00:52 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 22:58:40 GMT content-type: font/woff2 age: 396314 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq0N6aXo.woff2	216.58.207.227	200 OK	41 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq0N6aXo.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 41288, version 1.0\012- data Size 41 kB (41288 bytes) Hash c2016e340130ca6e2abb66d40055b6f4 9a999b20475fe5ca7314918be5bc09555ea44022 347b8e3e68694a70f4b024cdbee7fb7ed5f98c19d0dafef6b8f237191c796f03 HTTP Headers GET /s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq0N6aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 41288 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:00:52 GMT expires: Fri, 29 Nov 2024 04:00:52 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 22:53:39 GMT content-type: font/woff2 age: 396314 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RUBg.woff2	216.58.207.227	200 OK	127 kB
URL GET HTTP/3 fonts.gstatic.com/s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RUBg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 126552, version 1.0\012- data Size 127 kB (126552 bytes) Hash af8ff37fa5c0e048bf57fec5436a89c9 033ddbd8af527542e878ab76ee8151586c2efcd5 8ca1eee7725d016477dddd403b78c514438b1d2cd58545b4bc9fd6db9647d83d HTTP Headers GET /s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RUBg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 126552 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:50 GMT expires: Fri, 29 Nov 2024 23:21:50 GMT cache-control: public, max-age=31536000 age: 326656 last-modified: Wed, 13 Sep 2023 23:23:33 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshRTY.woff2	216.58.207.227	200 OK	42 kB
URL GET HTTP/3 fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshRTY.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 42132, version 1.0\012- data Size 42 kB (42132 bytes) Hash 2661bda6d2ba62a920be11952bb94849 7c1ee90488041d444d2289ae42c06d1958f34584 add6ddd7fee32d58eba385983ab7dcc9657ad97cdbd4bf4594db38675847edb4 HTTP Headers GET /s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshRTY.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 42132 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:20:14 GMT expires: Fri, 29 Nov 2024 05:20:14 GMT cache-control: public, max-age=31536000 age: 391552 last-modified: Thu, 14 Sep 2023 01:10:45 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmRTY.woff2	216.58.207.227	200 OK	42 kB
URL GET HTTP/3 fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmRTY.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 41676, version 1.0\012- data Size 42 kB (41676 bytes) Hash c619c10c85ca3dd6d4b57cc59ba2a32a 92a0d8ac165cf6788be6259f901fba1994886d91 c129c2c42b2f1d5af9bd5b9858f0eba8215ee3ebf61fbc99866e107b2c0af4b5 HTTP Headers GET /s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmRTY.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 41676 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:00:23 GMT expires: Fri, 29 Nov 2024 05:00:23 GMT cache-control: public, max-age=31536000 age: 392743 last-modified: Thu, 14 Sep 2023 01:10:49 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjRV6SIc.woff2	216.58.207.227	200 OK	106 kB
URL GET HTTP/3 fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjRV6SIc.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 105776, version 1.0\012- data Size 106 kB (105776 bytes) Hash df1878beef6f76b3b8b9c3a479bfa5cb 5724cf8d410c6bd487a002a14386231c29c933c6 c7b73dc2a43d6620b4ae7b1e05eea2342cf309352b4dcaadeb4491c5b72468e5 HTTP Headers GET /s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjRV6SIc.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 105776 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:53:37 GMT expires: Fri, 29 Nov 2024 04:53:37 GMT cache-control: public, max-age=31536000 age: 393149 last-modified: Thu, 14 Sep 2023 00:42:46 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZogUQ.woff2	216.58.207.227	200 OK	33 kB
URL GET HTTP/3 fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZogUQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 32644, version 1.0\012- data Size 33 kB (32644 bytes) Hash 3f02e1aeea84f97c26ce78e796009467 3a86908b3e689621f23a326a8f3fd4b794599c00 68425336934a956337b4593a3d47d51d2970d03ac4a9c9fc795596f13eb21775 HTTP Headers GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZogUQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 32644 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 03:14:46 GMT expires: Fri, 29 Nov 2024 03:14:46 GMT cache-control: public, max-age=31536000 last-modified: Tue, 15 Aug 2023 18:20:43 GMT content-type: font/woff2 age: 399080 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNpWg.woff2	216.58.207.227	200 OK	57 kB
URL GET HTTP/3 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNpWg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 57236, version 1.0\012- data Size 57 kB (57236 bytes) Hash 212d9f17f0f5d037532fa3b8fc14b8de c332a9f57f2c7931f2a930b5d91bcf244e38fc42 53b183e10d8c5db234637e82bef4014117bd41c956c69af55fa0165a7be31666 HTTP Headers GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNpWg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 57236 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:56 GMT expires: Fri, 29 Nov 2024 23:21:56 GMT cache-control: public, max-age=31536000 age: 326650 last-modified: Tue, 26 Apr 2022 15:46:05 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wsf6.woff2	216.58.207.227	200 OK	58 kB
URL GET HTTP/3 fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wsf6.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 58012, version 1.0\012- data Size 58 kB (58012 bytes) Hash e88455150169496390368f9dcfc709c6 672607f20c14829a1071441c031a8411196cfea8 133bb5c5af6b43d96660ff65f46464f2a03f7d0deeb8e2a1f8e0aa7ce6770120 HTTP Headers GET /s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wsf6.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 58012 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 10:04:15 GMT expires: Fri, 29 Nov 2024 10:04:15 GMT cache-control: public, max-age=31536000 last-modified: Tue, 26 Apr 2022 15:59:37 GMT content-type: font/woff2 age: 374511 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed	142.250.74.132	200 OK	604 B
URL GET HTTP/3 www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type gzip compressed data\012- data Size 604 B (604 bytes) Hash 24d3ea0c4d9c4209709d0135dafe7925 6af598a3f455695aa75775518f9356fa51ca559a e3128ee4ca79abedc925b8ee35c29a8947194dff2ff1cf3dcb042fa1d75cd7db HTTP Headers GET /recaptcha/enterprise/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt Sec-Fetch-Dest: worker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK content-type: text/javascript; charset=utf-8 cross-origin-embedder-policy: require-corp report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} expires: Mon, 04 Dec 2023 18:06:05 GMT date: Mon, 04 Dec 2023 18:06:05 GMT cache-control: private, max-age=300 content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/ebgaramond/v27/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7e8QI9_.woff2	216.58.207.227	200 OK	117 kB
URL GET HTTP/3 fonts.gstatic.com/s/ebgaramond/v27/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7e8QI9_.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 116720, version 1.0\012- data Size 117 kB (116720 bytes) Hash bbcbeb66044a15cc9e191d3056b88045 013496b3a81a2c3b4dee88618d2e2588adb3ae93 fd8bed74936b7b0f1745b3b117cab8be5ec9405fb4771226270462e670b8d9fe HTTP Headers GET /s/ebgaramond/v27/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7e8QI9_.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 116720 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:16:34 GMT expires: Fri, 29 Nov 2024 04:16:34 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:27:12 GMT content-type: font/woff2 age: 395372 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/ebgaramond/v27/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7dbR49_.woff2	216.58.207.227	200 OK	130 kB
URL GET HTTP/3 fonts.gstatic.com/s/ebgaramond/v27/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7dbR49_.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 129672, version 1.0\012- data Size 130 kB (129672 bytes) Hash b99d3a0689113c5d84e45f23e390f679 b5b7c86b351934f4d3c07b5ccae3ec18c3ac5c41 10b6fc407ad68085b7ea80a7f03939ed11b4ad702c3067ff89bcd8ee26320ea6 HTTP Headers GET /s/ebgaramond/v27/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7dbR49_.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 129672 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 13:46:41 GMT expires: Thu, 28 Nov 2024 13:46:41 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:23:42 GMT content-type: font/woff2 age: 447565 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/lobster/v30/neILzCirqoswsqX9_oA.woff2	216.58.207.227	200 OK	100 kB
URL GET HTTP/3 fonts.gstatic.com/s/lobster/v30/neILzCirqoswsqX9_oA.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 99952, version 1.0\012- data Size 100 kB (99952 bytes) Hash 4dc58d8c42a13cd77cf2cd978f639388 221ede548e9e9cf711595d6511c73cd8ea4eb595 b93f4669cc09016e4d1ad1836a4cd1ebcf832c22979e5fa11db4f7c3620223ae HTTP Headers GET /s/lobster/v30/neILzCirqoswsqX9_oA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 99952 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:20:14 GMT expires: Fri, 29 Nov 2024 05:20:14 GMT cache-control: public, max-age=31536000 age: 391552 last-modified: Thu, 24 Aug 2023 19:54:35 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvgUQ.woff2	216.58.207.227	200 OK	32 kB
URL GET HTTP/3 fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvgUQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 31456, version 1.0\012- data Size 32 kB (31456 bytes) Hash 8787e52101c989dea9fea21e232fa45b f112710595baa904a62b68c2066dd34d7103e1e8 d5c4965a6e9c89dee7d1389167c821976bfbf55d80e7dcddfbcb5400b1ae01c9 HTTP Headers GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvgUQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 31456 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 00:33:02 GMT expires: Fri, 29 Nov 2024 00:33:02 GMT cache-control: public, max-age=31536000 last-modified: Tue, 15 Aug 2023 18:20:42 GMT content-type: font/woff2 age: 408784 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNirXA3jw.woff2	216.58.207.227	200 OK	45 kB
URL GET HTTP/3 fonts.gstatic.com/s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNirXA3jw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 44980, version 1.0\012- data Size 45 kB (44980 bytes) Hash a32cae41aa72ad6ca75ff8b5a7a11606 fc29ca3935d5f85c169448d7cc6410c2560d92bc 33ea7445e374a6aab69f4e13ddbc9fc0e356c731e2d1f093619b93d4281bbe2e HTTP Headers GET /s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNirXA3jw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44980 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 17:55:59 GMT expires: Thu, 28 Nov 2024 17:55:59 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:56:47 GMT content-type: font/woff2 age: 432607 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvUDV.woff2	216.58.207.227	200 OK	42 kB
URL GET HTTP/3 fonts.gstatic.com/s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvUDV.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 42416, version 1.0\012- data Size 42 kB (42416 bytes) Hash 8a43806582ab1ece770dfe21009100a3 3852fd066c2a40d231616dee1d2a0c2adf74eea5 5c0243aeabbf9c2f5353f0f043cdfe582305ce9232dafae04789f72ad8b8a2fb HTTP Headers GET /s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvUDV.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 42416 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:14:46 GMT expires: Fri, 29 Nov 2024 05:14:46 GMT cache-control: public, max-age=31536000 age: 391880 last-modified: Thu, 24 Aug 2023 20:29:23 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiukDV.woff2	216.58.207.227	200 OK	46 kB
URL GET HTTP/3 fonts.gstatic.com/s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiukDV.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 45636, version 1.0\012- data Size 46 kB (45636 bytes) Hash ab6aa3468d07ffb8ab54b07ee0da37f1 616276bbcfa4e4777c864002491f6f623bbd737c 31594918e6093b22f7d61e9ef00fe99af5de221a8e7b039517c38bb140fa6d95 HTTP Headers GET /s/playfairdisplay/v36/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiukDV.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 45636 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:14:35 GMT expires: Fri, 29 Nov 2024 05:14:35 GMT cache-control: public, max-age=31536000 age: 391891 last-modified: Thu, 24 Aug 2023 20:29:22 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/playfairdisplay/v36/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTbtM.woff2	216.58.207.227	200 OK	41 kB
URL GET HTTP/3 fonts.gstatic.com/s/playfairdisplay/v36/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTbtM.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 41308, version 1.0\012- data Size 41 kB (41308 bytes) Hash efdafccf7e8ae2bbcd02c765ddcb37a0 2eb31210fd6e66db9d5bfe4f7ae0d2fa19b83477 14f880482da8a65732322f1cc972412501c1d33d35edece8f4aba96fab40c3b6 HTTP Headers GET /s/playfairdisplay/v36/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTbtM.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 41308 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:48:08 GMT expires: Fri, 29 Nov 2024 04:48:08 GMT cache-control: public, max-age=31536000 age: 393478 last-modified: Thu, 24 Aug 2023 20:29:47 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-DPNUBg.woff2	216.58.207.227	200 OK	143 kB
URL GET HTTP/3 fonts.gstatic.com/s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-DPNUBg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 143084, version 1.0\012- data Size 143 kB (143084 bytes) Hash ed1d9a18900837130495e4370ceeff49 554473d248c976cd3a37453a89bf338ddeeaf519 3e92624ff29d44c47f313d24e815f4f9b1ee01ceb5700f6fc9eb3baa215159f6 HTTP Headers GET /s/ebgaramond/v27/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-DPNUBg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 143084 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 07:19:58 GMT expires: Fri, 29 Nov 2024 07:19:58 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:34:32 GMT content-type: font/woff2 age: 384368 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/playfairdisplay/v36/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_k-UbtM.woff2	216.58.207.227	200 OK	44 kB
URL GET HTTP/3 fonts.gstatic.com/s/playfairdisplay/v36/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_k-UbtM.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 43740, version 1.0\012- data Size 44 kB (43740 bytes) Hash 601cd01ff64ea35c0c878be6363e339c a7283fb91409e0ab4205b925e46cf9e6e54fb2b0 d16a97a25c22e0a3666a93f2cc4dfb340df15a55dc32190f797ee748f2d7b3ba HTTP Headers GET /s/playfairdisplay/v36/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_k-UbtM.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 43740 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:05:22 GMT expires: Fri, 29 Nov 2024 05:05:22 GMT cache-control: public, max-age=31536000 age: 392444 last-modified: Thu, 24 Aug 2023 20:29:46 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Me4A.woff2	216.58.207.227	200 OK	50 kB
URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Me4A.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 50476, version 1.0\012- data Size 50 kB (50476 bytes) Hash ee26c64c3b9b936cc1636071584d1181 8efbc8a10d568444120cc0adf001b2d74c3a2910 d4d175f498b00516c629ce8af152cbe745d73932fa58cc9fdfc8e4b49c0da368 HTTP Headers GET /s/roboto/v30/KFOmCnqEu92Fr1Me4A.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 50476 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 08:41:20 GMT expires: Fri, 29 Nov 2024 08:41:20 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:25:02 GMT content-type: font/woff2 age: 379486 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiSnc3jw.woff2	216.58.207.227	200 OK	44 kB
URL GET HTTP/3 fonts.gstatic.com/s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiSnc3jw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 44316, version 1.0\012- data Size 44 kB (44316 bytes) Hash f4b0df592bed06b7e1ac275945d8ee61 dbd15d6534d7adef8e4aaba1a89e7a2ce22b16fd c8fb82df9421fa2de18e11b89200eeccb188dab713331f06c6c8782ad5ce5437 HTTP Headers GET /s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiSnc3jw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44316 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:52 GMT expires: Fri, 29 Nov 2024 23:21:52 GMT cache-control: public, max-age=31536000 age: 326654 last-modified: Wed, 13 Sep 2023 23:56:57 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ96F.woff2	216.58.207.227	200 OK	85 kB
URL GET HTTP/3 fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ96F.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 84892, version 1.0\012- data Size 85 kB (84892 bytes) Hash 0f0be34d30705d3f21eccbbfbfcbe983 96a0c04f6610ae014fc1179641861c1a96dd6dd0 e05fd4c39d2671d0febcf551364287a41d4889ca4692817722459ff34940ac81 HTTP Headers GET /s/pacifico/v22/FwZY7-Qmy14u9lezJ96F.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 84892 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:50:44 GMT expires: Fri, 29 Nov 2024 04:50:44 GMT cache-control: public, max-age=31536000 age: 393322 last-modified: Mon, 09 May 2022 18:30:22 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlvBg.woff2	216.58.207.227	200 OK	50 kB
URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlvBg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 50340, version 1.0\012- data Size 50 kB (50340 bytes) Hash 90f0b37f809b546f34189807169e9a76 ee8c931951df57cd7b7c8758053c72ebebf22297 9dcacf1d025168ee2f84aaf40bad826f08b43c94db12eb59dbe2a06a3e98bfb2 HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlvBg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 50340 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 21:37:22 GMT expires: Thu, 28 Nov 2024 21:37:22 GMT cache-control: public, max-age=31536000 age: 419324 last-modified: Wed, 11 May 2022 19:24:54 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBhc4.woff2	216.58.207.227	200 OK	55 kB
URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBhc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 54776, version 1.0\012- data Size 55 kB (54776 bytes) Hash 381dc2442717e08c09385cc42e39f1a9 efc24ea7bc8753f4b897bac010507940ee194dad a4208a4184a14e8638f7b807e3b3c9e96fb1e1d7690fa9c2ae8216b763dd3a0c HTTP Headers GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBhc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 54776 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 15:10:12 GMT expires: Thu, 28 Nov 2024 15:10:12 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:53 GMT content-type: font/woff2 age: 442554 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu52xK.woff2	216.58.207.227	200 OK	54 kB
URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu52xK.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 54324, version 1.0\012- data Size 54 kB (54324 bytes) Hash d776dff67b276751d9fd003633687662 c33022abbf684c1a59263aaba2ec52ac40bf7951 c33e230ed8aa87eb62c341b5cd33e65b59c9e65231b2de468b68e95e4eda1cd9 HTTP Headers GET /s/roboto/v30/KFOkCnqEu92Fr1Mu52xK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 54324 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:22:00 GMT expires: Fri, 29 Nov 2024 23:22:00 GMT cache-control: public, max-age=31536000 age: 326646 last-modified: Wed, 11 May 2022 19:24:51 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_Of2PRg.woff2	216.58.207.227	200 OK	38 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_Of2PRg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 37800, version 1.0\012- data Size 38 kB (37800 bytes) Hash 2b097cb2dc262c764a2c97d4e233918d 83db49b6b6dda13adc82726197cc2b243ef647dc 7615aed2ed8f1361d3aba2b6ce6612468463e660e8bd4a4302b24c113ec57308 HTTP Headers GET /s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_Of2PRg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 37800 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 23:21:57 GMT expires: Fri, 29 Nov 2024 23:21:57 GMT cache-control: public, max-age=31536000 age: 326649 last-modified: Wed, 13 Sep 2023 23:30:02 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrlnAOW4.woff2	216.58.207.227	200 OK	41 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrlnAOW4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 41220, version 1.0\012- data Size 41 kB (41220 bytes) Hash c8d3e0f677ac007c9fadba09a1c4c7bc 83389d80fdf1bee58e69db1f38968404eac57846 a9ed2dc63202e8e1e06cc22eb23d39212a36034d90dbc76274ec7f85deb1d3c2 HTTP Headers GET /s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrlnAOW4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 41220 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 10:04:15 GMT expires: Fri, 29 Nov 2024 10:04:15 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Sep 2023 00:19:35 GMT content-type: font/woff2 age: 374511 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vqPRg.woff2	216.58.207.227	200 OK	38 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vqPRg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 37632, version 1.0\012- data Size 38 kB (37632 bytes) Hash 1ffaa430deb705df128762d9990f8efe 847f8ca1cf199a602aef0ef42aebf5f825584e19 2706dfabcbaaf2dee90c3a10c168d5f5691ce787dcae9e77cd038f66b08fc4ba HTTP Headers GET /s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vqPRg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 37632 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 05:13:21 GMT expires: Fri, 29 Nov 2024 05:13:21 GMT cache-control: public, max-age=31536000 age: 391965 last-modified: Thu, 14 Sep 2023 00:57:05 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/spectral/v13/rnCr-xNNww_2s0amA-M7.woff2	216.58.207.227	200 OK	55 kB
URL GET HTTP/3 fonts.gstatic.com/s/spectral/v13/rnCr-xNNww_2s0amA-M7.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 55204, version 1.0\012- data Size 55 kB (55204 bytes) Hash 303f0dee25055ea1a1c53f8c44b83edf 552ab5948d02d19ff851777d58dbe0dcf836681c db8faffb5e867554c1ab9b0edd0e11e8b5a3d4b9842d860a11646371c2b84d79 HTTP Headers GET /s/spectral/v13/rnCr-xNNww_2s0amA-M7.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 55204 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:52:44 GMT expires: Fri, 29 Nov 2024 04:52:44 GMT cache-control: public, max-age=31536000 age: 393202 last-modified: Tue, 30 Aug 2022 22:22:23 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/spectral/v13/rnCt-xNNww_2s0amA9M8kng.woff2	216.58.207.227	200 OK	58 kB
URL GET HTTP/3 fonts.gstatic.com/s/spectral/v13/rnCt-xNNww_2s0amA9M8kng.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 58200, version 1.0\012- data Size 58 kB (58200 bytes) Hash 895a08a8f8de0b5d91f3f6999243b76a 3fb36cec53fdfd5ce97cbd34fdd0a6e5d8255b50 aada1ac84edc0a0f678a12e87b835b9c5a71fc4cec407ca0420c6561cb53a439 HTTP Headers GET /s/spectral/v13/rnCt-xNNww_2s0amA9M8kng.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 58200 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:57:14 GMT expires: Fri, 29 Nov 2024 04:57:14 GMT cache-control: public, max-age=31536000 age: 392932 last-modified: Tue, 30 Aug 2022 22:19:24 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/spectral/v13/rnCs-xNNww_2s0amA9uCt13D.woff2	216.58.207.227	200 OK	61 kB
URL GET HTTP/3 fonts.gstatic.com/s/spectral/v13/rnCs-xNNww_2s0amA9uCt13D.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 60648, version 1.0\012- data Size 61 kB (60648 bytes) Hash 0e46400f3e919d0cb74068d448d9daa9 be7343c9cfb3ce5388f38f2a8d302ed8ae8c7d6d 9fc62f0847bbeb2b050932bc04e8d60087955e2bbe3659fbe89408f4c62f2f7d HTTP Headers GET /s/spectral/v13/rnCs-xNNww_2s0amA9uCt13D.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 60648 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:59:05 GMT expires: Fri, 29 Nov 2024 04:59:05 GMT cache-control: public, max-age=31536000 age: 392821 last-modified: Tue, 30 Aug 2022 23:19:54 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrmAB-W4.woff2	216.58.207.227	200 OK	42 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrmAB-W4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 41584, version 1.0\012- data Size 42 kB (41584 bytes) Hash 71151932fdcc1ac7e09bf80a592dda78 7049019d7fa6d570ca9b57525224313656b36e8d 68c3f849762d80f759a7702f52b6f9c432173951d7d5e830c98cedfdeba5e53e HTTP Headers GET /s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrmAB-W4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 41584 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 15:10:12 GMT expires: Thu, 28 Nov 2024 15:10:12 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Sep 2023 01:09:29 GMT content-type: font/woff2 age: 442554 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotp6I.woff2	216.58.207.227	200 OK	65 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotp6I.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 64888, version 1.0\012- data Size 65 kB (64888 bytes) Hash 2334c1055671c09e04bdf4e0ff516b06 c944288e5e4db93b86a8272e9dc5a7141a84cf1b cb1d125975da6683e4db07394e5035b0cde2782b389341bb577d2a274262e839 HTTP Headers GET /s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotp6I.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 64888 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 12:50:32 GMT expires: Fri, 29 Nov 2024 12:50:32 GMT cache-control: public, max-age=31536000 last-modified: Mon, 03 Apr 2023 17:29:13 GMT content-type: font/woff2 age: 364534 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEls0qp6I.woff2	216.58.207.227	200 OK	72 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEls0qp6I.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 72264, version 1.0\012- data Size 72 kB (72264 bytes) Hash 6d84e4ef296f36703dc075606d0368dd bb24ce1f7c7f3a1ff54f9b40899bf7bb17da3226 9d81818ee4513a1dbc74d17b8dcec5aa730a70ceca96b75a68ad007554e01cc2 HTTP Headers GET /s/robotoserif/v13/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEls0qp6I.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 72264 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:55:34 GMT expires: Fri, 29 Nov 2024 04:55:34 GMT cache-control: public, max-age=31536000 age: 393032 last-modified: Mon, 03 Apr 2023 17:35:10 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotoserif/v13/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuT-R8AA.woff2	216.58.207.227	200 OK	66 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotoserif/v13/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuT-R8AA.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 65812, version 1.0\012- data Size 66 kB (65812 bytes) Hash 8c92254ede49ab537884a853e7ac56c3 eb98395fd58e3d9433502fe0c11daca0d2963c0c 7c7c81ec43ffc35a71567094e98836d7545681a399618661c8f1eb202b580206 HTTP Headers GET /s/robotoserif/v13/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuT-R8AA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 65812 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:53:38 GMT expires: Fri, 29 Nov 2024 04:53:38 GMT cache-control: public, max-age=31536000 age: 393148 last-modified: Mon, 03 Apr 2023 19:14:16 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/robotoserif/v13/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuqON8AA.woff2	216.58.207.227	200 OK	73 kB
URL GET HTTP/3 fonts.gstatic.com/s/robotoserif/v13/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuqON8AA.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 72784, version 1.0\012- data Size 73 kB (72784 bytes) Hash 583001ad11a97ba3804a9a3a221b8a5a 241ed8dc2de73915b7a1c483c8093d3e7ac68710 8cc3cce7b52175a0e42f8b92d45322ebaa709d227f9ec52643e75410fda94b06 HTTP Headers GET /s/robotoserif/v13/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuqON8AA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 72784 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:12:03 GMT expires: Fri, 29 Nov 2024 04:12:03 GMT cache-control: public, max-age=31536000 last-modified: Mon, 03 Apr 2023 19:14:16 GMT content-type: font/woff2 age: 395643 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/spectral/v13/rnCu-xNNww_2s0amA9M8qsHDafY.woff2	216.58.207.227	200 OK	64 kB
URL GET HTTP/3 fonts.gstatic.com/s/spectral/v13/rnCu-xNNww_2s0amA9M8qsHDafY.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 64164, version 1.0\012- data Size 64 kB (64164 bytes) Hash 8c548f65e1dc239d9f8f4f3f52457e59 9a1f4b732127bb53f1f17ea6c905a886a456fd62 1382decc32857b4dc59faafdf57088d9f6917b18ece82cc47f84010224008c05 HTTP Headers GET /s/spectral/v13/rnCu-xNNww_2s0amA9M8qsHDafY.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 64164 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 04:58:25 GMT expires: Fri, 29 Nov 2024 04:58:25 GMT cache-control: public, max-age=31536000 age: 392861 last-modified: Tue, 30 Aug 2022 22:49:44 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	prebidserver.pixfuture.com/openrtb2/auction	137.184.242.150	200 OK	543 B
URL POST HTTP/1.1 prebidserver.pixfuture.com/openrtb2/auction IP 137.184.242.150:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (542) Size 543 B (543 bytes) Hash 60a7e10b61d68519fa937378a4e3f24d 78c3a85b75e8bf3429fccb4de1987f548f7053cf 113cd09e50420eddb9e9295a747deab77c811ec5f3c50a1c054d78219c2ba07e HTTP Headers `POST /openrtb2/auction HTTP/1.1 Host: prebidserver.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1874 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-origin: https://daily-horoscope.us cache-control: no-cache, no-store, must-revalidate content-type: application/json expires: 0 pragma: no-cache vary: Origin x-prebid: pbs-go/unknown date: Mon, 04 Dec 2023 18:06:06 GMT content-length: 543`

