thedailyneopets.org/
104.21.72.34301 Moved Permanently 0 B IP 104.21.72.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: thedailyneopets.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 01 Apr 2023 04:57:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 01 Apr 2023 05:57:10 GMT
Location: https://thedailyneopets.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j1wBF7%2FxwZLR2iddLECzSemtbZMfp%2B2pCAKByzq%2B%2BIwFDT8UKnqwLmDxbudRVXHFpsun9UBRJWxENhVCQB18g3u3hkTikpTZ2%2Bstk3YtGwzeDS%2B1qIJiP28CASr0AMXLGjhbXxBx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0e3ff0b853b4f4-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4044
Expires: Sat, 01 Apr 2023 06:04:34 GMT
Date: Sat, 01 Apr 2023 04:57:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 034b06325b334948200ef1d79d4ddeb7
b9a3c93cff37cbaaf20cca79b965b1a21c525ce8
417ce2093027b05cc34199c75e6b29f155c4dd3150651b6b3dbe8564098c4143
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "417CE2093027B05CC34199C75E6B29F155C4DD3150651B6B3DBE8564098C4143"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3961
Expires: Sat, 01 Apr 2023 06:03:11 GMT
Date: Sat, 01 Apr 2023 04:57:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 04:16:13 GMT
content-type: application/json
age: 2457
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3872
Expires: Sat, 01 Apr 2023 06:01:42 GMT
Date: Sat, 01 Apr 2023 04:57:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OMId6F5+B1e3FhY5X8vilmk8DGmy06Tuo/cF/jNmz+evz0NuPmttFe8rr8re8+WjdekorM3+zJE=
x-amz-request-id: S4XXB975JRZKPBHT
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 04:03:36 GMT
age: 3214
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 04:57:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f89764b5529b0921337bd77a61e1e56a
9306a0bd5335fc1d8fa08780164b26560f1cb8d3
e0f499802da95da189595b16aceb1984eece3fbf88f7494d3290fbec4df5b4eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0F499802DA95DA189595B16ACEB1984EECE3FBF88F7494D3290FBEC4DF5B4EB"
Last-Modified: Fri, 31 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15171
Expires: Sat, 01 Apr 2023 09:10:01 GMT
Date: Sat, 01 Apr 2023 04:57:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 04:14:41 GMT
age: 2549
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jUU0TI4oYhf1MOEMADI6xQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: M6Xeg/qxhr7gjrPQDGTY8zm/Ixc=
Date: Sat, 01 Apr 2023 04:57:11 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.6/jquery.fancybox.min.css
104.17.24.14200 OK 2.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.6/jquery.fancybox.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (12795), with no line terminators
Hash 763b8aa8becf095178bc43d55da66e6d
c4a63a7fedd1693c5fa7dd18716ac8f8fd6570ae
1914fb16590956c63b1d05baca1201c6793b70ea52f7c256882d53dad7a199ca
GET /ajax/libs/fancybox/3.5.6/jquery.fancybox.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thedailyneopets.com
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:11 GMT
content-type: text/css; charset=utf-8
content-length: 2695
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-31fb"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 14126380
expires: Thu, 21 Mar 2024 04:57:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kH%2BzlRvMuTACvPlPiQEKTy7A3OW9qI3O%2Beve3cyR8g8ljc8ESUa%2FBekwdeRSzaCUUIWg8ch4kZNr6NecZXJZkQ3pcVXHocdIIdhwX%2FfLkcu1gxemMpHwJOeP6RoNrPwOTK9DJ7X8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b0e3ff6dc6bb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.6/jquery.fancybox.min.js
104.17.24.14200 OK 19 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.6/jquery.fancybox.min.js
IP 104.17.24.14:0
File type HTML document, ASCII text, with very long lines (31994)
Hash 30a8afe09bcf656b658fd01ae9338f9b
5dea9f9640bfa12931a5681ce3b38cf557165320
d1f78c6ade6ebddd53f63a4a70b7d356966532aa71fcf6378da6a253322ad93a
GET /ajax/libs/fancybox/3.5.6/jquery.fancybox.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thedailyneopets.com
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:11 GMT
content-type: application/javascript; charset=utf-8
content-length: 19242
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-10a64"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 30498618
expires: Thu, 21 Mar 2024 04:57:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FF1TeEgSShf1vGXa4%2ByswNFjLXp2otOEmdjsq5gW7T3fU3uLDR06C2rP7WhgLoK23TvTJnaCJpjCbMSV2UnRFUv98BK%2FydUbdY4AYzbKUXUpYPwEhOcO4f4X5ywU%2FIoFPScHL3M%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b0e3ff72c96b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5b6731341a66be32757ea461f5bd605a
f9a017cd1195d1eafb3839a899baf75f2e71958f
4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.expo9.exponential.com/tags/TheDailyNeopetscom/ROS/tags.js
104.18.13.219200 OK 2.3 kB URL HTTP/2 tags.expo9.exponential.com/tags/TheDailyNeopetscom/ROS/tags.js
IP 104.18.13.219:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 51afe619d33ca84283545b9a61f111d0
da01795a6d7066a20d521fbccbedcc3a07363413
bc65a1b706ed79d25e69e2eb43ec1e6fafaaced199e2b33e4f4fb182dd0c2f0b
GET /tags/TheDailyNeopetscom/ROS/tags.js HTTP/1.1
Host: tags.expo9.exponential.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:11 GMT
content-type: application/x-javascript
content-length: 2306
p3p: CP="NOI DEVo TAIa OUR BUS"
x-function: 151
x-reuse-index: 1073
last-modified: Fri, 17 Feb 2023 18:04:49 GMT
etag: 5909443542969422214
expires: Sat, 01 Apr 2023 05:57:11 GMT
cache-control: max-age=3600, public
content-encoding: gzip
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e3ff6ee02b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-7EDVD9BECY
142.250.74.40200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-7EDVD9BECY
IP 142.250.74.40:0
File type ASCII text, with very long lines (21772)
Hash a1a549257c53574a65cb9823c0b5b950
f1f0afc19ef50d117b23567049b8a555f6b63bd1
d68e319ed150898306d16dc724be6e8ae29cf5ac4fe38a180178867e93b00ff1
GET /gtag/js?id=G-7EDVD9BECY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Apr 2023 04:57:11 GMT
expires: Sat, 01 Apr 2023 04:57:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79237
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pets.neopets.com/cp/l53gz6bl/1/4.png
205.185.216.10200 OK 79 kB URL HTTP/1.1 pets.neopets.com/cp/l53gz6bl/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 36a1653b656d3eba94cbb49466f1d2bc
29310e1715ab755464364c8bd2b8d9c898c5aaa4
a30a7da17dedd178953b5caed530640efc1ee91ef7bb0efd8ea00ada3e24ec80
GET /cp/l53gz6bl/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680299931"
Cache-Control: max-age=61300
Content-Length: 79304
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 21:58:51 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop026.sk1.t,1680325031.cds243.sk1.shn,1680325031.dop026.sk1.t,1680325031.cds065.sk1.c
pets.neopets.com/cp/7htjghwq/1/4.png
205.185.216.10200 OK 57 kB URL HTTP/1.1 pets.neopets.com/cp/7htjghwq/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 1048f498a7e0fdc076f10ef7bd829af0
bceb507c2939a2fbea6704e60b32e7ef1c498218
9aa57855902013998387e71b3383b832573b7d7af730f1a48eefc897f30029a4
GET /cp/7htjghwq/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680281771"
Cache-Control: max-age=43140
Content-Length: 57113
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 16:56:11 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop023.sk1.t,1680325031.cds215.sk1.shn,1680325031.dop023.sk1.t,1680325031.cds010.sk1.c
images.neopets.com/items/clo_infinity_shirt_rainbow.gif
205.185.216.42200 OK 3.2 kB URL HTTP/1.1 images.neopets.com/items/clo_infinity_shirt_rainbow.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 5d9a6b2032ec4f9a32de8269dfe1f20f
c4a00186b80791cba342aab70a94ff4802cc1c79
03adf4f4efdf5d34d87767a6b1e4f3f6e7b439c460314d57e93a502cabce6e7e
GET /items/clo_infinity_shirt_rainbow.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2916440
Content-Length: 3177
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop018.sk1.t,1680325031.cds022.sk1.shn,1680325031.dop018.sk1.t,1680325031.cds071.sk1.c
images.neopets.com/items/clo_infinity_shirt_gold.gif
205.185.216.42200 OK 3.2 kB URL HTTP/1.1 images.neopets.com/items/clo_infinity_shirt_gold.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash a4e95ae0df99331e469765da36ef9d3b
96ffee2f3b709491b57df1442c77d65a46e2e80f
dc0430ef1bf38cd208838e6c5001b54f16fd6f2386be420426568cfc3370c15c
GET /items/clo_infinity_shirt_gold.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2916440
Content-Length: 3244
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds261.sk1.c
pets.neopets.com/cp/fmwnjfbo/1/4.png
205.185.216.10200 OK 50 kB URL HTTP/1.1 pets.neopets.com/cp/fmwnjfbo/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f6cf7b2268f98dc2c3b00444c72f2d5
237056857555b45bd1babf1949c9cb3f702b789d
cd5a02d57efc79a1069fac00bc7fb385609b73d5036f91286a531942d10e9d46
GET /cp/fmwnjfbo/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680276677"
Cache-Control: max-age=38046
Content-Length: 49867
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 15:31:17 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop224.sk1.t,1680325031.cds254.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds022.sk1.c
pets.neopets.com/cp/w3tm4l6j/1/4.png
205.185.216.10200 OK 51 kB URL HTTP/1.1 pets.neopets.com/cp/w3tm4l6j/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b7c5aa856224094d8db516486acbfcab
7d7d3fb2da8e943c08628e1d9e9879be1e8832e3
83292a5e1df04d91c9f308b147854efdcf3128f0c15fd9980f1113330e2faabe
GET /cp/w3tm4l6j/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680301711"
Cache-Control: max-age=63080
Content-Length: 50593
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 22:28:31 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop015.sk1.t,1680325031.cds254.sk1.shn,1680325031.dop015.sk1.t,1680325031.cds014.sk1.c
images.weserv.nl/?url=https://thedailyneopets.com/uploads/special/news/welcometo-march.jpg
172.64.100.34200 OK 51 kB URL HTTP/2 images.weserv.nl/?url=https://thedailyneopets.com/uploads/special/news/welcometo-march.jpg
IP 172.64.100.34:0
File type JPEG image data, baseline, precision 8, 550x300, components 3\012- data
Hash 5711c8c6714eb15471b471be65a9b803
e1e084e3dbf89123722a9e15a1ac9421d8301dfc
ff6e58a1794665e9dbfc203ac2a32d2c36f93cc7d4f640586f5c053bcf1c4a2b
GET /?url=https://thedailyneopets.com/uploads/special/news/welcometo-march.jpg HTTP/1.1
Host: images.weserv.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:11 GMT
content-type: image/jpeg
content-length: 50737
content-disposition: inline; filename=image.jpg
link: <https://thedailyneopets.com/uploads/special/news/welcometo-march.jpg>; rel="canonical"
expires: Thu, 29 Feb 2024 08:53:49 GMT
cache-control: public, max-age=31536000
x-upstream-response-length: 159862
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
timing-allow-origin: *
x-images-api: 5
x-cache-status: MISS
last-modified: Wed, 01 Mar 2023 08:53:49 GMT
cf-cache-status: HIT
age: 1602134
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LgOyoBjlFWxfLwCCNDPcI6UhlL6qbYazcM8iMHc4ijLrSwjpKNMhaom1k9iAMFEQrC8HnvyYsNgYCyT6PiAOV8m03eFIv%2Bc0HNpVnRoHm56FqXRQ7PYcHbi8XlAVUFUdcAqW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e3ff86c773866-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.neopets.com/items/mall_restrictive_horns.gif
205.185.216.42200 OK 117 kB URL HTTP/1.1 images.neopets.com/items/mall_restrictive_horns.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Size 117 kB (117435 bytes)
Hash e7dcfd28822fac0409fceca112bcca28
bf5b6bf42ef075e5bcba658f92d044f5510345df
5d2fbf33fcd8c418fce5ece594d989f85eda78df4901462da0acac3a772c560d
GET /items/mall_restrictive_horns.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2933869
Content-Length: 117435
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds241.sk1.c
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pets.neopets.com/cp/vhjvbdvb/1/4.png
205.185.216.10200 OK 26 kB URL HTTP/1.1 pets.neopets.com/cp/vhjvbdvb/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 46a336dd882d376b975275b9f91f152d
a6a5751396f47f2a490667f4bfafcdee9c1c8647
e7914a7a30b4d831c5a0c673a950c1ecd7e44158e491e1fce515880373450cb1
GET /cp/vhjvbdvb/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680287134"
Cache-Control: max-age=48503
Content-Length: 25583
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 18:25:34 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop026.sk1.t,1680325031.cds243.sk1.shn,1680325031.dop026.sk1.t,1680325031.cds223.sk1.c
pets.neopets.com/cp/x7rst3nt/1/4.png
205.185.216.10200 OK 23 kB URL HTTP/1.1 pets.neopets.com/cp/x7rst3nt/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 43aba36b09aac6ed8eca10c7260a6746
432ea69a3076cc41cca62e8c3bfd5a12fba2a994
e3845e6d669861752da15c3780f8a90723e4459db8d44c1c601913ca39b0d8a2
GET /cp/x7rst3nt/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680299248"
Cache-Control: max-age=60617
Content-Length: 22861
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 21:47:28 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop023.sk1.t,1680325031.cds215.sk1.shn,1680325031.dop023.sk1.t,1680325031.cds242.sk1.c
pets.neopets.com/cp/l6s626mv/1/4.png
205.185.216.10200 OK 38 kB URL HTTP/1.1 pets.neopets.com/cp/l6s626mv/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 45b36d7e47db2a8eb987c7d564711bac
63e4a58411de0a3cf4e0a8e5b9830d0b8a1077c1
2fbe28845ab52d186d4de257b7014d4c1a768bdc6119112adcc9ccaeb3793ab6
GET /cp/l6s626mv/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680299248"
Cache-Control: max-age=60617
Content-Length: 37492
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 21:47:28 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop015.sk1.t,1680325031.cds254.sk1.shn,1680325031.dop015.sk1.t,1680325031.cds228.sk1.c
images.neopets.com/items/clo_neon_uni_tail.gif
205.185.216.42200 OK 3.1 kB URL HTTP/1.1 images.neopets.com/items/clo_neon_uni_tail.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash c0144758be10488ad95dd13e0a7e90f3
b732292dd385ff7bbf13cd99a3b19762083a3622
71ac536a46017d5d7781b4c5e2c31d69bdfd1d7a69ecd73af22f5601fdc9a83f
GET /items/clo_neon_uni_tail.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=432694
Content-Length: 3087
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop018.sk1.t,1680325031.cds022.sk1.shn,1680325031.dop018.sk1.t,1680325031.cds218.sk1.c
images.neopets.com/items/clo_neon_uni_wings.gif
205.185.216.42200 OK 2.2 kB URL HTTP/1.1 images.neopets.com/items/clo_neon_uni_wings.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 416468a99a6594257acd9b01050ff520
480385d30227dbc3b6b34cba481026e08d7fc022
2c4de1485e8d4f4b5ec84be34a0c12b7bf06c6617d07973e103af662351131d3
GET /items/clo_neon_uni_wings.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=432785
Content-Length: 2165
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds232.sk1.c
images.neopets.com/items/clo_neon_uni_shoes.gif
205.185.216.42200 OK 2.2 kB URL HTTP/1.1 images.neopets.com/items/clo_neon_uni_shoes.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 4e973d436d9a5ce02b69238bec05c6b7
16a17ffd586be30b737eea7192449c34ae3d85be
76130ee7820e881f8bff0ab05c2a71b5fefcbca4a80397e41d9693aa112d0d9e
GET /items/clo_neon_uni_shoes.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=432563
Content-Length: 2198
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds240.sk1.c
images.neopets.com/items/clo_mynci_fashionhat.gif
205.185.216.42200 OK 2.7 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashionhat.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 40298c85604d711636300baa82ea36da
f4f1de836e50f49408964b5d6c6363ae96524293
34df5b8c5ce06767ae3f2027d9ef47d88a2c0442de4bbc449b581e608da1bf53
GET /items/clo_mynci_fashionhat.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004176
Content-Length: 2689
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds246.sk1.c
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5b6731341a66be32757ea461f5bd605a
f9a017cd1195d1eafb3839a899baf75f2e71958f
4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.neopets.com/items/cof_uni_frappe.gif
205.185.216.42200 OK 4.7 kB URL HTTP/1.1 images.neopets.com/items/cof_uni_frappe.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 902c9f40771bfc20ea7d859551898844
d4005880e90654888a86b559f1a9c3bdd6f11388
d948acc5567b92e343d124d19502999b70f33e971193ff1b3d822cb3d95d686e
GET /items/cof_uni_frappe.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=604955
Content-Length: 4651
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop212.sk1.t,1680325031.cds227.sk1.shn,1680325031.dop212.sk1.t,1680325031.cds017.sk1.c
images.neopets.com/items/4clover.gif
205.185.216.42200 OK 2.3 kB URL HTTP/1.1 images.neopets.com/items/4clover.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 1a29ae339cfc8f5822d7cb82c10025e5
3a7536a30974be31d93fbe0ae8612b9ed395654d
0d9a31ad86b8c301d0f351caaf0890adcc425e0083c5836e19ff979b81c206c7
GET /items/4clover.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1106817349"
Cache-Control: max-age=1705674
Content-Length: 2305
Content-Type: image/gif
Last-Modified: Thu, 27 Jan 2005 09:15:49 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325031.dop017.sk1.t,1680325031.cds239.sk1.c