	js.justservices.cc/digest/2.0.0/img/just-power.png	34.199.157.218	200 OK	1.2 kB
URL GET HTTP/2 js.justservices.cc/digest/2.0.0/img/just-power.png IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerZeroSSL Subjectjs.justservices.cc Fingerprint95:C0:1A:22:90:24:13:D1:07:A6:71:F3:21:16:41:D2:B1:EF:A7:F1 ValidityMon, 20 Nov 2023 00:00:00 GMT - Sun, 18 Feb 2024 23:59:59 GMT File type PNG image data, 200 x 40, 8-bit colormap, non-interlaced\012- data Size 1.2 kB (1238 bytes) Hash 5636ef4c823c2c4c92eb1f0443a63d79 421954fb008030ef2cc9356afc72baf9ef3c72ee e0ca09bfc3535c0aff24930f807d82fe16612f885e75097bc521e45a68bff525 HTTP Headers `GET /digest/2.0.0/img/just-power.png HTTP/1.1 Host: js.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.justservices.cc/digest/2.0.0/css/style.min.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:06 GMT content-type: image/png content-length: 1238 last-modified: Mon, 30 Oct 2023 09:37:26 GMT etag: "653f7956-4d6" expires: Sat, 01 Jun 2024 18:06:06 GMT cache-control: max-age=15552000 accept-ranges: bytes strict-transport-security: max-age=63072000 X-Firefox-Spdy: h2`