images.neopets.com/items/clo_mynci_fashionshoes.gif
205.185.216.42200 OK 3.0 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashionshoes.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 72691090e2805450e26b38e200b1697f
3db5c0410e75e49e1d95af8fec146504339962a3
4d604479c5fe2a13bc83f4ca0c8823225977a2d81d00818e8557377250259e14
GET /items/clo_mynci_fashionshoes.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004176
Content-Length: 3024
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds024.sk1.c
images.neopets.com/items/negg_yellowmallard.gif
205.185.216.42200 OK 3.3 kB URL HTTP/1.1 images.neopets.com/items/negg_yellowmallard.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 5c0f152ad69cbcb215cd5ab640cdd112
5a05374faf86070af731302ac93df09198ea7b44
7a0094f874c823aeb5a8029f50178a7738372f39d17d2be6da1f4decfd8dc053
GET /items/negg_yellowmallard.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1106817390"
Cache-Control: max-age=2273374
Content-Length: 3340
Content-Type: image/gif
Last-Modified: Thu, 27 Jan 2005 09:16:30 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop018.sk1.t,1680325031.cds022.sk1.shn,1680325031.dop018.sk1.t,1680325031.cds223.sk1.c
images.neopets.com/items/boo_faeries_ofspring.gif
205.185.216.42200 OK 4.9 kB URL HTTP/1.1 images.neopets.com/items/boo_faeries_ofspring.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 238dbea8dee56453e4e8234a78c0a270
0ac8b54aa172b0b3023479355b9ed86896b938a9
5dcfd34eae9e5beae2caa895c474ab5eb17cf6d5924ad5bb912cc0b1f88b1f36
GET /items/boo_faeries_ofspring.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=94682
Content-Length: 4918
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds223.sk1.c
images.neopets.com/images/nf/ice_mynci.png
205.185.216.42200 OK 24 kB URL HTTP/1.1 images.neopets.com/images/nf/ice_mynci.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash dd3e4b97f8032021864b1a0e5d9949e8
ebf829bcd895e79355375dd78fe72aeebd4c04be
218a0ecd2ade2a1c39fe59f2eb8a70ee58244c02b8def77414373d994231db3c
GET /images/nf/ice_mynci.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1677102590"
Cache-Control: max-age=3075790
Content-Length: 23573
Content-Type: image/png
Last-Modified: Wed, 22 Feb 2023 21:49:50 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds219.sk1.c
images.neopets.com/items/clo_mynci_fashiontail_striped.gif
205.185.216.42200 OK 2.4 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashiontail_striped.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 488fe2a1f58d4ed4a9f2a2efc2e3ed58
9e9e3e1d114305d87a57f827d3f23e02cebd38ec
6aa71efa4ebd1b466ae6684ea0d926611188ca22e9f6c4df7524df57ceedf0d2
GET /items/clo_mynci_fashiontail_striped.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004177
Content-Length: 2447
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325031.dop017.sk1.t,1680325031.cds230.sk1.c
images.neopets.com/images/nf/fashion_designer_mynci.png
205.185.216.42200 OK 28 kB URL HTTP/1.1 images.neopets.com/images/nf/fashion_designer_mynci.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e3e693e8a4ad7f7cb1880979b088ca4
232ba2b2673d569fcefdd940356e03376fc6b09c
aefa063d7de7ec5da1698cabe5cdfb40ba76790c9e6760967c14a0f94e5f6970
GET /images/nf/fashion_designer_mynci.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1677085630"
Cache-Control: max-age=3067848
Content-Length: 27831
Content-Type: image/png
Last-Modified: Wed, 22 Feb 2023 17:07:10 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop212.sk1.t,1680325031.cds227.sk1.shn,1680325031.dop212.sk1.t,1680325031.cds206.sk1.c
images.neopets.com/items/clo_mynci_fashiontail_dragon.gif
205.185.216.42200 OK 2.7 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashiontail_dragon.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 861db704a0943a92d3ad155155b9ff5e
d1572d4929ebdb00f55f81ada933e3713facf2fc
6c40e7a7c76c487f6a81c9f027d07cf6091468b8d8193a52fe994f4d9d91b50b
GET /items/clo_mynci_fashiontail_dragon.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004245
Content-Length: 2658
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds246.sk1.c
images.neopets.com/items/clo_mynci_fashionglasses.gif
205.185.216.42200 OK 1.9 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashionglasses.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash ea54a84aaed0d4413e82dbe19689c01d
8ef60744f9764f67247001d26ebe2efd318c92ba
6ab515f60b8f2ec61121ad8f07ac691e7eee13adcb2c78c79f51646976f456da
GET /items/clo_mynci_fashionglasses.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004176
Content-Length: 1928
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop018.sk1.t,1680325031.cds022.sk1.shn,1680325031.dop018.sk1.t,1680325031.cds241.sk1.c
images.neopets.com/items/clo_mynci_fashionjacket.gif
205.185.216.42200 OK 3.8 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashionjacket.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 871e5c42a30b3a8bb6d806c5a0807f71
090cf8b4965d1065f6a9b1ebcd02b0d5586e82c0
437f945bff65aede8148ec5c57bfb25d8ef08c5b0e40f23bcdf55c14c0293106
GET /items/clo_mynci_fashionjacket.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004176
Content-Length: 3845
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds215.sk1.c
images.neopets.com/items/clo_mynci_fashionpants.gif
205.185.216.42200 OK 2.2 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashionpants.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 42932ddd2af718f2ea92666037ac121b
4fd71dac98e4a1291d606a484706233c3d636b69
c6cd1bba2ecd1ddd5f5fc2216f7c4f052b1d8efd3b7746b44cf316215a317b65
GET /items/clo_mynci_fashionpants.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004176
Content-Length: 2179
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds238.sk1.c
images.neopets.com/items/clo_tonu_oceanbody.gif
205.185.216.42200 OK 2.9 kB URL HTTP/1.1 images.neopets.com/items/clo_tonu_oceanbody.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash ae9e9ad4944085253d12360709d6136e
e381b33313ef7775a3f6cabe11fd08a81cb8aa42
5b73cfa054a22fe36a512ea5de3582a872ea990620f851d0e3ca5a339f47be8a
GET /items/clo_tonu_oceanbody.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2993885
Content-Length: 2895
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop212.sk1.t,1680325031.cds227.sk1.shn,1680325031.dop212.sk1.t,1680325031.cds067.sk1.c
images.neopets.com/items/clo_tonu_oceanhind.gif
205.185.216.42200 OK 5.4 kB URL HTTP/1.1 images.neopets.com/items/clo_tonu_oceanhind.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 92373d6a1585f34aaef0bf84d6ba1f3b
69663e700303e0b517fdc16764aafe5f3ea3225e
f77e84c45ddb434864b66c702006bb084ba967010c379e8605b1fe8879c81779
GET /items/clo_tonu_oceanhind.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2993885
Content-Length: 5432
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds241.sk1.c
images.neopets.com/items/clo_mynci_fashiontail_cuffs.gif
205.185.216.42200 OK 2.9 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashiontail_cuffs.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 67327e683d4af437e5cabd7ebabf7dcf
d12155a6217c5bd9536920a799dc7ce09f001e96
1f7348b35fffe10f2371a8d4b8f46e53695b4afe1338fb89c3fba42aae27ebbf
GET /items/clo_mynci_fashiontail_cuffs.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004176
Content-Length: 2936
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop018.sk1.t,1680325031.cds022.sk1.shn,1680325031.dop018.sk1.t,1680325031.cds259.sk1.c
images.neopets.com/items/clo_mynci_fashiontail_orange.gif
205.185.216.42200 OK 3.0 kB URL HTTP/1.1 images.neopets.com/items/clo_mynci_fashiontail_orange.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 9dadbec340e624d852c1e1da05ff1bdb
9039e1f1ea7a23d2fbf02ebe890e3c32a248b24b
e49e19db81f0f6249ad27ce1eab29a4aa6fbde6b43a3dd57c8ec553b244c228d
GET /items/clo_mynci_fashiontail_orange.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3004177
Content-Length: 2974
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds236.sk1.c
images.neopets.com/items/clo_tonu_oceanruff.gif
205.185.216.42200 OK 6.9 kB URL HTTP/1.1 images.neopets.com/items/clo_tonu_oceanruff.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash a7aa40b4d82d971b0adfdc3d3a9ff61d
4e8a6eb2785b8d610372d98b085c740fbd7fac24
5c1d596cbfc41b201fb6b907fafafc80a2a64dfc136e8a9d37063b5f1add42ba
GET /items/clo_tonu_oceanruff.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2993885
Content-Length: 6942
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds218.sk1.c
images.neopets.com/items/clo_tonu_oceanhorn.gif
205.185.216.42200 OK 3.0 kB URL HTTP/1.1 images.neopets.com/items/clo_tonu_oceanhorn.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 4ccafa84f1262ed65e1905eaa6cff952
9cfd608a7a0d3e79e1484a9cf6ac7469363c6d0a
33f64ab0f444aa579c1947c17976f73d3de00ce14e09eb10fbec2122b8d4a503
GET /items/clo_tonu_oceanhorn.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2993885
Content-Length: 2969
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop212.sk1.t,1680325031.cds227.sk1.shn,1680325031.dop212.sk1.t,1680325031.cds208.sk1.c
images.neopets.com/images/nf/ocean_tonu.png
205.185.216.42200 OK 76 kB URL HTTP/1.1 images.neopets.com/images/nf/ocean_tonu.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 322dfc3fb03f18e2f988f7dfadf72b11
e894572b13d2b9b129715bcd9cf94b62fc44ab23
c5f5fe1cdccac7c30390f9bbb16e45318df8512cc081f21da95383d2226aa57f
GET /images/nf/ocean_tonu.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1677017309"
Cache-Control: max-age=3005143
Content-Length: 75594
Content-Type: image/png
Last-Modified: Tue, 21 Feb 2023 22:08:29 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325031.dop017.sk1.t,1680325031.cds209.sk1.c
images.neopets.com/items/inst_tonu_fanfare_horn.gif
205.185.216.42200 OK 3.9 kB URL HTTP/1.1 images.neopets.com/items/inst_tonu_fanfare_horn.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 1732d2cecb48c7f476e523c0450e64f4
39bcad2b71461f483d8632b26b57ce440f482326
2906a34f3f547f2e13e80c6e097f611558b48776a6192015892d9348dea093d1
GET /items/inst_tonu_fanfare_horn.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2997188
Content-Length: 3858
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds210.sk1.c
images.neopets.com/items/snow_sroom_chiapop.gif
205.185.216.42200 OK 2.4 kB URL HTTP/1.1 images.neopets.com/items/snow_sroom_chiapop.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 2f1eef7b42876ce7a4f7a50d3dbb1cb1
9e1edffffe5200010a5e0e6e20bbd53a836adb22
5f9f6ef7b3da2e1b7195acfb10cfb77bcff0c4e49f1b06268430f081d43c5e33
GET /items/snow_sroom_chiapop.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3005296
Content-Length: 2367
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop018.sk1.t,1680325031.cds022.sk1.shn,1680325031.dop018.sk1.t,1680325031.cds243.sk1.c
images.neopets.com/items/gro_mynci_banana_body_scrub.gif
205.185.216.42200 OK 4.3 kB URL HTTP/1.1 images.neopets.com/items/gro_mynci_banana_body_scrub.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 98ef9dd05aa3e2c5cca72b2aa113ac82
ca08471763f610e67ca35de89757e183bb9e665b
c64392aff91353248476c875941ff9f8b22eba231fcfba3e2635466c68615577
GET /items/gro_mynci_banana_body_scrub.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3007522
Content-Length: 4256
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds257.sk1.c
images.neopets.com/items/clo_gardener_chia_hat.gif
205.185.216.42200 OK 3.5 kB URL HTTP/1.1 images.neopets.com/items/clo_gardener_chia_hat.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash a676d51b36fba8b8379062bfd614ba7a
c2907ae2f4b441aa4969f6b092c57a4498d96cad
35f8fdba33b4624b00fb3bf01b029a281121fdac31595fcdd127b185b4907a06
GET /items/clo_gardener_chia_hat.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2647193
Content-Length: 3452
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop212.sk1.t,1680325031.cds227.sk1.shn,1680325031.dop212.sk1.t,1680325031.cds066.sk1.c
images.neopets.com/items/clo_gardener_chia_overalls.gif
205.185.216.42200 OK 4.7 kB URL HTTP/1.1 images.neopets.com/items/clo_gardener_chia_overalls.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 979c3fd448c227442e69b53f203df3d2
211fd8f52b46fff7250e3cb6cf3c904ecfc38155
ef869f6a10816c6a125fc10535906853a551b81eb338270ac9761b66790642bb
GET /items/clo_gardener_chia_overalls.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2555618
Content-Length: 4717
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325031.dop017.sk1.t,1680325031.cds212.sk1.c
images.neopets.com/items/clo_gardener_chia_shoes.gif
205.185.216.42200 OK 3.1 kB URL HTTP/1.1 images.neopets.com/items/clo_gardener_chia_shoes.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash d3f6a3afb2f755c72d7dbe6c4ed195e7
d20870ce8fd9a861bba78ca2f3907689c6b31a45
83c18d4ce0bbb663a8613d6b60441388558815b39c31b64d4a295db5a30bdd63
GET /items/clo_gardener_chia_shoes.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=942953
Content-Length: 3118
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds003.sk1.c
images.neopets.com/items/clo_valentine_armour_sword.gif
205.185.216.42200 OK 2.0 kB URL HTTP/1.1 images.neopets.com/items/clo_valentine_armour_sword.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 3192ba1f641b1cd03c5b18c990fe95e4
535293fc5132894adbc3ec0b67f6b964059328e3
da70c14f414eefe8f31ad3d9de65ec5dac8b680136f54d038964c1848dbd06ab
GET /items/clo_valentine_armour_sword.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2304588
Content-Length: 1953
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop018.sk1.t,1680325031.cds022.sk1.shn,1680325031.dop018.sk1.t,1680325031.cds250.sk1.c
images.neopets.com/items/clo_gardener_chia_basket.gif
205.185.216.42200 OK 4.8 kB URL HTTP/1.1 images.neopets.com/items/clo_gardener_chia_basket.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash a45694f66c04569ba5c8545850d220d4
81834bff8f5c11443d37629e298d6f4a653849b4
bc8d8902fbc2072973a85f5a755d80245fa61c881598cb02ce67d2c6255c7f42
GET /items/clo_gardener_chia_basket.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2996960
Content-Length: 4815
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds208.sk1.c
images.neopets.com/images/nf/gardener_chia.png
205.185.216.42200 OK 96 kB URL HTTP/1.1 images.neopets.com/images/nf/gardener_chia.png
IP 205.185.216.42:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 8827ef010fb2e3884a890c2e1aafca24
94109449adcd9414e03ef1d6822bafe47437921b
3ab5f0324bf82089fbece984e5e4e6075cdadc4659ae4bdcd6519b326e380b0d
GET /images/nf/gardener_chia.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1677017313"
Cache-Control: max-age=3001363
Content-Length: 95799
Content-Type: image/png
Last-Modified: Tue, 21 Feb 2023 22:08:33 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds010.sk1.c
pets.neopets.com/cp/ckbmndl7/1/4.png
205.185.216.10200 OK 22 kB URL HTTP/1.1 pets.neopets.com/cp/ckbmndl7/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 373a121e756d75224735fc80d137fcda
b79e83b6ab0e43096a1dc99d8e2d1bf79e0bdda4
dac7b9c4252c9f027ed93f1850d326e5b5979b50ecce544a9f9cf1b1626642c9
GET /cp/ckbmndl7/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680288013"
Cache-Control: max-age=49382
Content-Length: 22250
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 18:40:13 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop026.sk1.t,1680325031.cds243.sk1.shn,1680325031.dop026.sk1.t,1680325031.cds066.sk1.c
images.neopets.com/items/mall_restrictive_drippings.gif
205.185.216.42200 OK 126 kB URL HTTP/1.1 images.neopets.com/items/mall_restrictive_drippings.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Size 126 kB (126421 bytes)
Hash 01847c3ebd85bb9239a86067e6500e11
77cfe1a963c929c2ef87daa129e7214f80d5e55b
d01115981b1615a840ac9fa8d90531acd5311ac5907e74599667427e067de90a
GET /items/mall_restrictive_drippings.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=3029663
Content-Length: 126421
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds201.sk1.c
pets.neopets.com/cp/rws5h2zj/1/4.png
205.185.216.10200 OK 28 kB URL HTTP/1.1 pets.neopets.com/cp/rws5h2zj/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 6eacf54cee53d7344d08edb206914d52
de7306066a0f9a818b2ebf620b08fb926d49ff4a
019e856c6aab89607f8b3c8974352d514063295d26ec251bd9766c9456ba0214
GET /cp/rws5h2zj/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680283239"
Cache-Control: max-age=44608
Content-Length: 27896
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 17:20:39 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop023.sk1.t,1680325031.cds215.sk1.shn,1680325031.dop023.sk1.t,1680325031.cds238.sk1.c
images.neopets.com/items/mall_restrictive_feet.gif
205.185.216.42200 OK 123 kB URL HTTP/1.1 images.neopets.com/items/mall_restrictive_feet.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Size 123 kB (123103 bytes)
Hash 796e9dd0c8bdb065c88558920e04a4ed
eaed9c77acea858e8d57df97569953fcd65b46fe
11723fb1fa7046cb898bcace754af4121db05ffda3ca1a0a49c36fd23eb54e54
GET /items/mall_restrictive_feet.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2933870
Content-Length: 123103
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds225.sk1.c
images.neopets.com/items/clo_smoke_gelert_eyes.gif
205.185.216.42200 OK 2.3 kB URL HTTP/1.1 images.neopets.com/items/clo_smoke_gelert_eyes.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 276f711df30bda541d0fb24af13476d2
fc85a2b1daf896d658f9a1d1341a9f4bbfc2b390
698e367778d6d6210584aaa00716a8bf88d2441174944b56ace456e2fcc7e544
GET /items/clo_smoke_gelert_eyes.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=639209
Content-Length: 2251
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325031.dop017.sk1.t,1680325031.cds023.sk1.c
images.neopets.com/images/nf/walien_faeries_hope_lost_fragments.png
205.185.216.42200 OK 123 kB URL HTTP/1.1 images.neopets.com/images/nf/walien_faeries_hope_lost_fragments.png
IP 205.185.216.42:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Size 123 kB (123099 bytes)
Hash 7b01ce9d543109c78c5bf2a3d4dd8058
64cbd1445583cf7fc75f3a03bd9b2af96b82b8a3
353d62216961ad3105b59cc8773e56496a3254b392e382e1caa67aba9503bb08
GET /images/nf/walien_faeries_hope_lost_fragments.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1678900969"
Cache-Control: max-age=1729567
Content-Length: 123099
Content-Type: image/png
Last-Modified: Wed, 15 Mar 2023 17:22:49 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325031.cds221.sk1.c
images.neopets.com/items/clo_smoke_gelert_tail.gif
205.185.216.42200 OK 3.1 kB URL HTTP/1.1 images.neopets.com/items/clo_smoke_gelert_tail.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 0ec4d13423d3bdea09992384202862ac
ce645ea4a1f5ece64f72e4c9c078da6d9630f88d
9e6524111a8d6fb2f3ec2cbf7e4d22321285882a23d234311d7adcf2b516a523
GET /items/clo_smoke_gelert_tail.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=639082
Content-Length: 3132
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325031.dop201.sk1.t,1680325031.cds253.sk1.c
images.neopets.com/items/cof_chia_chai_latte.gif
205.185.216.42200 OK 3.8 kB URL HTTP/1.1 images.neopets.com/items/cof_chia_chai_latte.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 55b04125daf27dc035883b0b21f6a087
eca0b88913eabc80fc271064b27cea5acf81694d
13654e1fc12d5b355a2653c4befb75e9882e645f833a9c8027bda2b5915140d6
GET /items/cof_chia_chai_latte.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=2647193
Content-Length: 3837
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325031.dop017.sk1.t,1680325031.cds230.sk1.c
images.neopets.com/items/paintbrush_valentine.gif
205.185.216.42200 OK 2.6 kB URL HTTP/1.1 images.neopets.com/items/paintbrush_valentine.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash dbef035b18c80ef3dd56bc4edbeb5932
b2e9f319f2301307448a101985a67fa74d64bc2a
ebbbf0a5037ec50507ba26b9ce58fae76c2d3c64aa478e1806fcacbffb5a2a1a
GET /items/paintbrush_valentine.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
Cache-Control: max-age=1802683
Content-Length: 2607
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop212.sk1.t,1680325031.cds227.sk1.shn,1680325031.dop212.sk1.t,1680325031.cds243.sk1.c
images.neopets.com/items/mall_trink_meepitstube.gif
205.185.216.42200 OK 4.2 kB URL HTTP/1.1 images.neopets.com/items/mall_trink_meepitstube.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash aa2351588b2785f7866d95746fe2c43e
c85a8f605e8113d9266d7f3db475328cfab3f114
5b96581817b9f2abdd95ae8e7e2506f9bb8ab148b104d7a9174016a23096c136
GET /items/mall_trink_meepitstube.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2342136
Content-Length: 4231
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325031.dop224.sk1.t,1680325032.cds242.sk1.c
images.neopets.com/images/nf/valentine_aromour_blumaroo.png
205.185.216.42200 OK 49 kB URL HTTP/1.1 images.neopets.com/images/nf/valentine_aromour_blumaroo.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 270372dc5f51bbc6e393ad3f92fc1b99
6188ceaa96ccd2ae04979348b5893760c9a2ca4a
559f0b95b21c953abaca57489fc335c7968145aca25a858ab35afed16eeafe02
GET /images/nf/valentine_aromour_blumaroo.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1676395860"
Cache-Control: max-age=2378113
Content-Length: 48843
Content-Type: image/png
Last-Modified: Tue, 14 Feb 2023 17:31:00 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325031.dop066.sk1.t,1680325031.cds250.sk1.c
images.neopets.com/items/clo_disabled_pride_flag.gif
205.185.216.42200 OK 5.9 kB URL HTTP/1.1 images.neopets.com/items/clo_disabled_pride_flag.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash e1402e19cf0e8047cfdff4d895a90276
d1a6f0069bc0f13f304a34d98a6f700cb13da871
ee67ffb2e8e5ad70c21ade63c7f5cd27fb655f28a77313a6866c24d119bc9ab1
GET /items/clo_disabled_pride_flag.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2769413
Content-Length: 5867
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds260.sk1.c
images.neopets.com/items/mall_restrictive_wings.gif
205.185.216.42200 OK 126 kB URL HTTP/1.1 images.neopets.com/items/mall_restrictive_wings.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Size 126 kB (125570 bytes)
Hash 0ae1bdcfb30a4ef2dba7f5ff5701216f
4e26a63fb1a3b8d82dee909f0fe7f659e74bd5d1
279291782e512927d1791e15b967dbab7dce04f9c076c98155314c582b3bd916
GET /items/mall_restrictive_wings.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2933869
Content-Length: 125570
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds204.sk1.c
images.neopets.com/items/clo_valentine_armour_body.gif
205.185.216.42200 OK 4.7 kB URL HTTP/1.1 images.neopets.com/items/clo_valentine_armour_body.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash bb07e399063e2a044e09820516604622
8ab8a5f0a4d148a33dc87e19133e73c1005601bb
32815c21e35a6e9f5a03ab8233ffcfc0b80996c3ef31099e8834eda9fde4d8e5
GET /items/clo_valentine_armour_body.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2304587
Content-Length: 4744
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325032.dop066.sk1.t,1680325032.cds251.sk1.c
images.neopets.com/items/mall_restrictive_ruff.gif
205.185.216.42200 OK 123 kB URL HTTP/1.1 images.neopets.com/items/mall_restrictive_ruff.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Size 123 kB (122947 bytes)
Hash 75630df275d08460e2e9d5ba8fc3c3d6
ae6ef0745a1c6dfc9b22bffd6d93eb2bcb35771c
592a747be4df7c75b1c586f82d889709ea46a7f6a33b6612b890e12fed9256b3
GET /items/mall_restrictive_ruff.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2342296
Content-Length: 122947
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds249.sk1.c
images.neopets.com/items/mall_restrictive_hair.gif
205.185.216.42200 OK 125 kB URL HTTP/1.1 images.neopets.com/items/mall_restrictive_hair.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Size 125 kB (124693 bytes)
Hash 05158b521969c71d6d4185ba4bb55dc5
766145a3b0fd64daf772eba887c4bafba9e020c9
fb2a429528b9b33f36b12869c2cbc5e2670742609c8a5ed0cd1a319c662e0e90
GET /items/mall_restrictive_hair.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2933868
Content-Length: 124693
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds020.sk1.c
images.neopets.com/items/foo_chomby_tail_dog.gif
205.185.216.42200 OK 4.2 kB URL HTTP/1.1 images.neopets.com/items/foo_chomby_tail_dog.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 041b0c0819ebb0a219a3a4c82df8a297
1e677e5b067681a6904ff7f28f69d84e524a1602
eace1669cc8d1502c581ca97eb8f325e530cd2e078b5737cc3abba1e49ca6f22
GET /items/foo_chomby_tail_dog.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2333169
Content-Length: 4219
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds250.sk1.c
images.neopets.com/items/clo_scorchio_blacksmith_smoke.gif
205.185.216.42200 OK 1.8 kB URL HTTP/1.1 images.neopets.com/items/clo_scorchio_blacksmith_smoke.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 6b9de4825d56037f2e64f0661a8d4596
595a1745047aabfa88489202daf05cca29d16f6d
22251b6c57e6dc77d814d4af64ddf1ae6df2eb28f33a30d5a6dce587ebeb939a
GET /items/clo_scorchio_blacksmith_smoke.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=965880
Content-Length: 1761
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds069.sk1.c
images.neopets.com/items/clo_scorchio_blacksmith_pants.gif
205.185.216.42200 OK 3.0 kB URL HTTP/1.1 images.neopets.com/items/clo_scorchio_blacksmith_pants.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 8d9bfd571eeed755b3637f3fd1012c70
8a8cd253712ace6b8e4eb9eb5061ae6834fb71cb
06b9ed0a82dee00017ef9d93e8e48906e5b22d27823470f36ed6ec299f9065b6
GET /items/clo_scorchio_blacksmith_pants.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=624666
Content-Length: 3020
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds248.sk1.c
images.neopets.com/items/clo_smoke_gelert_body.gif
205.185.216.42200 OK 3.6 kB URL HTTP/1.1 images.neopets.com/items/clo_smoke_gelert_body.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash b4a21d0e03be055d928b610a7afff070
58813f966c7a84a46cac8d4e448bf7fb49df41bb
d4b819cc7918b432d8520647dc4bbb77afe37e17f598844b57ad6c13e6428e14
GET /items/clo_smoke_gelert_body.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=962635
Content-Length: 3633
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds239.sk1.c
images.neopets.com/items/clo_valentine_armour_shield.gif
205.185.216.42200 OK 3.5 kB URL HTTP/1.1 images.neopets.com/items/clo_valentine_armour_shield.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 2cceba1a22d2b155d53b5e2bb4c9ad27
97fc2ee56a8af6b78ca22e076a9ae8fdde616899
4b09dac6aa7599848a4ea5cbadd60d33ae8a3199c2ccb6b4d6048509b7a07a8a
GET /items/clo_valentine_armour_shield.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2304587
Content-Length: 3548
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325032.dop066.sk1.t,1680325032.cds225.sk1.c
images.neopets.com/items/clo_valentine_armour_helmet.gif
205.185.216.42200 OK 4.2 kB URL HTTP/1.1 images.neopets.com/items/clo_valentine_armour_helmet.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 37233554da80c004cbc61c45d573caca
f0f0917200bdd87acda1768ed23e0960ed16637d
1972ff1099abdfd63286f7463d84521e094d2da322d96241de1532db3adc3ccc
GET /items/clo_valentine_armour_helmet.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2304804
Content-Length: 4156
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds263.sk1.c
images.neopets.com/items/faellie_valentine.gif
205.185.216.42200 OK 4.1 kB URL HTTP/1.1 images.neopets.com/items/faellie_valentine.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 6c8b5658015a8c8ac66ade0ab5dcfda0
36755055352af7a50b81555a8c2b572795a04e28
ff58d6d822a3e99216b2576dfc3d3f1e487ae3e15132ea50684c810fd509432c
GET /items/faellie_valentine.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2304468
Content-Length: 4053
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop212.sk1.t,1680325031.cds227.sk1.shn,1680325032.dop212.sk1.t,1680325032.cds204.sk1.c
images.neopets.com/items/spyder_valentine.gif
205.185.216.42200 OK 3.7 kB URL HTTP/1.1 images.neopets.com/items/spyder_valentine.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash d98afd380bc4c92285260c8375031485
19fd954a1e763ffc969e6ebdd98ec2e9704b9ab4
29edae807a32ae1ed8802bd926e55a7613c1243581faa778864631b96b065075
GET /items/spyder_valentine.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2304587
Content-Length: 3699
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds238.sk1.c
images.neopets.com/games/pages/icons/sml/s-81.png
205.185.216.42200 OK 2.4 kB URL HTTP/1.1 images.neopets.com/games/pages/icons/sml/s-81.png
IP 205.185.216.42:0
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash e955b14259fed077e4819a841673f393
a6e296cd313b01d66c67cc265a9056aef553c17b
d770890644369104823c14108bd2aede89679a4b56ccd271b8185f81be2f4689
GET /games/pages/icons/sml/s-81.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
ETag: "1323807949"
Cache-Control: max-age=1811803
Content-Length: 2357
Content-Type: image/png
Last-Modified: Tue, 13 Dec 2011 20:25:49 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds240.sk1.c
images.neopets.com/items/clo_scorchio_blacksmith_gloves.gif
205.185.216.42200 OK 3.0 kB URL HTTP/1.1 images.neopets.com/items/clo_scorchio_blacksmith_gloves.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 5369bb0876b3648839168e81dc5026e1
7550260eddc1162cdb9da09be8f8f083ae2f53d8
24b7e1ef6d45e80f877c0151cff61b8673986fc1dcddf579998ac235dd32f366
GET /items/clo_scorchio_blacksmith_gloves.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=1649988
Content-Length: 2992
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds242.sk1.c
images.neopets.com/images/nf/smoke_gelert.png
205.185.216.42200 OK 106 kB URL HTTP/1.1 images.neopets.com/images/nf/smoke_gelert.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105648 bytes)
Hash 93f38556aa5c722745cf3dd9d10baf54
5563404e08fef4e001165d4049f90ce7af5a385f
c7e66a8e24be76737087a4f35489e5f14acdce4054e7a6bcf53e2e90559a3843
GET /images/nf/smoke_gelert.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
ETag: "1678120148"
Cache-Control: max-age=948762
Content-Length: 105648
Content-Type: image/png
Last-Modified: Mon, 06 Mar 2023 16:29:08 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds002.sk1.c
images.neopets.com/items/clo_chomby_mushroombody.gif
205.185.216.42200 OK 4.2 kB URL HTTP/1.1 images.neopets.com/items/clo_chomby_mushroombody.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 1962ae53da166e46b7901d7db5072846
289447b6ec7e9be1b78edb5261d5edad932a9aaa
e95364c2aaca034fde848089aa3b441754d063cdb796145bc3f21f4587c5da70
GET /items/clo_chomby_mushroombody.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=1305914
Content-Length: 4240
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325032.dop066.sk1.t,1680325032.cds221.sk1.c
images.neopets.com/items/clo_smoke_gelert_claws.gif
205.185.216.42200 OK 3.3 kB URL HTTP/1.1 images.neopets.com/items/clo_smoke_gelert_claws.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash dbbf3a14ced06981c6cacc622664ed42
ae5be46baa8b895f36fc23229cda1564b4fea940
944181bf69d5d160f4b88d5c0387c6406b3219797bf5626585ec510b69c64506
GET /items/clo_smoke_gelert_claws.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=639012
Content-Length: 3348
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds238.sk1.c
images.neopets.com/images/nf/mushroom_chomby.png
205.185.216.42200 OK 67 kB URL HTTP/1.1 images.neopets.com/images/nf/mushroom_chomby.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c238b73cfeceef36c4b8d10838d4b9eb
d815854d58f68cfe909a19d88e48e888fb0b007c
dc9cc2c2b0700747ce2cf2579ffcdacb8f29acc7dc7b8da8b1a4694a3494757e
GET /images/nf/mushroom_chomby.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
ETag: "1679499495"
Cache-Control: max-age=2328113
Content-Length: 66971
Content-Type: image/png
Last-Modified: Wed, 22 Mar 2023 15:38:15 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds240.sk1.c
images.neopets.com/items/clo_chomby_mushroomlegs.gif
205.185.216.42200 OK 4.1 kB URL HTTP/1.1 images.neopets.com/items/clo_chomby_mushroomlegs.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 6e744e96f61428a9f863b702da91e6dc
a276b71811f79dacd0ad3f92e9319ab4f2ed876d
4b85164fab88fd97861cfd0a30ad2157d6c6d947997f28b5b7a8456f176d0abf
GET /items/clo_chomby_mushroomlegs.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=1305929
Content-Length: 4053
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds237.sk1.c
images.neopets.com/images/nf/neon_uni.png
205.185.216.42200 OK 40 kB URL HTTP/1.1 images.neopets.com/images/nf/neon_uni.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b779d78c75ac4e2a55dbbd99997e7656
6ff2015080cf34c7c7497e6dc4736f31f6ead590
b07455d8ad4aadc3de0a67b22425cc4fcd71209c026622ec3062ac07b21b9ec0
GET /images/nf/neon_uni.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
ETag: "1677775846"
Cache-Control: max-age=604594
Content-Length: 40537
Content-Type: image/png
Last-Modified: Thu, 02 Mar 2023 16:50:46 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds256.sk1.c
images.neopets.com/items/clo_neon_uni_horn.gif
205.185.216.42200 OK 2.8 kB URL HTTP/1.1 images.neopets.com/items/clo_neon_uni_horn.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash ab5e7f7de341a301aacf03c9b083460d
73f025ee333ddcf1eb01035ccbb1e838c9dbf017
1e05b4d593ff46d5f934e79060d9b6547b958428ccbe02f7c3ddc8a45361f4c8
GET /items/clo_neon_uni_horn.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=432362
Content-Length: 2816
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds223.sk1.c
images.neopets.com/items/clo_chomby_mushroomhind.gif
205.185.216.42200 OK 4.2 kB URL HTTP/1.1 images.neopets.com/items/clo_chomby_mushroomhind.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash f4fc8171cca20ea3d093a90ea527bdd3
cbabaf5fd0e9cd1fa3959a20d2bea4042a2c4b6b
d0fc3737d37d6f4c117b0f2be61a02b271c0473584adfb003ea8a3d2df6e91fa
GET /items/clo_chomby_mushroomhind.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2108556
Content-Length: 4201
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325032.dop066.sk1.t,1680325032.cds252.sk1.c
images.neopets.com/items/bak_rainbow_gelert_cupcake.gif
205.185.216.42200 OK 4.2 kB URL HTTP/1.1 images.neopets.com/items/bak_rainbow_gelert_cupcake.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 4451c95a089cbd4a35879df3c398f222
1a49e3d31758459d88067eda96eb74345452dac5
c2b46e8e0161c7518233cb4e441b6e62d3e835bb9bd3df7a909897472a17ceca
GET /items/bak_rainbow_gelert_cupcake.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=963436
Content-Length: 4195