	ioadserve.com/siteAds.js	34.197.163.17	200 OK	1.1 kB
URL GET HTTP/1.1 ioadserve.com/siteAds.js IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type C source, ASCII text Size 1.1 kB (1121 bytes) Hash 6733f28f2d0dd08db3bc0e0d046b1b8b c7a4234dc0b5de2f64ba6f0e5eb8a8c729b2ba4c 4541ea998f96ca8b30aff5e46506a876dbefadd52a2d3535ea0ab6366efe66e8 HTTP Headers `GET /siteAds.js HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:06 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 Last-Modified: Tue, 14 May 2019 13:50:02 GMT ETag: "461-588d94f409f14" Accept-Ranges: bytes Content-Length: 1121 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: text/javascript`

	onetag-geo.s-onetag.com/	143.204.55.96	200 OK	555 B
URL GET HTTP/2 onetag-geo.s-onetag.com/ IP 143.204.55.96:443 ASN #16509 AMAZON-02 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subject.s-onetag.com Fingerprint16:E8:8E:F6:16:D5:F6:4C:D2:F5:A0:A6:70:23:FF:E3:EA:22:DE:E1 ValiditySat, 04 Nov 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (452) Size 555 B (555 bytes) Hash 200d5eba90a69db7b4ed019c4a8668e1 cad86d59141bfc421802b55294225dc78033c91f 6448132c9d86748cc71e9e2d5b4f0241a5dd9385a2baadcf99dc6675fd7870bf HTTP Headers `GET / HTTP/1.1 Host: onetag-geo.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/json content-length: 555 date: Mon, 04 Dec 2023 18:05:49 GMT x-amzn-requestid: 17b1d40b-b6ed-45ab-9c2e-d19ad07d15ba access-control-allow-origin: * x-amz-apigw-id: Pbg3nFBMCYcErgg= cache-control: max-age=86400 via: 1.1 8fd360cd20d33fa1400394ae41746f66.cloudfront.net (CloudFront), 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront) x-cache: Hit from cloudfront x-amz-cf-pop: FRA56-C2, OSL50-C1 x-amz-cf-id: eEiBiXPJH4BQ28oQWxDsWPnoGOES8GnZDp8yZXS6DIXm6F5KmZlJFg== age: 17 X-Firefox-Spdy: h2

	cdn.pixfuture.com/pxft_iel.js	104.26.7.68	200 OK	5.0 kB
URL GET HTTP/2 cdn.pixfuture.com/pxft_iel.js IP 104.26.7.68:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE4:41:E5:09:43:A1:11:6E:75:2D:45:1A:68:2F:2F:EB:DA:2E:D9:71 ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (5020), with no line terminators Size 5.0 kB (5020 bytes) Hash 7afc7a46a0b0e60c6ed63f2a501805ee 3c8738f3be1cb2d92cff2c6cb35c0cd99c4cd767 22de3cfef032de2d4fdb9617e21c37a4e1b94d3c388eacf661428139aac3e19c HTTP Headers `GET /pxft_iel.js HTTP/1.1 Host: cdn.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:06 GMT content-type: application/javascript access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type access-control-allow-methods: GET, POST, OPTIONS cache-control: public, max-age=172800, no-transform cf-bgj: minify etag: W/"63935650-139c" expires: Tue, 05 Dec 2023 06:36:23 GMT last-modified: Fri, 09 Dec 2022 15:37:52 GMT vary: Accept-Encoding cf-cache-status: HIT age: 51212 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P3Pv65bWZYtbq47pgyN4PGqyCrDRhIvAV5eLFyNuUlNt%2Btw5YJC%2Fo%2Bvuoiuh5pHREEapCgwKQIRZuuGFl6JLro9FzHobK5sRzfecWhhrajVatmvkL%2BhRvTXhcgE%2FNMfektoL"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8305fb3b7c5eb4f4-OSL X-Firefox-Spdy: h2

	signal-segments.s-onetag.com/desktop/daily-horoscope.us/%2Ftexts-unsubscribe	54.230.111.51	404 Not Found	0 B
URL GET HTTP/2 signal-segments.s-onetag.com/desktop/daily-horoscope.us/%2Ftexts-unsubscribe IP 54.230.111.51:443 ASN #16509 AMAZON-02 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subject.s-onetag.com Fingerprint16:E8:8E:F6:16:D5:F6:4C:D2:F5:A0:A6:70:23:FF:E3:EA:22:DE:E1 ValiditySat, 04 Nov 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /desktop/daily-horoscope.us/%2Ftexts-unsubscribe HTTP/1.1 Host: signal-segments.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found content-type: application/json content-length: 0 date: Mon, 04 Dec 2023 18:05:49 GMT cache-control: max-age=86400, public access-control-allow-origin: * apigw-requestid: Pbg3ngSRiYcEJEA= x-cache: Error from cloudfront via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 4bOspDtLyqiX6ISZBVanCkJ6VYaUAtakEBq3EP00Xinw_z-lUXYOlA== age: 17 X-Firefox-Spdy: h2`

	ioadserve.com/siteAds.js	34.197.163.17	200 OK	1.1 kB
URL GET HTTP/1.1 ioadserve.com/siteAds.js IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type C source, ASCII text Size 1.1 kB (1121 bytes) Hash 6733f28f2d0dd08db3bc0e0d046b1b8b c7a4234dc0b5de2f64ba6f0e5eb8a8c729b2ba4c 4541ea998f96ca8b30aff5e46506a876dbefadd52a2d3535ea0ab6366efe66e8 HTTP Headers `GET /siteAds.js HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:06 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 Last-Modified: Tue, 14 May 2019 13:50:02 GMT ETag: "461-588d94f409f14" Accept-Ranges: bytes Content-Length: 1121 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: text/javascript`

	res.cloudinary.com/iagetech/image/upload/v1603877686/justcontent.services/img/articles/preview/806.jpg	23.38.200.38	200 OK	54 kB
URL GET HTTP/2 res.cloudinary.com/iagetech/image/upload/v1603877686/justcontent.services/img/articles/preview/806.jpg IP 23.38.200.38:443 ASN #16625 AKAMAI-AS Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoDaddy.com, Inc. Subject.cloudinary.com Fingerprint01:0C:F9:FB:A0:9B:1F:A9:9F:A5:23:AE:17:BD:66:42:FC:96:61:89 ValidityMon, 05 Dec 2022 10:19:45 GMT - Sat, 30 Dec 2023 19:57:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x500, components 3\012- data Size 54 kB (53575 bytes) Hash eab0f3c21af27cf5aef5007341454266 78a706214deedbd55bfb0d7686f887a19ed63e8e 5600b7b766edd1cb7ca3b10f324a8bf9e52cfee96e9ae3c7abcbb5b73304efb4 HTTP Headers `GET /iagetech/image/upload/v1603877686/justcontent.services/img/articles/preview/806.jpg HTTP/1.1 Host: res.cloudinary.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg content-length: 53575 etag: "eab0f3c21af27cf5aef5007341454266" last-modified: Wed, 28 Oct 2020 09:34:47 GMT date: Mon, 04 Dec 2023 18:06:06 GMT cache-control: public, no-transform, immutable, max-age=2592000 access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options access-control-allow-origin: * accept-ranges: bytes timing-allow-origin: * server: Cloudinary strict-transport-security: max-age=604800 x-content-type-options: nosniff server-timing: cld-akam;dur=233;cpu=95;start=2023-12-04T18:06:06.638Z;desc=miss,rtt;dur=2,content-info;desc="width=1000,height=500",cloudinary;dur=48;start=2023-12-04T18:06:06.755Z X-Firefox-Spdy: h2

	onetag-sys.com/usync/?redir=https%3A%2F%2Fprebidserver.pixfuture.com%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D	51.89.9.253	302 Found	0 B
URL GET HTTP/2 onetag-sys.com/usync/?redir=https%3A%2F%2Fprebidserver.pixfuture.com%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D IP 51.89.9.253:443 ASN #16276 OVH SAS Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.onetag-sys.com Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /usync/?redir=https%3A%2F%2Fprebidserver.pixfuture.com%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1 Host: onetag-sys.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found cache-control: no-store location: https://prebidserver.pixfuture.com/setuid?bidder=onetag&gdpr=&gdpr_consent=&f=b&uid= content-length: 0 strict-transport-security: max-age=15552000 alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900 X-Firefox-Spdy: h2`

	ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?769	34.197.163.17	200 OK	1.5 kB
URL GET HTTP/1.1 ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?769 IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type ASCII text Size 1.5 kB (1495 bytes) Hash 58fff6b17e14c372110b71034c1737a8 ab3277b160e1a506128a406f823ac3656ec8458c f214485a62a639d3bd70f25aea05b3a7cdf191acf6be5cc7267a885a51553d30 HTTP Headers `GET /siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?769 HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:06 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 X-Powered-By: PHP/7.0.33 Content-Length: 1495 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: application/javascript`

	signal-beacon.s-onetag.com/beacon.min.js	143.204.55.41	200 OK	7.2 kB
URL GET HTTP/2 signal-beacon.s-onetag.com/beacon.min.js IP 143.204.55.41:443 ASN #16509 AMAZON-02 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subject.s-onetag.com Fingerprint16:E8:8E:F6:16:D5:F6:4C:D2:F5:A0:A6:70:23:FF:E3:EA:22:DE:E1 ValiditySat, 04 Nov 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type C++ source, ASCII text, with very long lines (1900) Size 7.2 kB (7212 bytes) Hash 565eb88b90415391668a5cb7cfb4557a a7d074dfd994f6ed3317551db84b21d3eef10d32 b0a16378462c7afcb27d8e14cf50e2cd3a8980af2895d20622640b096920719e HTTP Headers `GET /beacon.min.js HTTP/1.1 Host: signal-beacon.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript last-modified: Tue, 13 Jun 2023 14:58:24 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: bto3eb0o1YxjKQVMPWidTjdqvOBrBN1F server: AmazonS3 content-encoding: gzip date: Mon, 04 Dec 2023 06:08:23 GMT cache-control: max-age=86400 etag: W/"565eb88b90415391668a5cb7cfb4557a" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: ORyuSEd0NVaUBcnldLJUzYK28b2iH7PX2qlO27hOuBm6fmlHEGYdHw== age: 43096 X-Firefox-Spdy: h2

	ioadserve.com/siteAds.js	34.197.163.17	200 OK	1.1 kB
URL GET HTTP/1.1 ioadserve.com/siteAds.js IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type C source, ASCII text Size 1.1 kB (1121 bytes) Hash 6733f28f2d0dd08db3bc0e0d046b1b8b c7a4234dc0b5de2f64ba6f0e5eb8a8c729b2ba4c 4541ea998f96ca8b30aff5e46506a876dbefadd52a2d3535ea0ab6366efe66e8 HTTP Headers `GET /siteAds.js HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:07 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 Last-Modified: Tue, 14 May 2019 13:49:54 GMT ETag: "461-588d94ec158d6" Accept-Ranges: bytes Content-Length: 1121 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/javascript`

	s3.amazonaws.com/iores/165411ef6ee0ea	52.216.209.120	200 OK	56 kB
URL GET HTTP/1.1 s3.amazonaws.com/iores/165411ef6ee0ea IP 52.216.209.120:443 ASN #0 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subjects3.amazonaws.com FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6 ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 300x250, components 3\012- data Size 56 kB (55669 bytes) Hash f248881e13db42f925058aa7fb83ea95 d81d062be07773927c59b0406047e2e177276348 982fb244c913ffc2a112a6ae0fd7b34414b2c87921e7a0e4bfa2574b57de5db0 HTTP Headers `GET /iores/165411ef6ee0ea HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: C/aXImLMXFMkRQ+zoAKRM+iJkbdAuVxkOkEUAmO3mgrija3NpaQYU0scRVmuqaHkOrmyRGa78Tk= x-amz-request-id: KDFCA4SV05J8TTNF Date: Mon, 04 Dec 2023 18:06:08 GMT Last-Modified: Tue, 31 Oct 2023 15:36:24 GMT ETag: "f248881e13db42f925058aa7fb83ea95" x-amz-server-side-encryption: AES256 x-amz-meta-user: 1733 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 55669`

	s3.amazonaws.com/iosite/dispi.png	52.216.209.120	200 OK	3.2 kB
URL GET HTTP/1.1 s3.amazonaws.com/iosite/dispi.png IP 52.216.209.120:443 ASN #0 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subjects3.amazonaws.com FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6 ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT File type PNG image data, 100 x 101, 8-bit/color RGBA, non-interlaced\012- data Size 3.2 kB (3171 bytes) Hash d410dc13c97e66d42899f0b4755b9865 661f71825d64b4a1486130855f7c7a21fc2a2be1 47a6e9b0fb444a85b41a730599660ec159b2fd77d4315eb82b346ba8541a27c6 HTTP Headers `GET /iosite/dispi.png HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: 39uoLBamzbQdAvyDXLTnOam+Qb8TyZCbWQQylI28Dfch8ZhLLQqf+Aqxd0sEiV2So5EwSsF0GZI= x-amz-request-id: KDF8AY3C4W13WFDT Date: Mon, 04 Dec 2023 18:06:08 GMT Last-Modified: Mon, 22 Apr 2019 10:04:50 GMT ETag: "d410dc13c97e66d42899f0b4755b9865" Accept-Ranges: bytes Content-Type: image/png Server: AmazonS3 Content-Length: 3171`

	ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?251	34.197.163.17	200 OK	1.7 kB
URL GET HTTP/1.1 ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?251 IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type ASCII text Size 1.7 kB (1661 bytes) Hash 723f47b87bc7821c86a8562cbd290598 1403cfc6e4fefd407de2a84bbe2fc3884f809dd6 a6dff7a98f5bf19ea6b6260737cf7184fe2a9e63628fc9fdeafafd945deacf90 HTTP Headers `GET /siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?251 HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:07 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 X-Powered-By: PHP/7.0.33 Content-Length: 1661 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/javascript`

	ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?661	34.197.163.17	200 OK	1.6 kB
URL GET HTTP/1.1 ioadserve.com/siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?661 IP 34.197.163.17:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerDigiCert Inc Subject.ioadserve.com Fingerprint73:FB:1C:90:ED:F6:88:87:DB:AA:D6:7F:A5:C2:2C:57:D7:7F:0D:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT File type ASCII text Size 1.6 kB (1643 bytes) Hash 4fe70b53bcaf5e33a86f96eb0a4bf232 3185a2bc637b28d60371bfe416da90fb9ee4edb4 0aa3d8de6faa6ada402450bb30e36cb3fbd9260d1eb3354f4a5138e3e4e6d7ca HTTP Headers `GET /siteAds/io_6036b446cccd7/1260/300/250/daily-horoscope.us?661 HTTP/1.1 Host: ioadserve.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 04 Dec 2023 18:06:07 GMT Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33 X-Powered-By: PHP/7.0.33 Content-Length: 1643 Keep-Alive: timeout=5, max=95 Connection: Keep-Alive Content-Type: application/javascript`

	served-by.pixfuture.com/www/headerbid/library/tracking/tracking.php	161.35.253.218	200 OK	0 B
URL POST HTTP/1.1 served-by.pixfuture.com/www/headerbid/library/tracking/tracking.php IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /www/headerbid/library/tracking/tracking.php HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 278 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK access-control-allow-origin: * cache-control: no-cache, no-store, must-revalidate expires: 0 pragma: no-cache date: Mon, 04 Dec 2023 18:06:07 GMT content-length: 0`

	s3.amazonaws.com/iores/161d886e768bc1	52.216.209.120	200 OK	50 kB
URL GET HTTP/1.1 s3.amazonaws.com/iores/161d886e768bc1 IP 52.216.209.120:443 ASN #0 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subjects3.amazonaws.com FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6 ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x250, components 3\012- data Size 50 kB (50491 bytes) Hash 92279eaf229619d1c026d2642f59ef7a 0722786ffb4748cb546e1b942537358a84a9d5e8 35e52ac2120588e1c4b78091178bbd21579fde381505816afada04320f375079 HTTP Headers `GET /iores/161d886e768bc1 HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: 7wMZhAVXVmGMlQ5u5YTiBihTUr7beZny1AzRIecyrgxxsytu3sPBi1GR83/RL2hcuPpQVB1of2Q= x-amz-request-id: KDF4XMSHQJEWMY7Q Date: Mon, 04 Dec 2023 18:06:08 GMT Last-Modified: Fri, 07 Jan 2022 18:31:04 GMT ETag: "92279eaf229619d1c026d2642f59ef7a" x-amz-meta-user: 90 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 50491`

	s3.amazonaws.com/iosite/dispi.png	52.216.209.120	200 OK	3.2 kB
URL GET HTTP/1.1 s3.amazonaws.com/iosite/dispi.png IP 52.216.209.120:443 ASN #0 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subjects3.amazonaws.com FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6 ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT File type PNG image data, 100 x 101, 8-bit/color RGBA, non-interlaced\012- data Size 3.2 kB (3171 bytes) Hash d410dc13c97e66d42899f0b4755b9865 661f71825d64b4a1486130855f7c7a21fc2a2be1 47a6e9b0fb444a85b41a730599660ec159b2fd77d4315eb82b346ba8541a27c6 HTTP Headers `GET /iosite/dispi.png HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: XwuA1Z64ya5X9tzgFNJqq9DDrVT0y1mGZzNJzOihpJ7vBpGeM039LS7jI94oKR+l5s8LsE8LGcM= x-amz-request-id: KDFARFM7DTCPBX36 Date: Mon, 04 Dec 2023 18:06:08 GMT Last-Modified: Mon, 22 Apr 2019 10:04:50 GMT ETag: "d410dc13c97e66d42899f0b4755b9865" Accept-Ranges: bytes Content-Type: image/png Server: AmazonS3 Content-Length: 3171`

	s3.amazonaws.com/iosite/dispi.png	52.216.209.120	200 OK	3.2 kB
URL GET HTTP/1.1 s3.amazonaws.com/iosite/dispi.png IP 52.216.209.120:443 ASN #0 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subjects3.amazonaws.com FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6 ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT File type PNG image data, 100 x 101, 8-bit/color RGBA, non-interlaced\012- data Size 3.2 kB (3171 bytes) Hash d410dc13c97e66d42899f0b4755b9865 661f71825d64b4a1486130855f7c7a21fc2a2be1 47a6e9b0fb444a85b41a730599660ec159b2fd77d4315eb82b346ba8541a27c6 HTTP Headers `GET /iosite/dispi.png HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: XZpBeBqze7kceRwe+sMaL/uUkft91VQIEg2Kmf1YLjYwUlSxEvypUbRf8H4Xe1pJwT1izv0SqaQ= x-amz-request-id: KDF3XW599X0FG8BB Date: Mon, 04 Dec 2023 18:06:08 GMT Last-Modified: Mon, 22 Apr 2019 10:04:50 GMT ETag: "d410dc13c97e66d42899f0b4755b9865" Accept-Ranges: bytes Content-Type: image/png Server: AmazonS3 Content-Length: 3171`

	served-by.pixfuture.com/www/headerbid/library/tracking/tracking.php	161.35.253.218	200 OK	0 B
URL POST HTTP/1.1 served-by.pixfuture.com/www/headerbid/library/tracking/tracking.php IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /www/headerbid/library/tracking/tracking.php HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 278 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK access-control-allow-origin: * cache-control: no-cache, no-store, must-revalidate expires: 0 pragma: no-cache date: Mon, 04 Dec 2023 18:06:07 GMT content-length: 0`

	s3.amazonaws.com/iores/16356ddd6e75a2	52.216.209.120	200 OK	47 kB
URL GET HTTP/1.1 s3.amazonaws.com/iores/16356ddd6e75a2 IP 52.216.209.120:443 ASN #0 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subjects3.amazonaws.com FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6 ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 300x250, components 3\012- data Size 47 kB (46631 bytes) Hash 833cbc749ea0d393d414b61fc861aa87 4e40062a72dc08020fa65d54f9a828e413df283a da717477918002210a09c70eff3a2cc16b45f73903a36da3d079bbd8cd23427c HTTP Headers `GET /iores/16356ddd6e75a2 HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: vY7MRl6PbV6JSA0TtLAMHnNLswtqsbzkswqe/aCDgf2nxKSzZxdDnIoqrcQjI5/HtzwcQRymujg= x-amz-request-id: KDFF0SFKN095Z2FS Date: Mon, 04 Dec 2023 18:06:08 GMT Last-Modified: Mon, 24 Oct 2022 18:47:51 GMT ETag: "833cbc749ea0d393d414b61fc861aa87" x-amz-server-side-encryption: AES256 x-amz-meta-user: 90 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 46631`

	served-by.pixfuture.com/www/headerbid/library/tracking/tracking.php	161.35.253.218	200 OK	0 B
URL POST HTTP/1.1 served-by.pixfuture.com/www/headerbid/library/tracking/tracking.php IP 161.35.253.218:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /www/headerbid/library/tracking/tracking.php HTTP/1.1 Host: served-by.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 278 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK access-control-allow-origin: * cache-control: no-cache, no-store, must-revalidate expires: 0 pragma: no-cache date: Mon, 04 Dec 2023 18:06:07 GMT content-length: 0`