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds250.sk1.c
images.neopets.com/items/clo_smoke_gelert_ears.gif
205.185.216.42200 OK 2.6 kB URL HTTP/1.1 images.neopets.com/items/clo_smoke_gelert_ears.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 9a50a8d23ea0b0b27bfb0c6dd2305c8b
3d914a4e88441cb2a0065cc7b9b9e6c2de47f3c9
c9426198c46a19e895fbaaad4df9fc668d7379bbd49692c47a6fc5f6ec1b4566
GET /items/clo_smoke_gelert_ears.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=954006
Content-Length: 2621
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds017.sk1.c
images.neopets.com/items/clo_chomby_mushroomspikes.gif
205.185.216.42200 OK 4.1 kB URL HTTP/1.1 images.neopets.com/items/clo_chomby_mushroomspikes.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 2f25d49a6cf4ef1ea33b2e34ba4d4445
180d4cd76c8afb014375951b33e134356a0dbc63
6b4f99cd017f7a2a53a1d7a90f3f0de7f6b1b075282a3a127855cb497e0723a0
GET /items/clo_chomby_mushroomspikes.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=2336188
Content-Length: 4142
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds253.sk1.c
images.neopets.com/items/clo_chomby_mushroomeyes.gif
205.185.216.42200 OK 4.0 kB URL HTTP/1.1 images.neopets.com/items/clo_chomby_mushroomeyes.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash d3e6bf557ed019fb45c65f4d7e431cba
c07451281e4449ef3afa749e1d3f963f635f1deb
d6ac6ace74c23f81955272f1f3dff02d9b4304607f6fbe634a5ba468eccd281b
GET /items/clo_chomby_mushroomeyes.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=1305922
Content-Length: 3975
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds066.sk1.c
images.neopets.com/items/clo_scorchio_blacksmith_tail.gif
205.185.216.42200 OK 2.9 kB URL HTTP/1.1 images.neopets.com/items/clo_scorchio_blacksmith_tail.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 7047c5540efb9c7f820dd1c7cf27fb49
b10debf5477e58ba009f18a4452a6881d72a9cd1
b909ecc9fe0599e51c537c33a1d0718ad9bd7ddfaf0ac11f50dafbefe433a52f
GET /items/clo_scorchio_blacksmith_tail.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=624429
Content-Length: 2899
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds253.sk1.c
images.neopets.com/images/nf/blacksmith_scorchio.png
205.185.216.42200 OK 50 kB URL HTTP/1.1 images.neopets.com/images/nf/blacksmith_scorchio.png
IP 205.185.216.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash e62816793422f35694f865032bedff85
5b4e2d6f6f0b05aa2c42a91f4cb8c38489d79a80
380ff87231ca9dead09fda43c7e815e21f36409b3230ebb4e227709b8e6131bd
GET /images/nf/blacksmith_scorchio.png HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
ETag: "1678807085"
Cache-Control: max-age=1635716
Content-Length: 49940
Content-Type: image/png
Last-Modified: Tue, 14 Mar 2023 15:18:05 GMT
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds261.sk1.c
images.neopets.com/items/clo_scorchio_blacksmith_shirt.gif
205.185.216.42200 OK 4.3 kB URL HTTP/1.1 images.neopets.com/items/clo_scorchio_blacksmith_shirt.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash a3e4fac6ee72e8517e6f9a6b5c76ba3f
b05af692ca844a26b7ae141009ca9d32936762bb
9d1ada21ebcc261e1dd7aeff37437fe3958392b64e55d595aaf2dfc3d2f560cd
GET /items/clo_scorchio_blacksmith_shirt.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=624781
Content-Length: 4333
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325032.dop066.sk1.t,1680325032.cds225.sk1.c
images.neopets.com/items/plu_robot_scorchio.gif
205.185.216.42200 OK 4.7 kB URL HTTP/1.1 images.neopets.com/items/plu_robot_scorchio.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 800ec17517826204b21f116fcddcfa7d
429f9fb5fa77f4791265ad95dc6685082802b57b
4e8a459290c2e819fedaf48bb292abc937946d72d18409c7f4611b5c154fd65e
GET /items/plu_robot_scorchio.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=639044
Content-Length: 4729
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop017.sk1.t,1680325031.cds067.sk1.shn,1680325032.dop017.sk1.t,1680325032.cds223.sk1.c
images.neopets.com/items/clo_neon_uni_shirt.gif
205.185.216.42200 OK 3.3 kB URL HTTP/1.1 images.neopets.com/items/clo_neon_uni_shirt.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 76a622e3eae84d3f3856f380a969e0f5
42fc97fbfb2cefc33307f5c2ecf3e9b9aac64cab
d202b224a3db19c9cb64ed291aff4c2f73a65cd164bfb2ec935f7198fc99d678
GET /items/clo_neon_uni_shirt.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=432458
Content-Length: 3319
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop224.sk1.t,1680325031.cds232.sk1.shn,1680325032.dop224.sk1.t,1680325032.cds213.sk1.c
s.tribalfusion.com/real/tags/TheDailyNeopetscom/ROS/tags.js
104.18.25.173200 OK 14 kB URL HTTP/2 s.tribalfusion.com/real/tags/TheDailyNeopetscom/ROS/tags.js
IP 104.18.25.173:0
File type ASCII text, with CRLF line terminators
Hash 85d8bd20dd1dd0938714401e5f7e4669
71f26b2512e26d46bba88f74f97b8a29aabd326e
59bb500e52babb59e9200a9ebf14eabc4ad77cc30488f0138411a4a4a5f327d3
GET /real/tags/TheDailyNeopetscom/ROS/tags.js HTTP/1.1
Host: s.tribalfusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:12 GMT
content-type: application/x-javascript
content-length: 14181
p3p: CP="NOI DEVo TAIa OUR BUS"
x-function: 151
x-reuse-index: 2287
last-modified: Fri, 17 Feb 2023 18:05:21 GMT
etag: 17142622742462255803
expires: Sat, 01 Apr 2023 05:57:12 GMT
cache-control: max-age=3600, private
content-encoding: gzip
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e3ff9b9130afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.neopets.com/items/clo_scorchio_blacksmith_hammer.gif
205.185.216.42200 OK 2.2 kB URL HTTP/1.1 images.neopets.com/items/clo_scorchio_blacksmith_hammer.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 6aab5965d3be4913574c11ef236487ef
19347148375ff977b1f47bb401c95bdc5c37dda6
4f7f9b4886b8195bcce9bcc2c9aa1a36817c4e583cf5cecfd9ab63c343c77f89
GET /items/clo_scorchio_blacksmith_hammer.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=1649991
Content-Length: 2203
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop066.sk1.t,1680325031.cds024.sk1.shn,1680325032.dop066.sk1.t,1680325032.cds243.sk1.c
images.neopets.com/items/clo_neon_uni_hair.gif
205.185.216.42200 OK 2.9 kB URL HTTP/1.1 images.neopets.com/items/clo_neon_uni_hair.gif
IP 205.185.216.42:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 78d0fe6588eec8c69adf69c886756a1f
e0b23caf33caf591f92b7472a9309c134f496ae5
eb626582c9f185693313dd4d462cfce5649ccf819fa8d7ebb7e7f4a9b5db13e2
GET /items/clo_neon_uni_hair.gif HTTP/1.1
Host: images.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Cache-Control: max-age=432196
Content-Length: 2863
Content-Type: image/gif
Accept-Ranges: bytes
Vary: Origin
X-HW: 1680325031.dop201.sk1.t,1680325031.cds010.sk1.shn,1680325032.dop201.sk1.t,1680325032.cds259.sk1.c
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmdTQ3jw.woff2
216.58.207.227200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmdTQ3jw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13952, version 1.0\012- data
Hash c9e884975975e032087d471b1b6a5cc2
aed5e2272d5ab5742bbbca06126f23b0cc346dec
923eb1ee6c651ddd9f63097adbbf2d9d9f441889309efffa1861a8e07fa35a87
GET /s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmdTQ3jw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://thedailyneopets.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 11:02:46 GMT
expires: Wed, 27 Mar 2024 11:02:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:45:00 GMT
content-type: font/woff2
age: 323666
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pets.neopets.com/cp/xtjlo4dt/1/4.png
205.185.216.10200 OK 40 kB URL HTTP/1.1 pets.neopets.com/cp/xtjlo4dt/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f345bd05f98bb710f725ce9c525d778
763157f01c30f03e99094e37dfd7072c8349cb1f
481c3560953e1da288cd31eab788cc9fdc41664c543e32b955607a44912b5a87
GET /cp/xtjlo4dt/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
ETag: "1680298811"
Cache-Control: max-age=60179
Content-Length: 39999
Content-Type: image/png
X-HW: 1680325031.dop014.sk1.t,1680325031.cds202.sk1.shn,1680325031.dop014.sk1.t,1680325031.cds213.sk1.sr,1680325031.dop205.dc2.r,1680325032.cds042.dc2.c,1680325032.cds213.sk1.e
Last-Modified: Fri, 31 Mar 2023 21:40:11 GMT
pets.neopets.com/cp/gf9t8fgs/1/4.png
205.185.216.10200 OK 34 kB URL HTTP/1.1 pets.neopets.com/cp/gf9t8fgs/1/4.png
IP 205.185.216.10:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b227be476939729586063a0ee06adfb3
c777a762d39ca7cff93543217e246147bac95a38
9f36641cf3ce86f17d1d400d6a612a5340892f11826c63b057ebaee8de66ad40
GET /cp/gf9t8fgs/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
ETag: "1680287350"
Cache-Control: max-age=48718
Content-Length: 33806
Content-Type: image/png
X-HW: 1680325031.dop023.sk1.t,1680325031.cds253.sk1.shn,1680325031.dop023.sk1.t,1680325031.cds221.sk1.sr,1680325032.dop186.dc2.r,1680325032.cds251.dc2.c,1680325032.cds221.sk1.e
Last-Modified: Fri, 31 Mar 2023 18:29:10 GMT
region1.google-analytics.com/g/collect?v=2&tid=G-7EDVD9BECY>m=45je33t0&_p=135411174&cid=1813997782.1680325030&ul=en-us&sr=1280x1024&_s=1&sid=1680325030&sct=1&seg=0&dl=https%3A%2F%2Fthedailyneopets.com%2F&dt=Welcome%20to%20The%20Daily%20Neopets!%20-%20The%20Daily%20Neopets&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7EDVD9BECY>m=45je33t0&_p=135411174&cid=1813997782.1680325030&ul=en-us&sr=1280x1024&_s=1&sid=1680325030&sct=1&seg=0&dl=https%3A%2F%2Fthedailyneopets.com%2F&dt=Welcome%20to%20The%20Daily%20Neopets!%20-%20The%20Daily%20Neopets&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7EDVD9BECY>m=45je33t0&_p=135411174&cid=1813997782.1680325030&ul=en-us&sr=1280x1024&_s=1&sid=1680325030&sct=1&seg=0&dl=https%3A%2F%2Fthedailyneopets.com%2F&dt=Welcome%20to%20The%20Daily%20Neopets!%20-%20The%20Daily%20Neopets&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thedailyneopets.com
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://thedailyneopets.com
date: Sat, 01 Apr 2023 04:57:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.doubleverify.com/dvbs_src.js?ctx=3758893&cmp=29589193&plc=363109549&sid=5745037&dvregion=0&unit=728x90
95.101.11.115200 OK 1.2 kB URL HTTP/1.1 cdn.doubleverify.com/dvbs_src.js?ctx=3758893&cmp=29589193&plc=363109549&sid=5745037&dvregion=0&unit=728x90
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
File type HTML document, ASCII text, with very long lines (536)
Hash 9b0ef0e5b912683035f3ec3dc7a6ba88
ac08726b04e33d671ac1f77cba8462992ff4b932
1a57cc629965b4fd2cb6e1f764fc5fda00b2ed9cdf9c653bdb03fc49e9ce273f
GET /dvbs_src.js?ctx=3758893&cmp=29589193&plc=363109549&sid=5745037&dvregion=0&unit=728x90 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 10 Jan 2023 10:59:51 GMT
Accept-Ranges: bytes
ETag: "2d4a10aae224d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Timing-Allow-Origin: *
Content-Length: 1170
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: keep-alive
cdn.doubleverify.com/dvbs_src_internal117.js
95.101.11.115200 OK 19 kB URL HTTP/1.1 cdn.doubleverify.com/dvbs_src_internal117.js
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2636), with CRLF, LF line terminators
Hash cf93b15de9d1c76c1bc6fdaee5382496
26e52f0a242bff375cc54d8d33a1a416d89e2813
c290ae68279e0685c13650d1534a0cd86997420399bb67288046e61b13defb53
GET /dvbs_src_internal117.js HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=946080000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 10 Jan 2023 11:00:18 GMT
Accept-Ranges: bytes
ETag: "0cda5b9e224d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 18840
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8ff1d01e68831d80a4f75d7db3970972
1a9e1f3fa7389cccb0e91cff2616767e1616113e
fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14809
Expires: Sat, 01 Apr 2023 09:04:01 GMT
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8ff1d01e68831d80a4f75d7db3970972
1a9e1f3fa7389cccb0e91cff2616767e1616113e
fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14809
Expires: Sat, 01 Apr 2023 09:04:01 GMT
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8ff1d01e68831d80a4f75d7db3970972
1a9e1f3fa7389cccb0e91cff2616767e1616113e
fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14809
Expires: Sat, 01 Apr 2023 09:04:01 GMT
Date: Sat, 01 Apr 2023 04:57:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ycsh7rNJt9blXZVpFbbdBDu5pZbGDfGIPLt5k0Ff9-fvWTX86Ndz6A==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:45:01 GMT
age: 25931
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8939ac-5249-469a-92a8-f7d39e16fd0c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8939ac-5249-469a-92a8-f7d39e16fd0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9725cb9ee354d9c9ca233288e3621ed
5e1ca2a4695fa9e4e6e69b5a5cb05c8ce43244fb
c03a0ed04efe13a15b6a0a05848473de9f5196c26096579b99475b22df2a7c4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8939ac-5249-469a-92a8-f7d39e16fd0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10248
x-amzn-requestid: c53c08eb-adf7-447d-b303-759b6419a2bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ClU6GHD4oAMFcww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6425350d-7a6494c770dd83f17e839234;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 07:06:53 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vsKa0V3GQ0TBNplDEFb92JAIcP_pE4kf5XEUjULdrBnecmnEheEwRQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 07:15:13 GMT
age: 78119
etag: "5e1ca2a4695fa9e4e6e69b5a5cb05c8ce43244fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ee37ccafa69e9c352768fa30819a54f
c5268d4749fa57e8602fcb12fd11d5ffb10d0503
4186438aaede57d6b47306caa12a61328fdc83f421cecce44337ff6df9c8c028
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8513
x-amzn-requestid: c96fbbef-3321-40ca-9f82-79db833d14ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnXDEcQoAMFZkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64275293-75f3dfe836f9fb52292e0c21;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:37:23 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: UMFfJ465bKY7Fr0I3-8brzOQtUUbCvnqkwvHmbBKYB65f-Gd8h8tOQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:46:59 GMT
age: 25813
etag: "c5268d4749fa57e8602fcb12fd11d5ffb10d0503"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nZfXy-IsoHliuLodEocEZlH-IvmIV9G-noSmSEU1wmuMPfBx3rLJ9w==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 10:41:48 GMT
age: 65724
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb930830ac86ec8ace6a232f67810ba
d084bf4331446c35236019010b2bcf82d45dad1c
bb81782bf590d601110ec8fb891f701e0f5084bda46370d30345bd81403a33ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5830
x-amzn-requestid: 0897bf26-6156-48d3-ba67-596cc326dddc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHHG0JoAMF87w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-6f380d901d9d6b737ec19d6d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: UfN2iRmDUhddBZW6qGy3q2-HCqb6Kx3iDENnirUkIoCJ6BW6zdWVtw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 22:44:32 GMT
etag: "d084bf4331446c35236019010b2bcf82d45dad1c"
content-type: image/jpeg
age: 22360
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: KkjS04mCLqFET4v9-sePYK-zcztrds608GECT1Fxz3BEpslgxnpLOg==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:37:17 GMT
age: 26395
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.66200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (3599)
Hash 5809d0b8b632a3e72903b8d76414f1b7
5998801c3012c98e27a2fefba38e9218031c4bf7
436cf662a1e2b39394fb35e888c0309195d538ac1e20eb9605291a6f316fb74a
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 01 Apr 2023 04:57:12 GMT
expires: Sat, 01 Apr 2023 04:57:12 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 18206530822561751884
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48565
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
router.infolinks.com/usync/lcmanage?pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F
172.66.42.247200 OK 0 B URL HTTP/2 router.infolinks.com/usync/lcmanage?pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F
IP 172.66.42.247:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/lcmanage?pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:12 GMT
content-length: 0
cache-control: no-store
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e3ffebaa8b511-OSL
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fapn-usync%3Fuser_id%3D%24UID
37.252.171.22307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fapn-usync%3Fuser_id%3D%24UID
IP 37.252.171.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fapn-usync%3Fuser_id%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 01 Apr 2023 04:57:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID
AN-X-Request-Uuid: dc94ca3d-6539-4168-ac62-5a0342602f17
Set-Cookie: uuid2=6312194494995238730; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 30-Jun-2023 04:57:12 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1001.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 54914d158dd34d00fdb5c39dbcfc4d08
bd2a78dfe1fa12c3a78e5c36f001857f45a90ef8
7c5725bddfbcd385ee8f2936bbf4440b91b29229cd290d08063b79dc657b25d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 01:55:55 GMT
Expires: Wed, 05 Apr 2023 01:55:54 GMT
Etag: "bd2a78dfe1fa12c3a78e5c36f001857f45a90ef8"
Cache-Control: max-age=334121,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e3ffffb2fb52d-OSL
status.geotrust.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 673f4065479339c0175a4ac11e6b0938
653517eafbf0133d750da44cfd9feba1d956a068
273cf59cee38ac6dd57cac48ef58dbc3d7cd6f2326182d1b5d1a899159421c47
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Last-Modified: Sat, 01 Apr 2023 03:30:08 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash c7c6edd380ef44896212c8c23174be1b
49836b3c2cd57babfea2d1e5561164ff7f69ee1a
8037313075f9ad46b0f2c27bee464b39f0bb440d9f837ed1c85c0ff7337defff
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 01 Apr 2023 04:57:13 GMT
Last-Modified: Sat, 01 Apr 2023 04:10:50 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FWY7JLOs1PVSY6ycyCySTi_rVbbevS9T_MvNo-o0slrtjrvwYreQew==
Age: 2783
eb2.3lift.com/getuid?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Ftplift%3Fuid%3D%24UID
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/getuid?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Ftplift%3Fuid%3D%24UID
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /getuid?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Ftplift%3Fuid%3D%24UID HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 20b3263cb9114e6f3901a1fde167851b
d13c60abc1236e7f95cc185a761b8efd227b212b
496f56fb104f96415cfa31c1215f9fb40a4d6b72d7970061d9d41a5e46c937a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 473
Cache-Control: max-age=100031
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Etag: "64269b8f-1d7"
Expires: Sun, 02 Apr 2023 08:44:24 GMT
Last-Modified: Fri, 31 Mar 2023 08:36:31 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 645f21ae72f5a3a1037b54f21deaeeb8
dd8a80eb5c1248dc286d81507846f1093bad293a
fc61d80c4cc8bf01950d4c93ea57951df7512fd1de27fe26fad364a1f810679f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4593
Cache-Control: max-age=118945
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Etag: "6426d559-139"
Expires: Sun, 02 Apr 2023 13:59:38 GMT
Last-Modified: Fri, 31 Mar 2023 12:43:05 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 313
thedailyneopets.com/
172.67.219.160200 OK 18 kB IP 172.67.219.160:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1696), with CRLF, CR, LF line terminators
Hash c777572128a88fb2271b914e78837231
391ccb4e204bc959ebd25045385829110604fbb3
21ab82dc411960634479db42597b999f5e6dfeed6632fbe3fc2faa0605f9fe31
GET / HTTP/1.1
Host: thedailyneopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:11 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6Iit5T3BJdU5ib0pQc0tlcitRc0o5V2c9PSIsInZhbHVlIjoiKy9NcUtnMklPY0lwWjBxVCtndEt0VE1BTjdnL0ZHM0xzR2ppTFp1dVBUdURtdkFZbG5SaW5Mamh6Z0wxUlIwd0kyc0VRZHlBc3ZHdnFCUklUKyt3clZGcDlrTVZhUGtyM29hbW00T0lra0RMYVdodnd0a0VYa3BYWGtiQ0Q3NVciLCJtYWMiOiI0YzA1MWRiMWIwNGZmZDMwMDRjYjJlOTJjOTVlMGZiZDMxZGJlYjE4ODc0NzIxMzQ0NzQ5YmQzODg5ZmM0YzdjIn0%3D; expires=Sat, 19-Jul-2025 04:57:11 GMT; Max-Age=72576000; path=/; domain=.thedailyneopets.com; secure; samesite=lax
tdnSess=eyJpdiI6ImF6S1RUbmxYM0dGRW9BWkRqUkJ1eWc9PSIsInZhbHVlIjoiUUxZeE5RSkJvMVN1QVRiR09PdHYyN3VUYUxCOXp3TlorWEpOMjdqeW5uQXhXRmVZOEkyb0VqTlF5ekc1eUJPenpaWWVZVmxqRTNOakd4VHN6SHVRMlZCaEQwRTlrN1ErVzE3MlRpamRmamZiOW9BVHZ6cTZrQjBDWXowbHNxT3giLCJtYWMiOiI0ZThiZTdkMTdlMzM3NzM2NTBkZjNmNmVkNzRkMjE5NGZhZThjMDdlYTM0ZDBhZTJkYzUyNDk0ZTM5YmMxMjJkIn0%3D; expires=Sat, 19-Jul-2025 04:57:11 GMT; Max-Age=72576000; path=/; domain=.thedailyneopets.com; secure; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2B2BANSAEbba5qak084DdAUprQdHe6xyEMmWLquegKur8ff1GFuG62vAPvUWqMAkUcYm4CXA%2BMXNlXqD2GsPJlJGiaYUq6DR7zvQEU3zZsK18YxMBkV77uRF2EQn5a66eGuCq2aI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b0e3ff2a9bcb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 20b3263cb9114e6f3901a1fde167851b
d13c60abc1236e7f95cc185a761b8efd227b212b
496f56fb104f96415cfa31c1215f9fb40a4d6b72d7970061d9d41a5e46c937a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2826
Cache-Control: max-age=102384
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Etag: "64269b8f-1d7"
Expires: Sun, 02 Apr 2023 09:23:37 GMT
Last-Modified: Fri, 31 Mar 2023 08:36:31 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 57480640d13dcc5be0bc504c0eef7166
f7a60248bed0d1a3ec473e54fb3c83ddfafce35a
01969f346e4cd6a7aa0c3db15c0fd75fa46c748aad23acdde046826004491ea9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2678
Cache-Control: max-age=110938
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Etag: "6426bd8d-1d7"
Expires: Sun, 02 Apr 2023 11:46:11 GMT
Last-Modified: Fri, 31 Mar 2023 11:01:33 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID
198.47.127.18302 Found 267 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID
IP 198.47.127.18:0
File type HTML document, ASCII text
Hash 4c3b0ed5d0694dfc6293df9d26db3427
d24a807f496ede8c6860cdfaef65db160c5bd622
bd7d1d9ab7cd90754ced171b8a2a5f8585295a99cbdaeeb377019e772442efe4
GET /AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
location: /AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Sat, 01 Apr 2023 04:57:12 GMT
content-length: 267
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=598ce3ddaee8c90
51.89.9.252204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=598ce3ddaee8c90
IP 51.89.9.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=598ce3ddaee8c90 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b629d65e52e1244e17a920db25a5dde2
190a307b550c16d4ad8016c1ae4ad27eeecf25eb
b66ede0029cc879028331b43ad5325d5dd2dd5fa06e916bc74daefad340e2a11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1674
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Last-Modified: Sat, 01 Apr 2023 04:29:19 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID
198.47.127.18302 Found 272 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID
IP 198.47.127.18:0
File type HTML document, ASCII text
Hash ebb92a4e4bfa9f49081d6d5490b87169
e986871fb2a1067935b9f45ff4ba155383056b29
fd3de728a94f948ba814f33b0020466ae949a4c493784a6b7a5f23687385747d
GET /AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
location: /AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Sat, 01 Apr 2023 04:57:12 GMT
content-length: 272
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID
37.252.171.22302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID
IP 37.252.171.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://router.infolinks.com/dyn/apn-usync?user_id=0
AN-X-Request-Uuid: 37a5d56d-725d-4507-89a0-0e36e938a817
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1001.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/58422/occ
3.71.149.231302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58422/occ
IP 3.71.149.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58422/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58422/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKm5J2QCEE2SzfSOuHzMztjuCxE_AM0FEgEBAQELKWQxZAAAAAAA_eMAAA&S=AQAAAqI2vAp1uTO3Xy-tDxfYY0Y; Expires=Sun, 31 Mar 2024 10:57:13 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
cs.media.net/cksync?cs=41&ovsid=setstatuscode&type=inf&redirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fmnet-usync%3Fuid%3D%3Cvsid%3E
2.18.172.23302 Moved Temporarily 154 B URL HTTP/1.1 cs.media.net/cksync?cs=41&ovsid=setstatuscode&type=inf&redirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fmnet-usync%3Fuid%3D%3Cvsid%3E
IP 2.18.172.23:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060
GET /cksync?cs=41&ovsid=setstatuscode&type=inf&redirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fmnet-usync%3Fuid%3D%3Cvsid%3E HTTP/1.1
Host: cs.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: Apache
Content-Length: 154
Content-Type: text/html
Location: https://router.infolinks.com/dyn/mnet-usync?uid=0000EEA
Set-Cookie: data-inf=setstatuscode~~41;Expires=Fri, 30 Jun 2023 04:57:13 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
x-mnet-hl2: E
Expires: Sat, 01 Apr 2023 04:57:13 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 01 Apr 2023 04:57:13 GMT
Connection: keep-alive
image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1
198.47.127.18200 OK 0 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1
IP 198.47.127.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:12 GMT
content-length: 0
X-Firefox-Spdy: h2
cms.quantserve.com/pixel/p-u1vdacBMXAcfT.gif?idmatch=0
91.228.74.168302 Found 0 B URL HTTP/2 cms.quantserve.com/pixel/p-u1vdacBMXAcfT.gif?idmatch=0
IP 91.228.74.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/p-u1vdacBMXAcfT.gif?idmatch=0 HTTP/1.1
Host: cms.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-length: 0
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
location: https://router.infolinks.com/dyn/qc-usync?&uid=P-PJ_GvumvIk5Zj7PebW_zizzf4k4ZnybeIcYmKm
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: d=EAIBDQHTKM2aswA; expires=Fri, 30-Jun-2023 04:57:13 GMT; path=/; domain=.quantserve.com
mc=6427b9a9-2c041-41d65-6b9d5; expires=Wed, 01-May-2024 04:57:13 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 01e89e605ba04daf5292ee6cd3f2292c
044dc1ec378a5f864c4380529e270b11637c0b1f
66ed6966be737b19b6fa0aef5f76e3dd1ba3b7372103248a0f5bd351ae8c2540
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3016
Cache-Control: max-age=162712
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Etag: "64278679-1d7"
Expires: Mon, 03 Apr 2023 02:09:05 GMT
Last-Modified: Sat, 01 Apr 2023 01:18:49 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 54914d158dd34d00fdb5c39dbcfc4d08
bd2a78dfe1fa12c3a78e5c36f001857f45a90ef8
7c5725bddfbcd385ee8f2936bbf4440b91b29229cd290d08063b79dc657b25d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 01:55:55 GMT
Expires: Wed, 05 Apr 2023 01:55:54 GMT
Etag: "bd2a78dfe1fa12c3a78e5c36f001857f45a90ef8"
Cache-Control: max-age=334120,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e40004d42b4f9-OSL
pixel.advertising.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
3.71.149.231301 Moved Permanently 360 B URL HTTP/2 pixel.advertising.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
IP 3.71.149.231:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ef184c6b065a63adf6c94f609c0a0c72
12e8af72d7af8f029d4300991e1eda7ec9f2545b
b01d8ed4f119579d92815a648e454327ae4af8a4592e98462fb72f414ddba9af
GET /ups/58237/sync?&gdpr=&gdpr_consent=&redir=true HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 01 Apr 2023 04:57:13 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBKm5J2QCENhLJ1Tf1YGR7sCK1TF6GskFEgEBAQELKWQxZAAAAAAA_eMAAA&S=AQAAAnffKDZnSoI21dtOcQeAf1U; Expires=Sun, 31 Mar 2024 10:57:13 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 360
X-Firefox-Spdy: h2
image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1
198.47.127.18200 OK 0 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1
IP 198.47.127.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:11 GMT
content-length: 0
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58422/occ?verify=true
3.71.149.231204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58422/occ?verify=true
IP 3.71.149.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58422/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:57:13 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKm5J2QCEB0sz-Mo9kW-lHDJp9fThuMFEgEBAQELKWQxZAAAAAAA_eMAAA&S=AQAAAndXRmXD9EccllBGyVuhGQU; Expires=Sun, 31 Mar 2024 10:57:13 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash d4cc9314ca3151b6a09a527fbae5ad0f
4f2560a009fcb2797a9cf39f814e96d8f52298fe
124c78b710db05e2790fe0f81ba263c1c16fcd02b26a48d93cf1b272b5f0c515
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4916
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Last-Modified: Sat, 01 Apr 2023 03:35:18 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 727
googleads.g.doubleclick.net/pagead/html/r20230329/r20190131/zrt_lookup.html
216.58.207.194200 OK 4.5 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230329/r20190131/zrt_lookup.html
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3205)
Hash bad17ab9662318e8927e5009c83c2ad1
53ded630f95abe04b7b77d43076bf71b9ea71c02
68da39270ebfa6d17f4b765cbe004797a736611585ff0c53213d91f78f13c260
GET /pagead/html/r20230329/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4549
x-xss-protection: 0
date: Sat, 01 Apr 2023 02:50:55 GMT
expires: Sat, 15 Apr 2023 02:50:55 GMT
cache-control: public, max-age=1209600
age: 7578
etag: 2378337311435320485
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 4dfbcb36ea676ed84a152cbe2ca921d1
74f0e7d7a9c3e56eadea3a310314b6dea4f4a515
4c2965b9d2ef2771bef64ff6a6e7a2777c5423bc493a948cc5dacd8075b07034
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164426
Date: Sat, 01 Apr 2023 04:57:13 GMT
Etag: "64277f6f-1d7"
Expires: Mon, 03 Apr 2023 02:37:39 GMT
Last-Modified: Sat, 01 Apr 2023 00:48:47 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jT8Fu47sDnkNj7gvUz-JNO5OhK2dnVmwMkPYNSg5sevORyYoFha3bg==
Age: 6532
ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
3.71.149.231302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
IP 3.71.149.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58237/sync?&gdpr=&gdpr_consent=&redir=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKm5J2QCEGuUpjbc6MSb7VTxGNktm08FEgEBAQELKWQxZAAAAAAA_eMAAA&S=AQAAAk7x3h5UGwkZBdbqNNjYrmY; Expires=Sun, 31 Mar 2024 10:57:13 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash ad87a295c6e76adb14d7df4ee1d2576a
7eeac76f1ca9408ae5f7b3cf1c9513003e76388a
e301d37e559b9501d79afe141cea8574ee900790f532ea9b1fb9fc13481c19a4
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 31 Mar 2023 21:37:44 GMT
Expires: Sat, 01 Apr 2023 21:37:44 GMT
ETag: "7eeac76f1ca9408ae5f7b3cf1c9513003e76388a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
router.infolinks.com/dyn/r1-usync?uid=OPTOUT
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/r1-usync?uid=OPTOUT
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/r1-usync?uid=OPTOUT HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: R1USERCOOKIE=OPTOUT; Domain=infolinks.com; Expires=Fri, 30-Jun-2023 04:57:13 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Fri, 01 Apr 2022 04:57:13 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40012c39b511-OSL
X-Firefox-Spdy: h2
ad.360yield.com/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
3.76.55.210302 Found 0 B URL HTTP/2 ad.360yield.com/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
IP 3.76.55.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
set-cookie: tuuid=ac0191ad-54b8-43be-ab39-201717aed856; Expires=Fri, 30 Jun 2023 04:57:13 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1680325033; Expires=Fri, 30 Jun 2023 04:57:13 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?s=191306&cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D
185.80.36.245302 Found 0 B URL HTTP/1.1 ssum-sec.casalemedia.com/usermatch?s=191306&cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?s=191306&cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 04:57:13 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /usermatch?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D&s=191306&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=ZCe5qeQOOeklXfpcriAM.AAA; Path=/; Domain=casalemedia.com; Expires=Sun, 31 Mar 2024 04:57:13 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=643; Path=/; Domain=casalemedia.com; Expires=Fri, 30 Jun 2023 04:57:13 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=643; Path=/; Domain=casalemedia.com; Expires=Fri, 30 Jun 2023 04:57:13 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13aea90b56c70f627cf1b6cf76bc9317
3a4a5bf198962f4898565cb59d36c840dbfb455f
e687f0b713563125f2e84ac8ed135c56fd2ed704de83a2597695979df25f8864
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true
3.71.149.231204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true
IP 3.71.149.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:57:13 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKm5J2QCELbFCDpjnS575sqc19fSKPsFEgEBAQELKWQxZAAAAAAA_eMAAA&S=AQAAApXhLSXovgWaTAGuQJdzLdM; Expires=Sun, 31 Mar 2024 10:57:13 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
3.76.55.210200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
IP 3.76.55.210:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=thedailyneopets.com&callback=_gfp_s_&client=ca-pub-9446512090355518
216.58.207.226200 OK 256 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=thedailyneopets.com&callback=_gfp_s_&client=ca-pub-9446512090355518
IP 216.58.207.226:0
File type ASCII text, with very long lines (405), with no line terminators
Hash 2ff7626bfb6205439cdba09059e7cbb9
1220c58c17d236dde19261619ba3071403207757
76579b7dc7c2296fa0875149d3a0b913377796204e0eecdc1a9045abb365a83e
GET /gampad/cookie.js?domain=thedailyneopets.com&callback=_gfp_s_&client=ca-pub-9446512090355518 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 01 Apr 2023 04:57:13 GMT
server: cafe
cache-control: private
content-length: 256
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c805a5c8d88d63e317a631e82533b14
c9c70d6d8c42c5690e57e1d3b0b6331a8b1ec1a7
4957e91e8473ee4aaf83db07185ba4a0eab8f9b5687d566e65cb5f4028071183