	region1.analytics.google.com/g/collect?v=2&tid=G-Q5R676DMGQ&gtm=45je3bt0v9126671330&_p=1701713168710&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=604891606.1701713169&ul=en-us&sr=1280x1024&_s=2&sid=1701713169&sct=1&seg=0&dl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&dr=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&dt=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&en=show&_ee=1&ep.event_name=show&ep.event_category=ManychatBanner&ep.event_label=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Fjuid%3Dd902aab0d93a401fa3de792405841af1%26amp%3Bppid%3Ddh%26amp%3Brefid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26amp%3Butm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26amp%3Butm_medium%3Dsms%26amp%3Butm_source%3DdhlittlebrookcoregLBM1051022w4022&tfd=6492	216.239.34.36	204 No Content	0 B
URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-Q5R676DMGQ&gtm=45je3bt0v9126671330&_p=1701713168710&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=604891606.1701713169&ul=en-us&sr=1280x1024&_s=2&sid=1701713169&sct=1&seg=0&dl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&dr=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&dt=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&en=show&_ee=1&ep.event_name=show&ep.event_category=ManychatBanner&ep.event_label=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Fjuid%3Dd902aab0d93a401fa3de792405841af1%26amp%3Bppid%3Ddh%26amp%3Brefid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26amp%3Butm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26amp%3Butm_medium%3Dsms%26amp%3Butm_source%3DdhlittlebrookcoregLBM1051022w4022&tfd=6492 IP 216.239.34.36:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34 ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-Q5R676DMGQ&gtm=45je3bt0v9126671330&_p=1701713168710&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=604891606.1701713169&ul=en-us&sr=1280x1024&_s=2&sid=1701713169&sct=1&seg=0&dl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&dr=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&dt=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&en=show&_ee=1&ep.event_name=show&ep.event_category=ManychatBanner&ep.event_label=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Fjuid%3Dd902aab0d93a401fa3de792405841af1%26amp%3Bppid%3Ddh%26amp%3Brefid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26amp%3Butm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26amp%3Butm_medium%3Dsms%26amp%3Butm_source%3DdhlittlebrookcoregLBM1051022w4022&tfd=6492 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers `HTTP/3 204 No Content access-control-allow-origin: https://daily-horoscope.us date: Mon, 04 Dec 2023 18:06:09 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	connect-metrics-collector.s-onetag.com/metrics	99.83.181.31		0 B
URL connect-metrics-collector.s-onetag.com/metrics IP 99.83.181.31:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /metrics HTTP/1.1 Host: connect-metrics-collector.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 527 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:17 GMT content-length: 0 vary: Origin access-control-allow-origin: * X-Firefox-Spdy: h2`

	signal-metrics-collector-beta.s-onetag.com/metrics	99.83.181.31		0 B
URL signal-metrics-collector-beta.s-onetag.com/metrics IP 99.83.181.31:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /metrics HTTP/1.1 Host: signal-metrics-collector-beta.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 506 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:17 GMT content-length: 0 vary: Origin access-control-allow-origin: * X-Firefox-Spdy: h2`

	play.google.com/log?format=json&hasfast=true&authuser=0	142.250.74.14	200 OK	131 B
URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0 IP 142.250.74.14:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type JSON data\012- , ASCII text, with no line terminators Size 131 B (131 bytes) Hash ca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358 HTTP Headers POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 Host: play.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ X-Goog-AuthUser: 0 Content-Type: application/x-www-form-urlencoded;charset=utf-8 Content-Length: 3175 Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK access-control-allow-origin: https://docs.google.com cross-origin-resource-policy: cross-origin access-control-allow-credentials: true access-control-allow-headers: X-Playlog-Web content-type: text/plain; charset=UTF-8 content-encoding: gzip date: Mon, 04 Dec 2023 18:06:22 GMT server: Playlog cache-control: private content-length: 131 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+551; expires=Wed, 03-Dec-2025 18:06:22 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 expires: Mon, 04 Dec 2023 18:06:22 GMT

	signal-metrics-collector-beta.s-onetag.com/metrics	99.83.181.31		0 B
URL signal-metrics-collector-beta.s-onetag.com/metrics IP 99.83.181.31:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /metrics HTTP/1.1 Host: signal-metrics-collector-beta.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 504 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:22 GMT content-length: 0 vary: Origin access-control-allow-origin: * X-Firefox-Spdy: h2`

	play.google.com/log?format=json&hasfast=true&authuser=0	142.250.74.14	200 OK	131 B
URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0 IP 142.250.74.14:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type JSON data\012- , ASCII text, with no line terminators Size 131 B (131 bytes) Hash ca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358 HTTP Headers POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 Host: play.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ X-Goog-AuthUser: 0 Content-Type: application/x-www-form-urlencoded;charset=utf-8 Content-Length: 3864 Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK access-control-allow-origin: https://docs.google.com cross-origin-resource-policy: cross-origin access-control-allow-credentials: true access-control-allow-headers: X-Playlog-Web content-type: text/plain; charset=UTF-8 content-encoding: gzip date: Mon, 04 Dec 2023 18:06:22 GMT server: Playlog cache-control: private content-length: 131 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+257; expires=Wed, 03-Dec-2025 18:06:22 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 expires: Mon, 04 Dec 2023 18:06:22 GMT

	cdn.pixfuture.com/cdn-cgi/rum?	104.26.7.68	204 No Content	0 B
URL POST HTTP/2 cdn.pixfuture.com/cdn-cgi/rum? IP 104.26.7.68:443 ASN #13335 CLOUDFLARENET Requested by https://cdn.pixfuture.com/pixf_sync.html Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE4:41:E5:09:43:A1:11:6E:75:2D:45:1A:68:2F:2F:EB:DA:2E:D9:71 ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /cdn-cgi/rum? HTTP/1.1 Host: cdn.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 451 Origin: https://cdn.pixfuture.com DNT: 1 Connection: keep-alive Referer: https://cdn.pixfuture.com/pixf_sync.html Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 204 No Content date: Mon, 04 Dec 2023 18:06:22 GMT access-control-allow-origin: https://cdn.pixfuture.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 8305fb9e8e06b4f4-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	bat.bing.com/actionp/0?ti=73004260&Ver=2&mid=b0436c0b-87f9-4c61-8b6c-401519a978cd&sid=cdc7f94092cf11eeb4502991680c7e46&vid=cdc806d092cf11ee8ea7e54eaa75ad64&vids=1&msclkid=N&evt=pageHide	204.79.197.200		0 B
URL bat.bing.com/actionp/0?ti=73004260&Ver=2&mid=b0436c0b-87f9-4c61-8b6c-401519a978cd&sid=cdc7f94092cf11eeb4502991680c7e46&vid=cdc806d092cf11ee8ea7e54eaa75ad64&vids=1&msclkid=N&evt=pageHide IP 204.79.197.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /actionp/0?ti=73004260&Ver=2&mid=b0436c0b-87f9-4c61-8b6c-401519a978cd&sid=cdc7f94092cf11eeb4502991680c7e46&vid=cdc806d092cf11ee8ea7e54eaa75ad64&vids=1&msclkid=N&evt=pageHide HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers HTTP/2 204 No Content cache-control: no-cache, must-revalidate pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT set-cookie: MUID=0A3F5E5AB41A63A908654D87B54D6229; domain=.bing.com; expires=Sat, 28-Dec-2024 18:06:22 GMT; path=/; SameSite=None; Secure; Priority=High; strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: F05CC96638DA47FB916D9BB52FDF1820 Ref B: OSL30EDGE0310 Ref C: 2023-12-04T18:06:22Z date: Mon, 04 Dec 2023 18:06:22 GMT X-Firefox-Spdy: h2

	docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true	142.250.74.142	200 OK	46 kB
URL GET HTTP/2 docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true IP 142.250.74.142:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type Size 46 kB (45910 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true HTTP/1.1 Host: docs.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html; charset=utf-8 x-robots-tag: noindex, nofollow, nosnippet cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 04 Dec 2023 18:06:03 GMT content-encoding: gzip p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, base-uri 'self';object-src 'none';report-uri https://csp.withgoogle.com/csp/forms/prod;script-src 'nonce-8g9Sq_3uVC83sCtNT-A7qw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval' referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-xss-protection: 1; mode=block server: GSE set-cookie: S=spreadsheet_forms=3dp_tf5UcTYagAWONoYqBTOsC4uAOjcFtchcqjtbycw; Domain=.docs.google.com; Expires=Mon, 04-Dec-2023 19:06:03 GMT; Path=/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg; Secure; HttpOnly; SameSite=none COMPASS=spreadsheet_forms=CjIACWuJVwlSm7FWWtOyccy8FD8BgLe6_nNx4fy2RC8My99OIoFS6uKcX4zu3tBrIlzruRCbxrirBho0AAlriVcQPypJ1_suK7iighetEUbqb7TexSFVvRdJuQG8JLis_zuZpEHoRgVnKMPmBz6qJA==; Domain=.docs.google.com; Expires=Mon, 04-Dec-2023 19:06:03 GMT; Path=/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg; Secure; HttpOnly; SameSite=none NID=511=E6i3norfONGVe7kLh3hRqtpUhhdaZxQ5_xHLPDrP4MM9nCTliKYeXfjWI0Oui4oS7xy62jKeetfqPwBoKVjL3k9bYvTzdRATQ5T-y7Rl9wV6DVqwP24oEnCE6dKla6bk-xYtVmBwLPbqX77TbsqtbES2ky-r3fERYcpROTWXZIQ; expires=Tue, 04-Jun-2024 18:06:03 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/icon?family=Material+Icons+Extended	142.250.74.106	200 OK	612 B
URL GET HTTP/3 fonts.googleapis.com/icon?family=Material+Icons+Extended IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (635), with no line terminators Size 612 B (612 bytes) Hash f4a2df111e8a0cc233c48e06ed393801 a5a95909db60dd935423b79356ed48eb58647fcb 2b595ff6ecb106a49d6d6e7173df0ad0230a67bf3c937c34c58a4d5a3a65c6f0 HTTP Headers `GET /icon?family=Material+Icons+Extended HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 04 Dec 2023 18:06:04 GMT date: Mon, 04 Dec 2023 18:06:04 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	js.justservices.cc/digest/2.0.0/img/random.svg	34.199.157.218	200 OK	1.7 kB
URL GET HTTP/2 js.justservices.cc/digest/2.0.0/img/random.svg IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerZeroSSL Subjectjs.justservices.cc Fingerprint95:C0:1A:22:90:24:13:D1:07:A6:71:F3:21:16:41:D2:B1:EF:A7:F1 ValidityMon, 20 Nov 2023 00:00:00 GMT - Sun, 18 Feb 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1769), with no line terminators Size 1.7 kB (1749 bytes) Hash b02aba93777346ce7dd378f8b845214d 473ce47d86ad23101999d242b46c94a10d4fd503 a4c0a442574789d3d19e8af7652887aad18946dff1fe8871667c4f46ced7f574 HTTP Headers `GET /digest/2.0.0/img/random.svg HTTP/1.1 Host: js.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.justservices.cc/digest/2.0.0/css/style.min.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:06 GMT content-type: image/svg+xml last-modified: Mon, 30 Oct 2023 09:37:26 GMT etag: W/"653f7956-6d5" expires: Sat, 01 Jun 2024 18:06:06 GMT cache-control: max-age=15552000 strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;800&display=swap	142.250.74.106	200 OK	8.8 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;800&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (9024), with no line terminators Size 8.8 kB (8784 bytes) Hash 1737ab861edf33ef1083df613cee8d75 7cbfa5a33cd1c874de73adce5d08147c55b13158 e37fc91ac94c111bed89f64f069119e2c50f8c42e9ac62430c8d4d330a3ce5b2 HTTP Headers `GET /css2?family=Open+Sans:wght@400;600;800&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 04 Dec 2023 18:06:02 GMT date: Mon, 04 Dec 2023 18:06:02 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	daily-horoscope.us/vendor/just-validate/dist/css/justValidateTooltip.min.css?1701686076	3.89.228.143	200 OK	482 B
URL GET HTTP/2 daily-horoscope.us/vendor/just-validate/dist/css/justValidateTooltip.min.css?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type ASCII text, with very long lines (482), with no line terminators Size 482 B (482 bytes) Hash 01390357ae541e2f2143ed1b20828422 e9f122484653f99b634827e0b2134d9b159874f9 30b4fdd3106974e4470262da0388ade180e3d7f2f53e2e71e9f66c7c871907be HTTP Headers GET /vendor/just-validate/dist/css/justValidateTooltip.min.css?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: text/css last-modified: Mon, 04 Dec 2023 10:35:14 GMT etag: W/"656dab62-1e2" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/img/tarot/card_back.png	3.89.228.143	200 OK	29 kB
URL GET HTTP/2 daily-horoscope.us/img/tarot/card_back.png IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type PNG image data, 236 x 360, 8-bit colormap, non-interlaced\012- data Size 29 kB (28665 bytes) Hash e14acfcc832bec19b0da0c8e72d53cfb 123bedadc8892ba8f3a899e3a4886357d11f6191 76baab98f9a8dc0a2e3bf31a01487af8ee6fac4d22fb004798df887fdc959d44 HTTP Headers GET /img/tarot/card_back.png HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/css/style.min.css?1701686076 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/png content-length: 28665 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-6ff9" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/popup/popup-signup.min.js?1701686076	3.89.228.143	200 OK	4.6 kB
URL GET HTTP/2 daily-horoscope.us/js/build/popup/popup-signup.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, ASCII text, with very long lines (4815), with no line terminators Size 4.6 kB (4625 bytes) Hash c8f4a09138a9e1ff45aaa1310292828b 40ed3471bcc29766dec1f9cc9812f60dbdda8062 384f344ca9e79434c665bbbc2f537b23baad49ae150a1767a0d48ab73fd1bb04 HTTP Headers GET /js/build/popup/popup-signup.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-1211" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtm.js?id=GTM-KDSNQ9B	142.250.74.168	200 OK	229 kB
URL GET HTTP/3 www.googletagmanager.com/gtm.js?id=GTM-KDSNQ9B IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34 ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT File type ASCII text, with very long lines (5239) Size 229 kB (229289 bytes) Hash 265275d21ee254e763608df446634cb5 a9e5e13682729bc01ef082f39992633764f9a64c 9edf088f8ac69b701c1be7137d8ec46c53697c33ac58b986f442ec43a6cdb888 HTTP Headers `GET /gtm.js?id=GTM-KDSNQ9B HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 04 Dec 2023 18:06:03 GMT expires: Mon, 04 Dec 2023 18:06:03 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 81720 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	daily-horoscope.us/css/banner-manychat.min.css?1701686076	3.89.228.143	200 OK	4.8 kB
URL GET HTTP/2 daily-horoscope.us/css/banner-manychat.min.css?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type ASCII text, with very long lines (4882), with no line terminators Size 4.8 kB (4820 bytes) Hash 20a4969dc2877c5ac58a01f0ce53b023 f83837e4cd682a26a4c4decfb249eea6006b7e84 1705171d66109f88186cbae4e71e3277bcc929f6bc833d8d91abe263d359cdd0 HTTP Headers GET /css/banner-manychat.min.css?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: text/css last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-12d4" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/tarot-card-unsubscribe.min.js?1701686076	3.89.228.143	200 OK	210 B
URL GET HTTP/2 daily-horoscope.us/js/build/tarot-card-unsubscribe.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 210 B (210 bytes) Hash d8dcfa8ef04cd97414dad67d303342aa 7fdaf180ae1893cab320660a9e015460d9c65c8a 5242d0425694ebe4c0f8b0b587b11a3ff5d71679ebff97b55c97b991bba0df53 HTTP Headers GET /js/build/tarot-card-unsubscribe.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-d2" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	bat.bing.com/p/action/73004260.js	204.79.197.200	200 OK	3.7 kB
URL GET HTTP/2 bat.bing.com/p/action/73004260.js IP 204.79.197.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT File type ASCII text, with very long lines (3888), with no line terminators Size 3.7 kB (3730 bytes) Hash e48a76b331ec152c4c945b8cf9b53a9a 9f9f7bfea7cc1ab3d57ab5df24ba0e078e8e5e34 8036f41ea9b2fa48f8a0a30fc4d334a2aff308ce17aeb00455e48a74671ead74 HTTP Headers `GET /p/action/73004260.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: private,max-age=60 content-type: application/javascript; charset=utf-8 content-encoding: br vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 683FBCB098144DFDAF4331536CC72704 Ref B: OSL30EDGE0310 Ref C: 2023-12-04T18:06:04Z date: Mon, 04 Dec 2023 18:06:04 GMT X-Firefox-Spdy: h2

	daily-horoscope.us/js/build/validate/phone/validate-phone-unsub.min.js?1701686076	3.89.228.143	200 OK	1.7 kB
URL GET HTTP/2 daily-horoscope.us/js/build/validate/phone/validate-phone-unsub.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1806), with no line terminators Size 1.7 kB (1730 bytes) Hash 517546525d883781d21f021425e93d3d fac11c617d7b55b30d91b9ddf8127ba29a232ee0 bff5b820d72ae328f4290fcdfa44e3307997eafd09ccd6a57ad0bbd282265fd3 HTTP Headers GET /js/build/validate/phone/validate-phone-unsub.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-6c2" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/user/api/send-action	3.89.228.143	200 OK	4 B
URL POST HTTP/2 daily-horoscope.us/user/api/send-action IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 4 B (4 bytes) Hash c37cb766e2641f6d6f7ef1f8397ee1a7 7268d168dbaf6568b0f3f0e6fda98b8c0cd6219f e421e9b4ddfd0142488659c1c20bad9604b21ab445150b0573f137311d4dd544 HTTP Headers POST /user/api/send-action HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Content-Type: multipart/form-data; boundary=---------------------------418166948523082204944171952741 Content-Length: 294 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx content-type: application/json cache-control: max-age=0, must-revalidate, private date: Mon, 04 Dec 2023 18:06:03 GMT content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/popup/widget-bottom-subscribe.min.js?1701686076	3.89.228.143	200 OK	535 B
URL GET HTTP/2 daily-horoscope.us/js/build/popup/widget-bottom-subscribe.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, ASCII text, with very long lines (559), with no line terminators Size 535 B (535 bytes) Hash 005861932b3e7ac733a700460f93c173 b7188943651efd4f398b90adb402f411fa3d24d4 29add59dc501d820605f426b4a3425613e216369a3eefc301f9fa46203f8daee HTTP Headers GET /js/build/popup/widget-bottom-subscribe.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-217" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	bat.bing.com/bat.js	204.79.197.200	200 OK	46 kB
URL GET HTTP/2 bat.bing.com/bat.js IP 204.79.197.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT File type Size 46 kB (46104 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /bat.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: private,max-age=1800 content-length: 13175 content-type: application/javascript content-encoding: gzip last-modified: Fri, 10 Nov 2023 20:09:55 GMT accept-ranges: bytes etag: "80abcdf1114da1:0" vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: FB65725EDE0E4EB19D570DD2A395993A Ref B: OSL30EDGE0310 Ref C: 2023-12-04T18:06:04Z date: Mon, 04 Dec 2023 18:06:04 GMT X-Firefox-Spdy: h2

	daily-horoscope.us/js/build/http-request.min.js?1701686076	3.89.228.143	200 OK	752 B
URL GET HTTP/2 daily-horoscope.us/js/build/http-request.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, ASCII text, with very long lines (784), with no line terminators Size 752 B (752 bytes) Hash 9ad1af2d6acb6bbd741d38031fcab3fb fa0ed635d200fbcccfc14915f285588538e65a17 e0e08547f0960571a87c91c12e7eed824f5e949c6a78279509f3494fec30080a HTTP Headers GET /js/build/http-request.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-2f0" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	cdn.pixfuture.com/pbix.js	104.26.7.68	200 OK	406 kB
URL GET HTTP/2 cdn.pixfuture.com/pbix.js IP 104.26.7.68:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE4:41:E5:09:43:A1:11:6E:75:2D:45:1A:68:2F:2F:EB:DA:2E:D9:71 ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 406 kB (405941 bytes) Hash ce8971decbae8701b1b29d820c1b58df 079821dcb0f1230594b55accc35f2bd4c9d94546 8e4196faa28def3b310eed8c11827e29b55f9f3d2bfdd31d3d72669fea7f8c92 HTTP Headers `GET /pbix.js HTTP/1.1 Host: cdn.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:03 GMT content-type: application/javascript access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type access-control-allow-methods: GET, POST, OPTIONS cache-control: public, max-age=172800, no-transform cf-bgj: minify cf-polished: origSize=406706 etag: W/"63c99fcb-634b2" expires: Mon, 04 Dec 2023 09:30:30 GMT last-modified: Thu, 19 Jan 2023 19:53:47 GMT vary: Accept-Encoding cf-cache-status: HIT age: 55942 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1d2%2FHeg3JkK0%2BsoSHPDoLZwX%2Bn%2BXpNjlW010akajqBw%2FkZGhOMfh4fXe3CgLzFhsOIYxo1If9X8zrTK7xcL%2B741ocFDIPZvSGt9RWKHH0PLzCDOaGiEr8fwEwWXQGb7hhkBl"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8305fb278a48b4f4-OSL X-Firefox-Spdy: h2

	get.s-onetag.com/6a105cf8-5d47-4e0a-8c4b-7c60422256d2/tag.min.js	54.230.111.42	200 OK	27 kB
URL GET HTTP/2 get.s-onetag.com/6a105cf8-5d47-4e0a-8c4b-7c60422256d2/tag.min.js IP 54.230.111.42:443 ASN #16509 AMAZON-02 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subject.s-onetag.com Fingerprint16:E8:8E:F6:16:D5:F6:4C:D2:F5:A0:A6:70:23:FF:E3:EA:22:DE:E1 ValiditySat, 04 Nov 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (2172) Size 27 kB (26568 bytes) Hash 34bbd675e8b425becff971d5a4756c10 4eedbdbafad51de7d9ea7e021cd9fd2428dfec62 04da339baae1948d51e6ffcd4f1f118fe304f7aef2884cd164714df856f0e7f0 HTTP Headers `GET /6a105cf8-5d47-4e0a-8c4b-7c60422256d2/tag.min.js HTTP/1.1 Host: get.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript last-modified: Mon, 07 Nov 2022 19:46:30 GMT x-amz-version-id: 0Wki3095rBiC8xDP56.qUYf2JNRTRIn7 server: AmazonS3 content-encoding: gzip date: Mon, 04 Dec 2023 03:49:35 GMT cache-control: max-age=86400 etag: W/"34bbd675e8b425becff971d5a4756c10" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: ewGX825rINMCZT1wlMVafGHnbljr3G61hTwTy_ceoUTkbF7O3Txb6g== age: 51392 X-Firefox-Spdy: h2

	signal-segments.s-onetag.com/desktop/daily-horoscope.us	54.230.111.51	404 Not Found	0 B
URL GET HTTP/2 signal-segments.s-onetag.com/desktop/daily-horoscope.us IP 54.230.111.51:443 ASN #16509 AMAZON-02 Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerAmazon Subject.s-onetag.com Fingerprint16:E8:8E:F6:16:D5:F6:4C:D2:F5:A0:A6:70:23:FF:E3:EA:22:DE:E1 ValiditySat, 04 Nov 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /desktop/daily-horoscope.us HTTP/1.1 Host: signal-segments.s-onetag.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found content-type: application/json content-length: 0 date: Mon, 04 Dec 2023 18:05:49 GMT access-control-allow-origin: * cache-control: max-age=86400, public apigw-requestid: Pbg3nj1MiYcEMFA= x-cache: Error from cloudfront via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: MOjBTcxdoai8jLJK-u7fXQa83d4L5BKUdAAw1vlskCTm7Xday2My3w== age: 17 X-Firefox-Spdy: h2`

	daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1	3.89.228.143	200 OK	65 kB
URL User Request GET HTTP/2 daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type Size 65 kB (64949 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/s?s=zUmxt Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx content-type: text/html; charset=UTF-8 cache-control: max-age=0, must-revalidate, private date: Mon, 04 Dec 2023 18:06:02 GMT set-cookie: sc=hiterocrgBssdltlboko1017677109; expires=Mon, 04-Dec-2023 18:36:02 GMT; Max-Age=1800; path=/ x-fastcgi-cache: MISS content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2	216.58.207.227	200 OK	128 kB
URL GET HTTP/3 fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data Size 128 kB (128352 bytes) Hash 53436aca8627a49f4deaaa44dc9e3c05 0bc0c675480d94ec7e8609dda6227f88c5d08d2c 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1 HTTP Headers GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 128352 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 30 Nov 2023 00:33:04 GMT expires: Fri, 29 Nov 2024 00:33:04 GMT cache-control: public, max-age=31536000 last-modified: Tue, 07 Mar 2023 19:51:56 GMT content-type: font/woff2 age: 408781 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	c.mgid.com/pv/?pr=daily-horoscope.us&lu=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&cbuster=1701713169115612046555&pvid=18c36024adab8bad6af&implVersion=11&cxurl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe&site=606721&i=1	104.19.132.76	200 OK	43 B
URL GET HTTP/3 c.mgid.com/pv/?pr=daily-horoscope.us&lu=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&cbuster=1701713169115612046555&pvid=18c36024adab8bad6af&implVersion=11&cxurl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe&site=606721&i=1 IP 104.19.132.76:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint44:BF:9D:AD:98:A7:1A:F2:1D:18:EF:4E:3E:BE:C0:D8:28:4D:9F:04 ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 57f187c7a868faeac558007a8eb6cb2e 11ab10ab109fdb53d91d444ac781101f5a6360c6 aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22 HTTP Headers GET /pv/?pr=daily-horoscope.us&lu=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&cbuster=1701713169115612046555&pvid=18c36024adab8bad6af&implVersion=11&cxurl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe&site=606721&i=1 HTTP/1.1 Host: c.mgid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ DNT: 1 Connection: keep-alive Cookie: __cf_bm=udio2c2oEjXvzNYvo50KLyQuiG7N7NyX2X0ec86fzLM-1701713162-0-AfcaD7kxwtfeWfMZzubd3mdXdYLMJhk00JO3N72tTzDib6XtXu6g3rHw2u1zQzVnhvBwWU+xmFSBGziBWWTJiF8= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/gif content-length: 43 cf-cache-status: DYNAMIC strict-transport-security: max-age=15552000; includeSubDomains; preload server: cloudflare cf-ray: 8305fb27edcc569f-OSL alt-svc: h3=":443"; ma=86400`