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b1sync.zemanta.com/usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__
70.42.32.63302 Found 70 B URL HTTP/1.1 b1sync.zemanta.com/usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__
IP 70.42.32.63:0
File type HTML document, ASCII text
Hash 16ccc9da763aca428789e4f469fc7ff1
4a873c523b8d9bdbc30b8c48189817413a19ee7a
5be7e833013b4b10333a904010b01217263df39c501a29b146d072110ceea4a1
GET /usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 70
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://router.infolinks.com/dyn/zmn-usync?uid=
Pragma: no-cache
Date: Sat, 01 Apr 2023 04:57:13 GMT
ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D&s=191306&C=1
185.80.36.245200 OK 175 B URL HTTP/1.1 ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D&s=191306&C=1
IP 185.80.36.245:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash f4bc2e4d88b3f5220d0588259eef6ae0
096a106a5843e950f4a35447cbcd5aab9bdc59ba
02c1f3f845c0b1618e11b9b66e71af8ecc31e877758eb91eb40c924bee0ce2b0
GET /usermatch?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D&s=191306&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:13 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: text/html
Expires: 0
Pragma: no-cache
Content-Length: 175
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
ocsp.starfieldtech.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash c4f6bf9137f0bd1b67d11fee371390b3
a2ed06a301c1e4a5aaae36f22303de34f4acb278
6da67381a3547e3fea0a9f0303b15a012501ad7367ef1eaccf1bee1061550f1f
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 01 Apr 2023 04:57:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 31 Mar 2023 19:50:20 GMT
Expires: Sat, 01 Apr 2023 19:50:20 GMT
ETag: "a2ed06a301c1e4a5aaae36f22303de34f4acb278"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
router.infolinks.com/dyn/apn-usync?user_id=0
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/apn-usync?user_id=0
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/apn-usync?user_id=0 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40017c72b511-OSL
X-Firefox-Spdy: h2
router.infolinks.com/dyn/mnet-usync?uid=0000EEA
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/mnet-usync?uid=0000EEA
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/mnet-usync?uid=0000EEA HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: MNETUSERCOOKIE=0000EEA; Domain=infolinks.com; Expires=Fri, 30-Jun-2023 04:57:13 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Fri, 01 Apr 2022 04:57:13 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40018c79b511-OSL
X-Firefox-Spdy: h2
status.geotrust.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 673f4065479339c0175a4ac11e6b0938
653517eafbf0133d750da44cfd9feba1d956a068
273cf59cee38ac6dd57cac48ef58dbc3d7cd6f2326182d1b5d1a899159421c47
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Last-Modified: Sat, 01 Apr 2023 03:30:08 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 52f44a8ba2e4c7c556333135d6e0b4a7
447ebc2e328462f670553d3f9cfe7c021ec540a0
f75ebe38234deb559586819960705f0e3842534de0959ccd9cc7a96203b6586f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 31 Mar 2023 20:29:46 GMT
Expires: Sat, 01 Apr 2023 20:29:46 GMT
ETag: "447ebc2e328462f670553d3f9cfe7c021ec540a0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
router.infolinks.com/dyn/qc-usync?&uid=P-PJ_GvumvIk5Zj7PebW_zizzf4k4ZnybeIcYmKm
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/qc-usync?&uid=P-PJ_GvumvIk5Zj7PebW_zizzf4k4ZnybeIcYmKm
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/qc-usync?&uid=P-PJ_GvumvIk5Zj7PebW_zizzf4k4ZnybeIcYmKm HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: QCUSERCOOKIE=P-PJ_GvumvIk5Zj7PebW_zizzf4k4ZnybeIcYmKm; Domain=infolinks.com; Expires=Fri, 30-Jun-2023 04:57:13 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Fri, 01 Apr 2022 04:57:13 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40019c7db511-OSL
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=thedailyneopets.com&callback=_gfp_s_&client=ca-pub-9446512090355518
216.58.207.226200 OK 260 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=thedailyneopets.com&callback=_gfp_s_&client=ca-pub-9446512090355518
IP 216.58.207.226:0
File type ASCII text, with very long lines (405), with no line terminators
Hash d6687452d7d6bbd8431bd463f5e8a36f
df5ba9e94f040a3f509186ffbd12bff41e889e0a
de43436ed40174742c7ebd22d949566f34e9fed945bffa54a742328dd9c82c7a
GET /gampad/cookie.js?domain=thedailyneopets.com&callback=_gfp_s_&client=ca-pub-9446512090355518 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 01 Apr 2023 04:57:13 GMT
server: cafe
cache-control: private
content-length: 260
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=thedailyneopets.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=thedailyneopets.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=thedailyneopets.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 01 Apr 2023 04:57:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 25c44d97442cbacabcc5ec5d0725f1e6
bca02fcabc41e7f3ad3d226859b3baa866731917
e75fdce809aa0e5462d6217afda6f4368f7d0268b513b1e9330c281cf8f4c67d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 31 Mar 2023 20:44:05 GMT
Expires: Sat, 01 Apr 2023 20:44:05 GMT
ETag: "bca02fcabc41e7f3ad3d226859b3baa866731917"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 02ddc021542aadb090aa31099f7b9267
cb2091bff4ad6c225faa4c0c02182217bcdc502c
dcca0f6c051c27f611b9e51981fb34bd0c82a317c2e3ae3412ec6de80c596d24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=thedailyneopets.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=thedailyneopets.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=thedailyneopets.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 01 Apr 2023 04:57:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rtb0.doubleverify.com/verify.js?flvr=0&jsCallback=__verify_callback_514746635949&jsTagObjCallback=__tagObject_callback_514746635949&num=6&ctx=3758893&cmp=29589193&plc=363109549&sid=5745037&advid=&adsrv=&unit=728x90&isdvvid=&uid=514746635949&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&brid=0&brver=&bridua=2&dup=null&chro=0&hist=1&winh=939&winw=1280&wouh=1024&wouw=1280&scah=1002&scaw=1280&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=2&m1=13&noc=16&fcifrms=4&brh=1&fwc=0&fcl=488&flt=204&fec=734&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETauU42%3FFC%3D9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETau&dvp_exetime=11.00&callbackName=__verify_callback_514746635949
34.149.12.213200 OK 267 B URL HTTP/1.1 rtb0.doubleverify.com/verify.js?flvr=0&jsCallback=__verify_callback_514746635949&jsTagObjCallback=__tagObject_callback_514746635949&num=6&ctx=3758893&cmp=29589193&plc=363109549&sid=5745037&advid=&adsrv=&unit=728x90&isdvvid=&uid=514746635949&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&brid=0&brver=&bridua=2&dup=null&chro=0&hist=1&winh=939&winw=1280&wouh=1024&wouw=1280&scah=1002&scaw=1280&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=2&m1=13&noc=16&fcifrms=4&brh=1&fwc=0&fcl=488&flt=204&fec=734&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETauU42%3FFC%3D9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETau&dvp_exetime=11.00&callbackName=__verify_callback_514746635949
IP 34.149.12.213:0
Hash 0f31c7da2ecf905dfde2b49080ce75f2
ffabde9d6409df3c96627c4644cf416a1e774198
47906892a8be926eec8180a44805f5fb515d53e633596cc087ed5211a4bad101
GET /verify.js?flvr=0&jsCallback=__verify_callback_514746635949&jsTagObjCallback=__tagObject_callback_514746635949&num=6&ctx=3758893&cmp=29589193&plc=363109549&sid=5745037&advid=&adsrv=&unit=728x90&isdvvid=&uid=514746635949&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&brid=0&brver=&bridua=2&dup=null&chro=0&hist=1&winh=939&winw=1280&wouh=1024&wouw=1280&scah=1002&scaw=1280&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=2&m1=13&noc=16&fcifrms=4&brh=1&fwc=0&fcl=488&flt=204&fec=734&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETauU42%3FFC%3D9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETau&dvp_exetime=11.00&callbackName=__verify_callback_514746635949 HTTP/1.1
Host: rtb0.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0
Content-Encoding: br
Expires: 03/31/2023 04:57:13
Pragma: no-cache
Vary: Accept-Encoding
X-DV-Response: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13aea90b56c70f627cf1b6cf76bc9317
3a4a5bf198962f4898565cb59d36c840dbfb455f
e687f0b713563125f2e84ac8ed135c56fd2ed704de83a2597695979df25f8864
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=thedailyneopets.com
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=thedailyneopets.com
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=thedailyneopets.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 01 Apr 2023 04:57:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c805a5c8d88d63e317a631e82533b14
c9c70d6d8c42c5690e57e1d3b0b6331a8b1ec1a7
4957e91e8473ee4aaf83db07185ba4a0eab8f9b5687d566e65cb5f4028071183
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sync.1rx.io/usersync2/rmpssp?sub=infolinks&zcc=1&cb=1680325033235
213.19.147.44302 Found 35 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=infolinks&zcc=1&cb=1680325033235
IP 213.19.147.44:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /usersync2/rmpssp?sub=infolinks&zcc=1&cb=1680325033235 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://router.infolinks.com/dyn/ur-usync?uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
ap.lijit.com/pixel?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsovrn-usync%3Fuid%3D%24UID
216.52.2.39204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsovrn-usync%3Fuid%3D%24UID
IP 216.52.2.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsovrn-usync%3Fuid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Sat, 01 Apr 2023 04:57:13 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap7ams1
adservice.google.com/adsid/integrator.js?domain=thedailyneopets.com
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=thedailyneopets.com
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=thedailyneopets.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 01 Apr 2023 04:57:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 6fd5243079e58a1b63978b4558844e95
7645920a0d212aed03da16abacd6b574812731db
36d1e075710180f55fc899d052d196dcadb4a7e9ea53796eb7154f0c2e803841
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99744
Date: Sat, 01 Apr 2023 04:57:13 GMT
Etag: "64268d85-1d7"
Expires: Sun, 02 Apr 2023 08:39:37 GMT
Last-Modified: Fri, 31 Mar 2023 07:36:37 GMT
Server: ECAcc (nya/7946)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2tX4zIe2G7NN2nK1uLEEUDaO7jIG-8vsb7tLWNyef6WPh_ZaGmY66w==
Age: 3780
sync.go.sonobi.com/us?loc=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsonobi-usync%3Fuid%3D%5BUID%5D
69.166.1.10302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/us?loc=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsonobi-usync%3Fuid%3D%5BUID%5D
IP 69.166.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /us?loc=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsonobi-usync%3Fuid%3D%5BUID%5D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-125
X-Xss-Protection: 0
Location: https://router.infolinks.com/dyn/sonobi-usync?uid=3b5ca7e0-6e39-4e5c-a9e6-349db85250e3
Server: sonobi-go
Set-Cookie: __uis=3b5ca7e0-6e39-4e5c-a9e6-349db85250e3; expires=Mon, 01 May 2023 04:57:12 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s85125|ZCe5r; path=/; domain=.go.sonobi.com; SameSite=None; secure
www.googletagservices.com/dcm/dcmads.js
142.250.74.98200 OK 6.9 kB URL HTTP/2 www.googletagservices.com/dcm/dcmads.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (3082)
Hash 1e363f80c065c32161745780d8920ded
9db8eed791770fc4988e728a021646d12521c4b4
0b8a7b06fa56909079153fb9b9b96367ab1ea11147115321a4b2fa24f4321584
GET /dcm/dcmads.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-dcm-tag
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-dcm-tag"
report-to: {"group":"ads-dcm-tag","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-dcm-tag"}]}
content-length: 6883
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Apr 2023 03:57:52 GMT
expires: Sat, 01 Apr 2023 04:57:52 GMT
cache-control: public, max-age=3600
age: 3561
last-modified: Wed, 15 Feb 2023 19:52:36 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
router.infolinks.com/dyn/ix-usync?uid=0
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/ix-usync?uid=0
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/ix-usync?uid=0 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40028d56b511-OSL
X-Firefox-Spdy: h2
router.infolinks.com/dyn/zmn-usync?uid=
172.66.42.247200 OK 471 B URL HTTP/2 router.infolinks.com/dyn/zmn-usync?uid=
IP 172.66.42.247:0
Hash 02ddc021542aadb090aa31099f7b9267
cb2091bff4ad6c225faa4c0c02182217bcdc502c
dcca0f6c051c27f611b9e51981fb34bd0c82a317c2e3ae3412ec6de80c596d24
GET /dyn/zmn-usync?uid= HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40025d1fb511-OSL
X-Firefox-Spdy: h2
www.googletagservices.com/dcm/impl_v95.js
142.250.74.98200 OK 23 kB URL HTTP/2 www.googletagservices.com/dcm/impl_v95.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (2526)
Hash 54beaf6b96e37a106889a6d72d33f3bf
d7e17f380841c38aa3bd1b0962abd2cc020e488b
ef4d64a86a8a05a4cb0bb3e8ba96579073556def01c5a5db06d130e63217b1d3
GET /dcm/impl_v95.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-dcm-tag
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-dcm-tag"
report-to: {"group":"ads-dcm-tag","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-dcm-tag"}]}
content-length: 23368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 18:05:12 GMT
expires: Sat, 30 Mar 2024 18:05:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 13 Feb 2023 18:47:20 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 39121
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 124 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (2723)
Size 124 kB (123698 bytes)
Hash 6f27a78f50345819b57c641931185010
e5fbfb53f5dfe47d3bfef31bf6122966c02493d2
19f4f555a2d02cb197830a0c2d79d3cfc23db680709c29299f3bd220fc3f1a10
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 123698
date: Sat, 01 Apr 2023 04:57:13 GMT
expires: Sat, 01 Apr 2023 04:57:13 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.infolinks.com/static/skins/loader.gif
172.66.42.247200 OK 962 B URL HTTP/2 resources.infolinks.com/static/skins/loader.gif
IP 172.66.42.247:0
File type GIF image data, version 89a, 30 x 30\012- data
Hash d817e8fd864b84f7d546807d800588ea
6a66609f160ee1640b0d0eddd5fdd96a95a1c4ef
e3b8ee13d35110d7006bc5c5147ee0a0c6c3e1f26b2f246b8d5e57edf4f6b97b
GET /static/skins/loader.gif HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 962
cache-control: max-age=2592000
cf-bgj: imgq:85,h2pri
cf-polished: origSize=1631, status=webp_bigger
etag: "65f-5f7533fb919ab"
expires: Mon, 01 May 2023 01:49:49 GMT
last-modified: Mon, 20 Mar 2023 11:30:06 GMT
via: 1.1 google
cf-cache-status: HIT
age: 11243
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e4003ae3cb511-OSL
X-Firefox-Spdy: h2
resources.infolinks.com/static/skins/loader-bg.png
172.66.42.247200 OK 902 B URL HTTP/2 resources.infolinks.com/static/skins/loader-bg.png
IP 172.66.42.247:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1b84dbcd389398158f5932c35a24936f
6348c5732765e6fb6a8b743fb422f862573c8a67
c5ddb995fe37710a4be439e4e3f45016cd7b7ecfa3423a29e4f4f4dcce63efff
GET /static/skins/loader-bg.png HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/webp
content-length: 902
cache-control: max-age=2592000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1488
content-disposition: inline; filename="loader-bg.webp"
vary: Accept
etag: "5d0-5f7533fb6c3f6"
expires: Mon, 01 May 2023 03:28:34 GMT
last-modified: Mon, 20 Mar 2023 11:30:06 GMT
via: 1.1 google
cf-cache-status: HIT
age: 5318
accept-ranges: bytes
server: cloudflare
cf-ray: 7b0e4003ae3bb511-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8cb8575875a7e76dc33636b6225592eb
ec1c9ffe995972dbdb7a2195741795895a00bad9
1832523392ed3c3654926137f2414c49a55c1a179689363e8bb0d75a8dd55c71
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 02:15:47 GMT
Expires: Wed, 05 Apr 2023 02:15:46 GMT
Etag: "ec1c9ffe995972dbdb7a2195741795895a00bad9"
Cache-Control: max-age=335312,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e4001dc38b52d-OSL
p.rfihub.com/cm?pub=43153&in=1
193.0.160.130302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=43153&in=1
IP 193.0.160.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=43153&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 04:57:13 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: eud=H4sIAAAAAAAA_1slzmtoZmFgbGRqYGxsZmAEANZG7_0QAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 25 Apr 2024 04:57:13 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0sDA1tTQ3MjcwMjUyNDGxMBHiM9RNL610zjLILAwvLzECANmo3C0lAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 25 Apr 2024 04:57:13 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0sDA1tTQ3MjcwMjUyNDGxMBHiM9RNL610zjLILAwvLzECANmo3C0lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