	prebidserver.pixfuture.com/setuid?bidder=onetag&gdpr=&gdpr_consent=&f=b&uid=	137.184.242.150	200 OK	0 B
URL GET HTTP/1.1 prebidserver.pixfuture.com/setuid?bidder=onetag&gdpr=&gdpr_consent=&f=b&uid= IP 137.184.242.150:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerSectigo Limited Subject.pixfuture.com FingerprintAF:9D:30:92:0B:56:18:0E:55:68:E5:2F:51:C2:D9:3C:C2:79:30:5A ValidityTue, 28 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /setuid?bidder=onetag&gdpr=&gdpr_consent=&f=b&uid= HTTP/1.1 Host: prebidserver.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK cache-control: no-cache, no-store, must-revalidate content-length: 0 content-type: text/html expires: 0 pragma: no-cache set-cookie: uids=eyJiZGF5IjoiMjAyMy0xMi0wNFQxODowNjowNi45ODIwMDcyNDhaIn0=; Path=/; Expires=Sun, 03 Mar 2024 18:06:06 GMT vary: Origin date: Mon, 04 Dec 2023 18:06:06 GMT`

	cdn.pixfuture.com/pixf_sync.html	104.26.7.68	200 OK	925 B
URL GET HTTP/2 cdn.pixfuture.com/pixf_sync.html IP 104.26.7.68:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE4:41:E5:09:43:A1:11:6E:75:2D:45:1A:68:2F:2F:EB:DA:2E:D9:71 ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (973), with no line terminators Size 925 B (925 bytes) Hash 4c6e82c03983876779bbf12bf1b8e53d d670a6e6c7bc51bdd32b8bcdf651af7de832fc8a eeafa01e89fc673dfc3d48c2e55b2489b0ed103cf3cfa9667840d88db8d5c499 HTTP Headers GET /pixf_sync.html HTTP/1.1 Host: cdn.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:03 GMT content-type: text/html last-modified: Wed, 07 Dec 2022 20:04:25 GMT vary: Accept-Encoding access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sz%2FrehfC3DeXfom4k0fFCH3QYZOg%2Bg%2B3hBWBXjY9NwobznOWSV61XJLqH7BIyTOBTTw1cg4vT6X8GVG3afmS1HEv6SbqpJFmuB1DivTgfytVTOW9Z58V6a3h3vg027uxnMVW"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8305fb277a39b4f4-OSL content-encoding: br X-Firefox-Spdy: h2

	jsc.mgid.com/d/a/daily-horoscope.us.1547327.es6.js	104.19.132.76	200 OK	320 kB
URL GET HTTP/3 jsc.mgid.com/d/a/daily-horoscope.us.1547327.es6.js IP 104.19.132.76:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint44:BF:9D:AD:98:A7:1A:F2:1D:18:EF:4E:3E:BE:C0:D8:28:4D:9F:04 ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT File type HTML document text\012- HTML document, ASCII text, with very long lines (50746) Size 320 kB (319839 bytes) Hash 12a4cc0e0f02570a5f03d4e639ee3948 2f8a3395b4d8cda90a77207d3c36a58186d13f94 3f658d9269bfe130effb4fc6a0935b58bf1467e64b298befcf095af1f5e996cc HTTP Headers `GET /d/a/daily-horoscope.us.1547327.es6.js HTTP/1.1 Host: jsc.mgid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Mon, 04 Dec 2023 18:06:03 GMT content-type: text/javascript cf-bgj: minify cf-polished: origSize=319840 etag: W/"08d2c1559563e1d34c97628fb99a235c" last-modified: Mon, 27 Nov 2023 14:34:06 GMT x-amz-id-2: wvsCy7bcl3KbMxszB6wqEJuM7yxdXzoqfe4CYq2r1wI7yHwGmlXwwpr4MN/BoDez53Fi5p+owUE= x-amz-request-id: Q4KHRE2QJ9X4KZZV x-amz-server-side-encryption: AES256 x-amz-version-id: m5HX93.IlFigknEKmQO7M9Oadm7Y2Yt5 cf-cache-status: HIT age: 1029 expires: Mon, 04 Dec 2023 21:06:03 GMT cache-control: public, max-age=10800 set-cookie: __cf_bm=2bSErFD_MYUelInOgzOWgcyU3lDMFhlWSEAA87HlT04-1701713163-0-AS8Z7YbkNrf44NkmVzJLmn5HD3UagWF5PuxVkC1TmPurwHFHUBhW6eKD6WmGHuzMAjsj1edjoyu7mbujJMaN8uI=; path=/; expires=Mon, 04-Dec-23 18:36:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload access-control-allow-origin: * server: cloudflare cf-ray: 8305fb264f79b4ed-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	fonts.gstatic.com/s/amaticsc/v26/TUZyzwprpvBS1izr_vO0CA.woff2	216.58.207.227	200 OK	64 kB
URL GET HTTP/3 fonts.gstatic.com/s/amaticsc/v26/TUZyzwprpvBS1izr_vO0CA.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 64068, version 1.0\012- data Size 64 kB (64068 bytes) Hash efd94f0eb81e50a5f75cfac73257efc2 e8c4e0a66e8ba85de2bdaca59cbcc55ced60bbca 3a6c1001c36d7f2f8ad4df369baf38217af3adaae94a5625651c05f4c3a38bd3 HTTP Headers GET /s/amaticsc/v26/TUZyzwprpvBS1izr_vO0CA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ Origin: https://docs.google.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 64068 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 23:11:53 GMT expires: Thu, 28 Nov 2024 23:11:53 GMT cache-control: public, max-age=31536000 last-modified: Thu, 24 Aug 2023 17:47:13 GMT content-type: font/woff2 age: 413653 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.googleapis.com/css?family=Google+Sans:400,500\|Roboto:300,400,400i,500,700&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext	142.250.74.106	200 OK	25 kB
URL GET HTTP/3 fonts.googleapis.com/css?family=Google+Sans:400,500\|Roboto:300,400,400i,500,700&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text Size 25 kB (25012 bytes) Hash f38c6dc3b2e17e5785ef73a9139c49b6 7d1d3f7729a21ce68f741e82491a5f534f0e47c8 81f6aa92d048bdfd04bbe546e26e1b25f225b51805503a127e197574e1628865 HTTP Headers GET /css?family=Google+Sans:400,500\|Roboto:300,400,400i,500,700&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 04 Dec 2023 18:06:04 GMT date: Mon, 04 Dec 2023 18:06:04 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	js.justservices.cc/digest/2.0.0/JustDigest.min.js	34.199.157.218	200 OK	68 kB
URL GET HTTP/2 js.justservices.cc/digest/2.0.0/JustDigest.min.js IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerZeroSSL Subjectjs.justservices.cc Fingerprint95:C0:1A:22:90:24:13:D1:07:A6:71:F3:21:16:41:D2:B1:EF:A7:F1 ValidityMon, 20 Nov 2023 00:00:00 GMT - Sun, 18 Feb 2024 23:59:59 GMT File type Size 68 kB (67692 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /digest/2.0.0/JustDigest.min.js HTTP/1.1 Host: js.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 30 Oct 2023 09:37:26 GMT etag: W/"653f7956-1086c" expires: Wed, 03 Jan 2024 18:06:02 GMT cache-control: max-age=2592000 strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/lazy-background.min.js?1701686076	3.89.228.143	200 OK	455 B
URL GET HTTP/2 daily-horoscope.us/js/build/lazy-background.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type ASCII text, with very long lines (469), with no line terminators Size 455 B (455 bytes) Hash 08cbcfc4222d8394313c6751d56e27af 7ac920d803950fecf955ca742c888d6af8e887dd c093c6712ea53d66377440f61431e70b47b6e686580b02c4bec8b1365bc3c308 HTTP Headers GET /js/build/lazy-background.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-1c7" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	104.16.56.101	200 OK	20 kB
URL GET HTTP/2 static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.56.101:443 ASN #13335 CLOUDFLARENET Requested by https://cdn.pixfuture.com/pixf_sync.html Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8 ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (19986), with no line terminators Size 20 kB (19986 bytes) Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 HTTP Headers `GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://cdn.pixfuture.com DNT: 1 Connection: keep-alive Referer: https://cdn.pixfuture.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:03 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2023.10.0" last-modified: Tue, 10 Oct 2023 21:38:13 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 8305fb29486d56c7-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	js.justservices.cc/tracker/1.0.0/index.js	34.199.157.218	200 OK	2.9 kB
URL GET HTTP/2 js.justservices.cc/tracker/1.0.0/index.js IP 34.199.157.218:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerZeroSSL Subjectjs.justservices.cc Fingerprint95:C0:1A:22:90:24:13:D1:07:A6:71:F3:21:16:41:D2:B1:EF:A7:F1 ValidityMon, 20 Nov 2023 00:00:00 GMT - Sun, 18 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (2999), with no line terminators Size 2.9 kB (2943 bytes) Hash dbac3efe381b7e410e86f4250963aaf4 e7a54c33f3fd558aee8a3f50b1febc33b2a3e055 c32883cd601dd72933d1be1bf8b9b99754ddfbdf2274ae3441c4e1460bc238b7 HTTP Headers `GET /tracker/1.0.0/index.js HTTP/1.1 Host: js.justservices.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:00 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 30 Oct 2023 09:37:26 GMT etag: W/"653f7956-b7f" expires: Wed, 03 Jan 2024 18:06:00 GMT cache-control: max-age=2592000 strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/s?s=zUmxt	3.89.228.143	200 OK	2.6 kB
URL User Request GET HTTP/2 daily-horoscope.us/s?s=zUmxt IP 3.89.228.143:443 ASN #14618 AMAZON-AES Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2761), with no line terminators Size 2.6 kB (2584 bytes) Hash 7a630c2fa6bfa3ec227fca2a3d0a70d0 104547e56ab892bdb7c12e19e69842a4d90839fb 9358670619a4f8fcb7eba4b2e6ec2febb7f4190e566d51474e3d079c8d7885e4 HTTP Headers `GET /s?s=zUmxt HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx content-type: text/html; charset=UTF-8 cache-control: max-age=0, must-revalidate, private date: Mon, 04 Dec 2023 18:05:59 GMT set-cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; expires=Mon, 11-Dec-2023 18:05:59 GMT; Max-Age=604800; path=/; HttpOnly device_view=full; expires=Thu, 04-Jan-2024 18:05:59 GMT; Max-Age=2678400; path=/; httponly x-fastcgi-cache: MISS content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/action-sender.min.js?1701686076?v1	3.89.228.143	200 OK	320 B
URL GET HTTP/2 daily-horoscope.us/js/build/action-sender.min.js?1701686076?v1 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type ASCII text, with very long lines (336), with no line terminators Size 320 B (320 bytes) Hash 230551626af6f4d343717fa2247302de ee23f24f6b42cb80dbeeb6594e9d7b7f5116c7a0 291b440db1fe7105b68f0907d701d5a7398c5b02143f15c05af9c06993ed9be7 HTTP Headers GET /js/build/action-sender.min.js?1701686076?v1 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-140" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	region1.analytics.google.com/g/collect?v=2&tid=G-Q5R676DMGQ&gtm=45je3bt0v9126671330&_p=1701713168710&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=604891606.1701713169&ul=en-us&sr=1280x1024&_s=1&sid=1701713169&sct=1&seg=0&dl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&dr=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&dt=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1480	216.239.34.36	204 No Content	0 B
URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-Q5R676DMGQ&gtm=45je3bt0v9126671330&_p=1701713168710&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=604891606.1701713169&ul=en-us&sr=1280x1024&_s=1&sid=1701713169&sct=1&seg=0&dl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&dr=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&dt=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1480 IP 216.239.34.36:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34 ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-Q5R676DMGQ&gtm=45je3bt0v9126671330&_p=1701713168710&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=604891606.1701713169&ul=en-us&sr=1280x1024&_s=1&sid=1701713169&sct=1&seg=0&dl=https%3A%2F%2Fdaily-horoscope.us%2Ftexts-unsubscribe%3Futm_source%3DdhlittlebrookcoregLBM1051022w4022%26utm_medium%3Dsms%26utm_campaign%3Dsms_subs_texts_4december_main_unsubscribe_slooce%26refid%3Dch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe%26ppid%3Ddh%26juid%3Dd902aab0d93a401fa3de792405841af1&dr=https%3A%2F%2Fdaily-horoscope.us%2Fs%3Fs%3DzUmxt&dt=Text%20messages%20%7C%20Unsubscribe%20%7C%20Daily-horoscope.us&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1480 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://daily-horoscope.us date: Mon, 04 Dec 2023 18:06:04 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	daily-horoscope.us/img/logo/logo.svg?v=2	3.89.228.143	200 OK	14 kB
URL GET HTTP/2 daily-horoscope.us/img/logo/logo.svg?v=2 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (583) Size 14 kB (13982 bytes) Hash e3eedd8df43ce2422443960daf54cc36 00377393a550e6c5d14a474e3a8ddddd939526a1 77e1dfd07c51538a0abb435b019abf2c8ca09b997a384c46e90a0326a670bb0d HTTP Headers GET /img/logo/logo.svg?v=2 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/css/style.min.css?1701686076 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/svg+xml content-length: 13982 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-369e" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn.pixfuture.com/hb_v2.js	104.26.7.68	200 OK	57 kB
URL GET HTTP/2 cdn.pixfuture.com/hb_v2.js IP 104.26.7.68:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE4:41:E5:09:43:A1:11:6E:75:2D:45:1A:68:2F:2F:EB:DA:2E:D9:71 ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (41668) Size 57 kB (56702 bytes) Hash 2dc2e4bedb5b14e387644bfac84d8abf 4c1ee3105927df3f95eb7cd9e0860520b96f6385 4c2bbbb5c5f4c4757aa651d7d97109fcc5309df91c17b2ba54cf34db0d0c3f8e HTTP Headers `GET /hb_v2.js HTTP/1.1 Host: cdn.pixfuture.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:03 GMT content-type: application/javascript access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type access-control-allow-methods: GET, POST, OPTIONS cache-control: public, max-age=172800, no-transform cf-bgj: minify etag: W/"64d24f1d-dd7e" expires: Tue, 05 Dec 2023 12:17:41 GMT last-modified: Tue, 08 Aug 2023 14:20:13 GMT vary: Accept-Encoding cf-cache-status: HIT age: 50411 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dVaR%2BFCCE7XD4ZuCqvzGT1SvuHQWaQyx9kALMa4cwrSux%2F%2F%2FB8u5gtjwTQvdMIXBVkw0%2BLjSBD8I5PlcY0nVZAVzWUU2EpnIz4KkauevyYBYLqNJiWX3mjIUlAsBoZqkN%2BNx"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8305fb2658a8b4f4-OSL X-Firefox-Spdy: h2