Location: https://router.infolinks.com/dyn/zeta-usync?uid=5108559727025214484
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0ab66afb88efbb5f00c6d0d9c7023f82
440a431a9865438d6a79066564dae76a7e0a99f2
b9d7418dd64035c325e41b463c5fb5b37127153bbad3cdc66b15f7dd2c841676
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 23:33:40 GMT
Expires: Wed, 05 Apr 2023 23:33:39 GMT
Etag: "440a431a9865438d6a79066564dae76a7e0a99f2"
Cache-Control: max-age=411985,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e4002cf14b4f9-OSL
router.infolinks.com/dyn/sonobi-usync?uid=3b5ca7e0-6e39-4e5c-a9e6-349db85250e3
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/sonobi-usync?uid=3b5ca7e0-6e39-4e5c-a9e6-349db85250e3
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/sonobi-usync?uid=3b5ca7e0-6e39-4e5c-a9e6-349db85250e3 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: SONOBIUSERCOOKIE=3b5ca7e0-6e39-4e5c-a9e6-349db85250e3; Domain=infolinks.com; Expires=Fri, 30-Jun-2023 04:57:13 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Fri, 01 Apr 2022 04:57:13 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40035dfdb511-OSL
X-Firefox-Spdy: h2
tags.bluekai.com/site/4229?id=18072662263041934352&redir=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db3%26u%3D%24_BK_UUID
184.24.45.23302 Found 0 B URL HTTP/2 tags.bluekai.com/site/4229?id=18072662263041934352&redir=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db3%26u%3D%24_BK_UUID
IP 184.24.45.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/4229?id=18072662263041934352&redir=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db3%26u%3D%24_BK_UUID HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tribalfusion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://a.tribalfusion.com/i.match?p=b3&u=$_BK_UUID
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Sat, 01 Apr 2023 04:57:13 GMT
set-cookie: bku=CH999vZ8JtuwCrQc; Path=/; Domain=.bluekai.com; Expires=Sun, 01 Oct 2023 04:57:13 GMT; Secure; SameSite=None
bkpa=KJy9qQYHd02pSUHknpx01MAdSVx21EQyBp/tBM/0BM1yBeW81pxpBE/ZzZPASU/2ScH6zc1k16Wk1ARk1AjCn7H0SVJCqsjNztkFqi8Mqt6k1AjonZNC5sBGJEBszYDpHs/pJE/t5uDpHYD0Ba2YuN2PPDkW9yemohdy; Path=/; Domain=.bluekai.com; Expires=Sun, 01 Oct 2023 04:57:13 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
resources.infolinks.com/js/vidice/2.0/vidice.js
172.66.42.247200 OK 88 kB URL HTTP/2 resources.infolinks.com/js/vidice/2.0/vidice.js
IP 172.66.42.247:0
Hash 4cf604be7e3c88124deb5588e39145ce
2cc9a908a01508c7c242fb3a55534d5fc9f95c84
28ec113e7a2a65a4a57fdb2cdd7d8581eeacf8506bacedbbdebd602169b92d1a
GET /js/vidice/2.0/vidice.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 11:31:12 GMT
etag: W/"5344d-5f75343a1bcf7"
cache-control: max-age=2592000
expires: Mon, 01 May 2023 04:20:49 GMT
via: 1.1 google
cf-cache-status: HIT
age: 2184
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e40049ec4b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
de.tynt.com/deb/?m=xch&rt=html&sid=0010b00002CpYhEAAV
67.202.105.31200 OK 75 B URL HTTP/2 de.tynt.com/deb/?m=xch&rt=html&sid=0010b00002CpYhEAAV
IP 67.202.105.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 1ca09ed98f39d2adb7fab3878d13c0cb
da2a6f2431a34dfcc99b6f4500833f783f149d19
e170d20dbbd5a22f50118e25fa2eefb1e85d2ad780e5477ed3a9643186090442
GET /deb/?m=xch&rt=html&sid=0010b00002CpYhEAAV HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sun, 02 Apr 2023 04:57:13 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA, Sec-CH-UA-Mobile
referrer-policy: unsafe-url
content-type: text/html
content-length: 75
date: Sat, 01 Apr 2023 04:57:13 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
resources.infolinks.com/js/1852.004-3.026/bubble.js
172.66.42.247200 OK 48 kB URL HTTP/2 resources.infolinks.com/js/1852.004-3.026/bubble.js
IP 172.66.42.247:0
Hash 8f8484a9182bd42a72a235837d056cf2
c3350cae3a513066504518e20f3409b35b53cbb3
1eee60c39bd05617efa78780288cb904508e8f2a1ba608a2e441f9fb31fdad9d
GET /js/1852.004-3.026/bubble.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: application/javascript
last-modified: Mon, 27 Mar 2023 12:22:57 GMT
etag: W/"26f1b-5f7e0cd96e691"
cache-control: max-age=2592000
expires: Mon, 01 May 2023 02:33:40 GMT
via: 1.1 google
cf-cache-status: HIT
age: 8613
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e4002fdbab511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js
142.250.74.161200 OK 8.3 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.161:0
File type ASCII text, with very long lines (2329)
Hash 15153e582e642d8a9980467efaa11ad4
f738352e6b73226ade4d1df49abd968ef49b9f90
f87b1904ab612eb27b708cfdc920e8e7f92f987737147280e3248ad5d87bf33d
GET /pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8268
x-xss-protection: 0
date: Fri, 31 Mar 2023 22:33:06 GMT
expires: Fri, 14 Apr 2023 22:33:06 GMT
cache-control: public, max-age=1209600
age: 23047
etag: 8048349561987089234
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/adj/N1153793.3739983VDX.TV/B29589193.363109549;dc_ver=95.280;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=1703050495;ord=vt5swa;click=https%3A%2F%2Fs.tribalfusion.com%2Fh.click%2FabmXhr1UBgXaioSF3ETrv0TtQ3nFFtRbvm1Enn5EZbl2avXnErDYbU7UWFTnPvJnV7spHrD3T372tAr5P7ZcprMZc0snQYVM20VZbnpEF42bFVWUjZcWP71Qaj1SsroStFO1HrsTPfp3sZb0YUQZdVmuq5PMeP6bH3HQO0dBIptEn5mUY5GjcTGFjUs78RAFvWd3TWrb02UApUEUqTTQaSTvKRcjZcPFetRtYlUGb52F6xodbsMCrYyDXZbV7IssVrGoVytVWPZcMnT8NQZaDXdeGnMqnwo%2F;dc_rfl=1,https%3A%2F%2Fthedailyneopets.com%2F$0;xdt=0;crlt=tH(*!dFAYq;stc=1;sttr=163;prcl=s
142.250.74.134200 OK 29 kB URL HTTP/2 ad.doubleclick.net/ddm/adj/N1153793.3739983VDX.TV/B29589193.363109549;dc_ver=95.280;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=1703050495;ord=vt5swa;click=https%3A%2F%2Fs.tribalfusion.com%2Fh.click%2FabmXhr1UBgXaioSF3ETrv0TtQ3nFFtRbvm1Enn5EZbl2avXnErDYbU7UWFTnPvJnV7spHrD3T372tAr5P7ZcprMZc0snQYVM20VZbnpEF42bFVWUjZcWP71Qaj1SsroStFO1HrsTPfp3sZb0YUQZdVmuq5PMeP6bH3HQO0dBIptEn5mUY5GjcTGFjUs78RAFvWd3TWrb02UApUEUqTTQaSTvKRcjZcPFetRtYlUGb52F6xodbsMCrYyDXZbV7IssVrGoVytVWPZcMnT8NQZaDXdeGnMqnwo%2F;dc_rfl=1,https%3A%2F%2Fthedailyneopets.com%2F$0;xdt=0;crlt=tH(*!dFAYq;stc=1;sttr=163;prcl=s
IP 142.250.74.134:0
File type ASCII text, with very long lines (62239), with no line terminators
Hash 2f9ef22b44162e05ba0ebd6dd7be8be5
5df037c920ba82e11dfc837b990d6aded4c434d3
52319e3fe73fea76b061df077f232ae39cba3a0ccb0e404436bc2318c64d2255
GET /ddm/adj/N1153793.3739983VDX.TV/B29589193.363109549;dc_ver=95.280;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=1703050495;ord=vt5swa;click=https%3A%2F%2Fs.tribalfusion.com%2Fh.click%2FabmXhr1UBgXaioSF3ETrv0TtQ3nFFtRbvm1Enn5EZbl2avXnErDYbU7UWFTnPvJnV7spHrD3T372tAr5P7ZcprMZc0snQYVM20VZbnpEF42bFVWUjZcWP71Qaj1SsroStFO1HrsTPfp3sZb0YUQZdVmuq5PMeP6bH3HQO0dBIptEn5mUY5GjcTGFjUs78RAFvWd3TWrb02UApUEUqTTQaSTvKRcjZcPFetRtYlUGb52F6xodbsMCrYyDXZbV7IssVrGoVytVWPZcMnT8NQZaDXdeGnMqnwo%2F;dc_rfl=1,https%3A%2F%2Fthedailyneopets.com%2F$0;xdt=0;crlt=tH(*!dFAYq;stc=1;sttr=163;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 01 Apr 2023 04:57:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 28777
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 01-Apr-2023 05:12:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
router.infolinks.com/dyn/disus?uid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/disus?uid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/disus?uid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: DISUSERCOOKIE=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a; Domain=infolinks.com; Expires=Fri, 30-Jun-2023 04:57:13 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Fri, 01 Apr 2022 04:57:13 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40049ecbb511-OSL
X-Firefox-Spdy: h2
router.infolinks.com/dyn/zeta-usync?uid=5108559727025214484
172.66.42.247200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/zeta-usync?uid=5108559727025214484
IP 172.66.42.247:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/zeta-usync?uid=5108559727025214484 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: ZTUSERCOOKIE=5108559727025214484; Domain=infolinks.com; Expires=Fri, 30-Jun-2023 04:57:13 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Fri, 01 Apr 2022 04:57:13 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40049ecdb511-OSL
X-Firefox-Spdy: h2
resources.infolinks.com/js/1852.004-3.026/in_search.js
172.66.42.247200 OK 102 kB URL HTTP/2 resources.infolinks.com/js/1852.004-3.026/in_search.js
IP 172.66.42.247:0
Size 102 kB (101587 bytes)
Hash 4146cd602820d5d590ffc8843a0e5a2b
4cf5b4d0e99fb190813aca54edf31d30366d5faa
410bf55f0685b50d62a722a6e36d125426408f69bca21b733a5b89afd78ac6e8
GET /js/1852.004-3.026/in_search.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: application/javascript
last-modified: Mon, 27 Mar 2023 12:22:57 GMT
etag: W/"38074-5f7e0cd96e2a8"
cache-control: max-age=2592000
expires: Mon, 01 May 2023 02:34:39 GMT
via: 1.1 google
cf-cache-status: HIT
age: 8554
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e4002fdb8b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b659ba21b71473d2f3b2d4aa16e37f06
bb64d95a2d25e7fa9c2577e16d7be664816bdb94
5220ed8dd94613cf15ac539ad97b9fbe9b47e19c68d3873f48f837a291039325
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.doubleverify.com/dvtp_src.js?ctx=3758893&cmp=29589193&sid=6596925&plc=363109549&num=&adid=&advid=9999271&adsrv=1&btreg=553987365&btadsrv=doubleclick&crt=189546978&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src
95.101.11.115200 OK 3.3 kB URL HTTP/1.1 cdn.doubleverify.com/dvtp_src.js?ctx=3758893&cmp=29589193&sid=6596925&plc=363109549&num=&adid=&advid=9999271&adsrv=1&btreg=553987365&btadsrv=doubleclick&crt=189546978&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8016)
Hash e072d49341cffb322fdd359541b9e969
de1b7189b03b1aea898af405c0211a80cd25ec95
bd955388ecf026cba6c91f799b23a110cf0b3bc0cebe97ee5ed188c8f92558a2
GET /dvtp_src.js?ctx=3758893&cmp=29589193&sid=6596925&plc=363109549&num=&adid=&advid=9999271&adsrv=1&btreg=553987365&btadsrv=doubleclick&crt=189546978&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 21 Mar 2023 12:11:05 GMT
Accept-Ranges: bytes
ETag: "8012f935ee5bd91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 3337
Date: Sat, 01 Apr 2023 04:57:13 GMT
Connection: keep-alive
rt3027.infolinks.com/action/doq.htm?pcode=utf-8&r=16803250314921
172.66.42.247200 OK 5.2 kB URL HTTP/2 rt3027.infolinks.com/action/doq.htm?pcode=utf-8&r=16803250314921
IP 172.66.42.247:0
Hash 1858199f35d8bad39b9904640a30ae93
2d96633464685ad847a5d52d6f9afed8c65e8391
8809382f03bdc7f0d676ff71e1ccd712ac917a77e5e18d896008cdbc3a860888
POST /action/doq.htm?pcode=utf-8&r=16803250314921 HTTP/1.1
Host: rt3027.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 3887
Origin: https://thedailyneopets.com
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: text/html;charset=UTF-8
x-application-context: application:prod
access-control-allow-origin: https://thedailyneopets.com
vary: Origin
access-control-allow-credentials: true
cache-control: no-cache,no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: cuid=8a1c385a-9ebe-4336-9b92-106c4bab4338; Domain=infolinks.com; Expires=Mon, 31-Mar-2025 04:57:13 GMT; Path=/; SameSite=None
p3p: CP="NON DSP NID OUR COR"
content-language: en-US
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40015e1eb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.doubleverify.com/dv-measurements3590.js
95.101.11.115200 OK 109 kB URL HTTP/1.1 cdn.doubleverify.com/dv-measurements3590.js
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 109 kB (108664 bytes)
Hash 1641a9065f775579eb36e560f8aece4e
1177a3cde5acfc8733c283dc7cb0799f94980b76
6448dbc00141d6bd237f6081e7eab33bfa16a4be59140d3adedd379984e7d1e0
GET /dv-measurements3590.js HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=946080900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 21 Mar 2023 10:20:26 GMT
Accept-Ranges: bytes
ETag: "011d2c0de5bd91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 108664
Date: Sat, 01 Apr 2023 04:57:13 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9987bf330e05575358681b518fce8e86
7bc1b79c096cff54eac3b1709384ace810b7467e
a4987a833066bc8ade94aa6fc4d288b13d9bbb4bde692499142bfcd2a85f8db1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 01:57:51 GMT
Expires: Wed, 05 Apr 2023 01:57:50 GMT
Etag: "7bc1b79c096cff54eac3b1709384ace810b7467e"
Cache-Control: max-age=334236,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e40052df2b52d-OSL
s0.2mdn.net/simgad/4946965532377167046
172.217.21.166200 OK 32 kB URL HTTP/2 s0.2mdn.net/simgad/4946965532377167046
IP 172.217.21.166:0
File type JPEG image data, progressive, precision 8, 728x90, components 3\012- data
Hash d4a05b67c12eb5544425f7f17e81fe4e
7cd0c669389c4b9db6de05e8b8bf81c32facec81
bcc124caf3eacb7dc6b2875c1edceda53fbeff9ebe15e1b8e3637912b07c0ffb
GET /simgad/4946965532377167046 HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 31802
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 18:16:12 GMT
expires: Thu, 28 Mar 2024 18:16:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 27 Mar 2023 09:42:21 GMT
content-type: image/jpeg
age: 211261
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuY5o57Ug6JUViJ5nLqEL_BeL9m41B1AouHIapW0Jc4FFfifFnGpgADFdMS2GBBA6cp-GyC08hSGjem1gdfREoc3dYpU24NztqQD8zo-emgIafLW5IdMF9Rcmd8aijU1nQLDt3ftlqgYd4Obnog1A&sai=AMfl-YRGK_SfA-zmO4WLB5KiHSbG8aoitNrVXRRrkevkHDS1GvvFjEfv23_tJVuHA4TB4f38HwhFzYw8Pd3gvdQ&sig=Cg0ArKJSzMHn7GE-ilGzEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20230329.40947&arae=0&ftch=1&adurl=
142.250.74.66200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuY5o57Ug6JUViJ5nLqEL_BeL9m41B1AouHIapW0Jc4FFfifFnGpgADFdMS2GBBA6cp-GyC08hSGjem1gdfREoc3dYpU24NztqQD8zo-emgIafLW5IdMF9Rcmd8aijU1nQLDt3ftlqgYd4Obnog1A&sai=AMfl-YRGK_SfA-zmO4WLB5KiHSbG8aoitNrVXRRrkevkHDS1GvvFjEfv23_tJVuHA4TB4f38HwhFzYw8Pd3gvdQ&sig=Cg0ArKJSzMHn7GE-ilGzEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20230329.40947&arae=0&ftch=1&adurl=
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsuY5o57Ug6JUViJ5nLqEL_BeL9m41B1AouHIapW0Jc4FFfifFnGpgADFdMS2GBBA6cp-GyC08hSGjem1gdfREoc3dYpU24NztqQD8zo-emgIafLW5IdMF9Rcmd8aijU1nQLDt3ftlqgYd4Obnog1A&sai=AMfl-YRGK_SfA-zmO4WLB5KiHSbG8aoitNrVXRRrkevkHDS1GvvFjEfv23_tJVuHA4TB4f38HwhFzYw8Pd3gvdQ&sig=Cg0ArKJSzMHn7GE-ilGzEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20230329.40947&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://thedailyneopets.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sat, 01 Apr 2023 04:57:14 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 01-Apr-2023 05:12:14 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 01 Apr 2023 04:57:14 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c3a64fc0f92ade0169c5d2382b721501
4c28cf8188f248ab319c0de97b65d3501cbe4660
16e74751397c6b89ba43a96f23a5b2b305da2bca316f0524dbb15c63b4ec888f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "16E74751397C6B89BA43A96F23A5B2B305DA2BCA316F0524DBB15C63B4EC888F"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7213
Expires: Sat, 01 Apr 2023 06:57:27 GMT
Date: Sat, 01 Apr 2023 04:57:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c3a64fc0f92ade0169c5d2382b721501
4c28cf8188f248ab319c0de97b65d3501cbe4660
16e74751397c6b89ba43a96f23a5b2b305da2bca316f0524dbb15c63b4ec888f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "16E74751397C6B89BA43A96F23A5B2B305DA2BCA316F0524DBB15C63B4EC888F"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7213
Expires: Sat, 01 Apr 2023 06:57:27 GMT
Date: Sat, 01 Apr 2023 04:57:14 GMT
Connection: keep-alive
rtbc-eu3.doubleverify.com/bsevent.gif?flvr=0&impid=65f9775774624059a9996003e02f40cd&vfdur=692&cbust=1680325031971694
34.149.12.213204 No Content 0 B URL HTTP/1.1 rtbc-eu3.doubleverify.com/bsevent.gif?flvr=0&impid=65f9775774624059a9996003e02f40cd&vfdur=692&cbust=1680325031971694
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bsevent.gif?flvr=0&impid=65f9775774624059a9996003e02f40cd&vfdur=692&cbust=1680325031971694 HTTP/1.1
Host: rtbc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thedailyneopets.com
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Date: Sat, 01 Apr 2023 04:57:14 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: max-age=0
Expires: 03/31/2023 04:57:14
Pragma: no-cache
resources.infolinks.com/js/infolinks_main.js
172.66.42.247200 OK 3.8 kB URL HTTP/2 resources.infolinks.com/js/infolinks_main.js
IP 172.66.42.247:0
Hash 770eedc9973a8cc91e38ad86757eb5b1
24d02f2161e9acda13b35cf472c8dd8a2aebba01
273af69421029ea0f648781db750cd150dcf669247ab5f7bbf598df92e53a9f0
GET /js/infolinks_main.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:11 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 14:00:26 GMT
etag: W/"e3e-5f80a65ec28c2"
cache-control: max-age=3600
expires: Sat, 01 Apr 2023 03:01:16 GMT
via: 1.1 google
cf-cache-status: HIT
age: 10555
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e3ff80ea4b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ssc-cms.33across.com/ps/?ri=0010b00002CpYhEAAV&ru=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2F33a-usync%3Fuid%3D33XUSERID33X