	daily-horoscope.us/user/api/send-action	3.89.228.143	200 OK	4 B
URL POST HTTP/2 daily-horoscope.us/user/api/send-action IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 4 B (4 bytes) Hash c37cb766e2641f6d6f7ef1f8397ee1a7 7268d168dbaf6568b0f3f0e6fda98b8c0cd6219f e421e9b4ddfd0142488659c1c20bad9604b21ab445150b0573f137311d4dd544 HTTP Headers POST /user/api/send-action HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Content-Type: multipart/form-data; boundary=---------------------------234378294213649279112259437434 Content-Length: 175 Origin: https://daily-horoscope.us DNT: 1 Connection: keep-alive Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx content-type: application/json cache-control: max-age=0, must-revalidate, private date: Mon, 04 Dec 2023 18:06:03 GMT content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/css/style.min.css?1701686076	3.89.228.143	200 OK	541 kB
URL GET HTTP/2 daily-horoscope.us/css/style.min.css?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type Size 541 kB (541319 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /css/style.min.css?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: text/css last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-84287" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	unpkg.com/imask@7.1.3	104.16.122.175	302 Found	110 kB
URL GET HTTP/2 unpkg.com/imask@7.1.3 IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type Size 110 kB (110109 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /imask@7.1.3 HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Mon, 04 Dec 2023 18:06:02 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 location: /imask@7.1.3/dist/imask.js vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01HFXEFDJGN1M1A3P5VZ8VS6SW-arn cf-cache-status: HIT age: 991591 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 8305fb23eb370b45-OSL X-Firefox-Spdy: h2`

	daily-horoscope.us/vendor/just-validate/dist/js/just-validate.min.js?1701686076	3.89.228.143	200 OK	14 kB
URL GET HTTP/2 daily-horoscope.us/vendor/just-validate/dist/js/just-validate.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type ASCII text, with very long lines (14083), with no line terminators Size 14 kB (14083 bytes) Hash c1070a4ea8f60b50a79d6e91dba32882 c7e49a3ebf32624e7717f529df2f4fd2abf3d1cb 9d6afd655c971b33f5c8cd6c166efd1bb678b8fefa1f1946aa1bce26e567bb2c HTTP Headers GET /vendor/just-validate/dist/js/just-validate.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:14 GMT etag: W/"656dab62-3703" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?family=Product+Sans&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext	142.250.74.106	200 OK	1.4 kB
URL GET HTTP/3 fonts.googleapis.com/css?family=Product+Sans&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://docs.google.com/forms/d/e/1FAIpQLSeN7HxpJEHpBAqbyqCN9xYBr1g9iKUT6R-xpmkhuNtqlzsbKg/viewform?embedded=true Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (1395), with no line terminators Size 1.4 kB (1360 bytes) Hash b0cec5818b04df90daf7bc5016c0366b a959f1983c8948b4813412241cae867017b0bf88 df456582ef6301bb97965d2b52c917941f66fbadec1985045a687f97d0eb296c HTTP Headers GET /css?family=Product+Sans&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docs.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 04 Dec 2023 18:06:04 GMT date: Mon, 04 Dec 2023 18:06:04 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	unpkg.com/imask@7.1.3/dist/imask.js	104.16.122.175	200 OK	110 kB
URL GET HTTP/2 unpkg.com/imask@7.1.3/dist/imask.js IP 104.16.122.175:443 ASN #13335 CLOUDFLARENET Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type C++ source, ASCII text, with very long lines (4223) Size 110 kB (110109 bytes) Hash c411b791cf977df363dbd6ab49a417e9 af7c0a6c376bd138f6c966ea86a0e008edd236b3 42e7a5c70376b125d470d570585ff230cd777cfbbd9e4fbedc18d2de0c8dc83d HTTP Headers `GET /imask@7.1.3/dist/imask.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://daily-horoscope.us/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"1ae1d-r3wKbDdr0Tj2yWbqhqDgCO3SNrM" via: 1.1 fly.io fly-request-id: 01HG9Y1CRYVA3V5KYFWR924133-arn cf-cache-status: HIT age: 572619 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 8305fb246bb30b45-OSL content-encoding: br X-Firefox-Spdy: h2

	daily-horoscope.us/astrostore/img/astrostore/what-to-do-to-succeed-shamanic-reading.webp	3.89.228.143	200 OK	7.3 kB
URL GET HTTP/2 daily-horoscope.us/astrostore/img/astrostore/what-to-do-to-succeed-shamanic-reading.webp IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 340x180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 7.3 kB (7334 bytes) Hash f4f7353ec1527b5f33444e55bb4176b4 d5bf31c7b2d4b40acbfe3773ffc548fb289207a6 99e7a0bce17d519dfe23801c5dc8caf52ba7c0b6de69b7dbd214354b0fc9e6b1 HTTP Headers GET /astrostore/img/astrostore/what-to-do-to-succeed-shamanic-reading.webp HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:03 GMT content-type: image/webp content-length: 7334 last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: "656dab61-1ca6" expires: Tue, 03 Dec 2024 18:06:03 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block accept-ranges: bytes X-Firefox-Spdy: h2`

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt	142.250.74.132	200 OK	61 kB
URL GET HTTP/3 www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52051) Size 61 kB (60603 bytes) Hash cee9b03029bc476bc8d78e3fe27a64ba b689e96d2c289103fb0aff3a3e5cb2cee94ee561 fe0fb2234a2850685233fd4b36ac44f36cd2fef44559745bc50ce83e4ed73238 HTTP Headers GET /recaptcha/enterprise/anchor?ar=1&k=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7&co=aHR0cHM6Ly9kYWlseS1ob3Jvc2NvcGUudXM6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kd6oe5rxs4tt HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: text/html; charset=utf-8 cross-origin-resource-policy: cross-origin cross-origin-embedder-policy: require-corp report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 04 Dec 2023 18:06:04 GMT content-security-policy: script-src 'nonce-0C6CW7LgSLVP2sYfS_lMAw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1 content-encoding: gzip x-content-type-options: nosniff x-xss-protection: 1; mode=block server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	daily-horoscope.us/js/build/custom-link-ads.min.js?1701686076?v1	3.89.228.143	200 OK	50 kB
URL GET HTTP/2 daily-horoscope.us/js/build/custom-link-ads.min.js?1701686076?v1 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type Size 50 kB (49611 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /js/build/custom-link-ads.min.js?1701686076?v1 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-c1cb" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	daily-horoscope.us/js/build/http-request.min.js?1701686076	3.89.228.143	200 OK	752 B
URL GET HTTP/2 daily-horoscope.us/js/build/http-request.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type troff or preprocessor input, ASCII text, with very long lines (784), with no line terminators Size 752 B (752 bytes) Hash 9ad1af2d6acb6bbd741d38031fcab3fb fa0ed635d200fbcccfc14915f285588538e65a17 e0e08547f0960571a87c91c12e7eed824f5e949c6a78279509f3494fec30080a HTTP Headers GET /js/build/http-request.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full; sc=hiterocrgBssdltlboko1017677109 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:02 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:13 GMT etag: W/"656dab61-2f0" expires: Tue, 03 Dec 2024 18:06:02 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

	www.google.com/recaptcha/enterprise.js?render=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7	142.250.74.132	200 OK	974 B
URL GET HTTP/2 www.google.com/recaptcha/enterprise.js?render=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://daily-horoscope.us/texts-unsubscribe?utm_source=dhlittlebrookcoregLBM1051022w4022&utm_medium=sms&utm_campaign=sms_subs_texts_4december_main_unsubscribe_slooce&refid=ch-sms_src-dhlittlebrookcoregLBM1051022w4022_lp-unsubscribe&ppid=dh&juid=d902aab0d93a401fa3de792405841af1 Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1 ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT File type ASCII text, with very long lines (974), with no line terminators Size 974 B (974 bytes) Hash a0dac7612c4b6275510ccab6ca9a9861 49b100a34780cb87c4b53735c078d510924a5c7e dd1546ba1d6a654e0ca292317d7135098b66edab217f9768db462d35439d4b1f HTTP Headers `GET /recaptcha/enterprise.js?render=6Lfc4aYUAAAAAC-cp7c9qM88wgGqV0eN2q80CFM7 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: text/javascript; charset=utf-8 expires: Mon, 04 Dec 2023 18:06:02 GMT date: Mon, 04 Dec 2023 18:06:02 GMT cache-control: private, max-age=300 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	daily-horoscope.us/vendor/lottie/lottie.min.js?1701686076	3.89.228.143	200 OK	265 kB
URL GET HTTP/2 daily-horoscope.us/vendor/lottie/lottie.min.js?1701686076 IP 3.89.228.143:443 ASN #14618 AMAZON-AES Requested by https://daily-horoscope.us/s?s=zUmxt Certificate IssuerLet's Encrypt Subjectwww.daily-horoscope.us Fingerprint85:F6:B4:28:FA:85:6F:8E:67:76:DC:A5:AF:05:8B:CA:8D:1D:88:AE ValidityThu, 05 Oct 2023 21:36:39 GMT - Wed, 03 Jan 2024 21:36:38 GMT File type ASCII text, with very long lines (65109) Size 265 kB (265378 bytes) Hash 146c6c0637dac7a6c98b67a20c04285f 62a62a7d319619d3aa12cd684608fe10f0531ea0 e3e985f5df9224b3a4902e6efdfdc070c1fadee5f5dad5d365de7d81c15f23c6 HTTP Headers GET /vendor/lottie/lottie.min.js?1701686076 HTTP/1.1 Host: daily-horoscope.us User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://daily-horoscope.us/s?s=zUmxt Cookie: PHPSESSID=nvmb9u6in3euf1amkii738e6kn; device_view=full Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 04 Dec 2023 18:06:00 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 10:35:14 GMT etag: W/"656dab62-40ca2" expires: Tue, 03 Dec 2024 18:06:00 GMT cache-control: max-age=31536000 x-frame-options: ALLOW-FROM platformdirectads.com x-content-type-options: nosniff x-xss-protection: 1; mode=block content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (90)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by