67.202.105.23204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?ri=0010b00002CpYhEAAV&ru=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2F33a-usync%3Fuid%3D33XUSERID33X
IP 67.202.105.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?ri=0010b00002CpYhEAAV&ru=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2F33a-usync%3Fuid%3D33XUSERID33X HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP015
date: Sat, 01 Apr 2023 04:57:13 GMT
X-Firefox-Spdy: h2
hal9000.redintelligence.net/zone/chn8refwbhzs?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D
159.69.70.9200 OK 4.1 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/chn8refwbhzs?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D
IP 159.69.70.9:0
ASN #24940 Hetzner Online GmbH
Hash ca610c44be0456da50306830810efb41
10d7db36cd2e57549a4a95c9c9a6972ee751da6e
e331a52bdae1605dc56fca81f5ac3899443aaedcc1ad6fd5a0c4345ed424dcbb
GET /zone/chn8refwbhzs?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4099
Connection: close
Content-Type: text/html; charset=UTF-8
hal9000.redintelligence.net/zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D
159.69.70.9200 OK 4.1 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D
IP 159.69.70.9:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1684), with CRLF line terminators
Hash 24a0621272f3bffa4ed88162c0270493
fb9af427cc1433013f07d13d902118fe85729c20
8795eb4b0311c1b07d712300906e0be098feff2756c80562e56ab03cc6d1b508
GET /zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4095
Connection: close
Content-Type: text/html; charset=UTF-8
resources.infolinks.com/js/pbice/3.025/pbice.js
172.66.42.247200 OK 270 B URL HTTP/2 resources.infolinks.com/js/pbice/3.025/pbice.js
IP 172.66.42.247:0
File type HTML document, ASCII text, with CRLF line terminators
Hash e9923b9852ae7f6b7fbafafea1cfe9fa
35093bf1aa468f1a2df6466c4470a42bb03b3523
8856251c44c0a3c4376d930ef5abeef27d43fbf1632289aa4e806b48b08dfe1f
GET /js/pbice/3.025/pbice.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 11:31:06 GMT
etag: W/"45adc-5f7534347a084"
cache-control: max-age=2592000
expires: Mon, 01 May 2023 02:17:09 GMT
via: 1.1 google
cf-cache-status: HIT
age: 9604
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e4002fdbbb511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rrum?cm_dsp_id=131&external_user_id=18072662263041934352&cb=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db20%26u%3D
185.80.36.245302 Found 242 B URL HTTP/1.1 dsum-sec.casalemedia.com/rrum?cm_dsp_id=131&external_user_id=18072662263041934352&cb=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db20%26u%3D
IP 185.80.36.245:0
File type gzip compressed data, from Unix\012- data
Hash 5da35dfebf893329d3b92e142d0ea38b
49f2a2f98fc803dcfc4a50bc7ad0b082b011dce8
6f8bf55a0c4f8742b22b027861f376a773b9fd50a2dce328b8186fffce53daca
GET /rrum?cm_dsp_id=131&external_user_id=18072662263041934352&cb=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db20%26u%3D HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tribalfusion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rrum?cb=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db20%26u%3D&cm_dsp_id=131&external_user_id=18072662263041934352&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=ZCe5qmh9gnpiHhMKRGdr7wAA; Path=/; Domain=casalemedia.com; Expires=Sun, 31 Mar 2024 04:57:14 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4540; Path=/; Domain=casalemedia.com; Expires=Fri, 30 Jun 2023 04:57:14 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4540; Path=/; Domain=casalemedia.com; Expires=Fri, 30 Jun 2023 04:57:14 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
ups.analytics.yahoo.com/ups/57628/sync?uid=18072662263041934352&_origin=1&redir=true&verify=true
3.71.149.231204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/57628/sync?uid=18072662263041934352&_origin=1&redir=true&verify=true
IP 3.71.149.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/57628/sync?uid=18072662263041934352&_origin=1&redir=true&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tribalfusion.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:57:14 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKq5J2QCEFMS6AjGM6B4IUqFWmVWGywFEgEBAQELKWQxZAAAAAAA_eMAAA&S=AQAAAqWc3Gfn2pmFO5V_OCkBY8M; Expires=Sun, 31 Mar 2024 10:57:14 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rrum?cb=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db20%26u%3D&cm_dsp_id=131&external_user_id=18072662263041934352&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rrum?cb=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db20%26u%3D&cm_dsp_id=131&external_user_id=18072662263041934352&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rrum?cb=https%3A%2F%2Fa.tribalfusion.com%2Fi.match%3Fp%3Db20%26u%3D&cm_dsp_id=131&external_user_id=18072662263041934352&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tribalfusion.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1d1a362ff6&subid=&uid=d7e1498cb9b9b735&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=3048228300255&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
136.243.149.243302 Found 0 B URL HTTP/1.1 hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1d1a362ff6&subid=&uid=d7e1498cb9b9b735&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=3048228300255&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 136.243.149.243:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1d1a362ff6&subid=&uid=d7e1498cb9b9b735&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=3048228300255&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900030.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 01 Apr 2023 05:57:14 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=be5f335b9528c20d; expires=Fri, 30-Jun-2023 04:57:14 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1d1a362ff6&subid=&uid=d7e1498cb9b9b735&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=3048228300255&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
hal900028.redintelligence.net/request.php?zone=chn8refwbhzs&nw=20&renderingType=javascript&namespace=5b4e2b5560&subid=&uid=6e4570618bb19f4b&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=160x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=4896202751771&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
88.99.165.19302 Found 0 B URL HTTP/1.1 hal900028.redintelligence.net/request.php?zone=chn8refwbhzs&nw=20&renderingType=javascript&namespace=5b4e2b5560&subid=&uid=6e4570618bb19f4b&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=160x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=4896202751771&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 88.99.165.19:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=chn8refwbhzs&nw=20&renderingType=javascript&namespace=5b4e2b5560&subid=&uid=6e4570618bb19f4b&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=160x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=4896202751771&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900028.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 01 Apr 2023 05:57:14 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68; expires=Fri, 30-Jun-2023 04:57:14 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=chn8refwbhzs&nw=20&renderingType=javascript&namespace=5b4e2b5560&subid=&uid=6e4570618bb19f4b&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=160x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=4896202751771&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
status.geotrust.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 60bbd652590ccfbceed73c4709db4453
451b627da1ba160f39d6dea8e98a23fe50d9802e
4e53f4a6ab0f3ccd97d5c2721a9c9defe989def7e90027729023a81b6a4bf0cc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4231
Cache-Control: max-age=156392
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:14 GMT
Etag: "6427690b-1d7"
Expires: Mon, 03 Apr 2023 00:23:46 GMT
Last-Modified: Fri, 31 Mar 2023 23:13:15 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=exp&google_cm&google_sc&google_ula=2786954&google_hm=18072662263041934352
142.250.74.34302 Found 349 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=exp&google_cm&google_sc&google_ula=2786954&google_hm=18072662263041934352
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 393a308dd3f94a9ca48c26c66bec7297
25ac0976ae3c896dff3cf1ceb3c08f7e63e7af14
e5aae091a3b86e90b86c0339e2aa2310e5d35a1d3da962c8135753100a9036d2
GET /pixel?google_nid=exp&google_cm&google_sc&google_ula=2786954&google_hm=18072662263041934352 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tribalfusion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=exp&google_cm=&google_sc=&google_ula=2786954&google_hm=18072662263041934352&google_tc=
date: Sat, 01 Apr 2023 04:57:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 349
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 01-Apr-2023 05:12:14 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 64319aed5b3163a6a2c2e0ea881e1ac5
dc23be6635dc9351479e1b7b428635f55a375b10
20f44db268aaacb3923c9f9057c2ad817919fc3f9d86c1abb4d86a1b74b20711
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1612
Cache-Control: max-age=88598
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:14 GMT
Etag: "64266a74-1d7"
Expires: Sun, 02 Apr 2023 05:33:52 GMT
Last-Modified: Fri, 31 Mar 2023 05:07:00 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=exp&google_cm=&google_sc=&google_ula=2786954&google_hm=18072662263041934352&google_tc=
142.250.74.34302 Found 265 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=exp&google_cm=&google_sc=&google_ula=2786954&google_hm=18072662263041934352&google_tc=
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash b53da05c1f7ca3ccbc60ad5bdf36bb91
011b44e4a926a1cff88d19654eeb831fb844108c
d329caca23e7bd5f6b6c6967f5878ef92c4d1b719c1eb8c2bdc33d22abe30610
GET /pixel?google_nid=exp&google_cm=&google_sc=&google_ula=2786954&google_hm=18072662263041934352&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tribalfusion.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://a.tribalfusion.com/i.match?p=b6&u=adx&google_error=3
date: Sat, 01 Apr 2023 04:57:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 265
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=8731&uid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db19%26u%3D$SPOTX_USER_ID
185.94.180.125302 Found 238 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=8731&uid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db19%26u%3D$SPOTX_USER_ID
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
Hash b8c7dd22efda5a09ec2d3497b0f86c32
83506ff90370b8f0cd029e31c59cdd5e327dd9b5
5a8b255e425fe67679d6947a3bbb26ed05af86d43819b118d1f7e3d87f6e493f
GET /partner?adv_id=8731&uid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db19%26u%3D$SPOTX_USER_ID HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tribalfusion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 01 Apr 2023 04:57:14 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=ab77598a-d049-11ed-a369-186cd56e0106; expires=Sat, 29-Apr-2023 04:57:14 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=8731&uid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db19%26u%3D$SPOTX_USER_ID&__user_check__=1&sync_id=ab7759cb-d049-11ed-a369-186cd56e0106
X-fe: 54
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
image6.pubmatic.com/AdServer/UCookieSetPug?oid=1&rd=https%253A//simage2.pubmatic.com/AdServer/Pug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%2526piggybackCookie%253D18072662263041934352%2526r%253Dhttps%25253A//a.tribalfusion.com/i.match%25253Fp%25253Db11%252526u%25253D%252524%25257BPUBMATIC_UID%25257D
185.64.190.78302 Found 277 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=1&rd=https%253A//simage2.pubmatic.com/AdServer/Pug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%2526piggybackCookie%253D18072662263041934352%2526r%253Dhttps%25253A//a.tribalfusion.com/i.match%25253Fp%25253Db11%252526u%25253D%252524%25257BPUBMATIC_UID%25257D
IP 185.64.190.78:0
File type gzip compressed data, from Unix\012- data
Hash 92c45ed7774a10f1141e32c5e6e1f40f
454dd221ee87890fc0658b8b1798eea0ef37c358
abadcc9e6197fbd15d60e8ebfc5bdc53cd517546a11e7efa472abef13d414099
GET /AdServer/UCookieSetPug?oid=1&rd=https%253A//simage2.pubmatic.com/AdServer/Pug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%2526piggybackCookie%253D18072662263041934352%2526r%253Dhttps%25253A//a.tribalfusion.com/i.match%25253Fp%25253Db11%252526u%25253D%252524%25257BPUBMATIC_UID%25257D HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tribalfusion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: /AdServer/UCookieSetPug?oid=1&rd=https%253A//simage2.pubmatic.com/AdServer/Pug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%2526piggybackCookie%253D18072662263041934352%2526r%253Dhttps%25253A//a.tribalfusion.com/i.match%25253Fp%25253Db11%252526u%25253D%252524%25257BPUBMATIC_UID%25257D&rdf=1
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Sat, 01 Apr 2023 04:57:13 GMT
content-length: 0
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=8731&uid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db19%26u%3D$SPOTX_USER_ID&__user_check__=1&sync_id=ab7759cb-d049-11ed-a369-186cd56e0106
185.94.180.125200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=8731&uid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db19%26u%3D$SPOTX_USER_ID&__user_check__=1&sync_id=ab7759cb-d049-11ed-a369-186cd56e0106
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=8731&uid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db19%26u%3D$SPOTX_USER_ID&__user_check__=1&sync_id=ab7759cb-d049-11ed-a369-186cd56e0106 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tribalfusion.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 04:57:14 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=ab7bef2f-d049-11ed-9e1c-1eddb0c50106; expires=Sat, 29-Apr-2023 04:57:14 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 48
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
image6.pubmatic.com/AdServer/UCookieSetPug?oid=1&rd=https%253A//simage2.pubmatic.com/AdServer/Pug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%2526piggybackCookie%253D18072662263041934352%2526r%253Dhttps%25253A//a.tribalfusion.com/i.match%25253Fp%25253Db11%252526u%25253D%252524%25257BPUBMATIC_UID%25257D&rdf=1
185.64.190.78200 OK 0 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=1&rd=https%253A//simage2.pubmatic.com/AdServer/Pug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%2526piggybackCookie%253D18072662263041934352%2526r%253Dhttps%25253A//a.tribalfusion.com/i.match%25253Fp%25253Db11%252526u%25253D%252524%25257BPUBMATIC_UID%25257D&rdf=1
IP 185.64.190.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/UCookieSetPug?oid=1&rd=https%253A//simage2.pubmatic.com/AdServer/Pug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%2526piggybackCookie%253D18072662263041934352%2526r%253Dhttps%25253A//a.tribalfusion.com/i.match%25253Fp%25253Db11%252526u%25253D%252524%25257BPUBMATIC_UID%25257D&rdf=1 HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tribalfusion.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Sat, 01 Apr 2023 04:57:12 GMT
content-length: 0
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=22054&dpuuid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db13%26u%3D%24%7BDD_UUID%7D
3.248.139.52302 Found 301 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=22054&dpuuid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db13%26u%3D%24%7BDD_UUID%7D
IP 3.248.139.52:0
File type gzip compressed data, from Unix\012- data
Hash 2454bf489028541aec4c338aee235a7f
3e1a8994a97cc120004886b66ea099c8c7aca8bf
a006b92cf3635a917fe983b66435f9bfe3ad78aa977e600fd0595d7b75ce1d2d
GET /ibs:dpid=22054&dpuuid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db13%26u%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tribalfusion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v046-08084f0ad.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=22054&dpuuid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db13%26u%3D%24%7BDD_UUID%7D
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=39056666636627674370264599786038588633; Max-Age=15552000; Expires=Thu, 28 Sep 2023 04:57:14 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: CNk+5py3TL8=
Content-Length: 0
Connection: keep-alive
hal900028.redintelligence.net/request.php?zone=chn8refwbhzs&nw=20&renderingType=javascript&namespace=5b4e2b5560&subid=&uid=6e4570618bb19f4b&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=160x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=4896202751771&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
88.99.165.19200 OK 512 B URL HTTP/1.1 hal900028.redintelligence.net/request.php?zone=chn8refwbhzs&nw=20&renderingType=javascript&namespace=5b4e2b5560&subid=&uid=6e4570618bb19f4b&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=160x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=4896202751771&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 88.99.165.19:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash e1ded5b28bcde66078c5955f12694dbf
a756afb403c9c3105850a1fcf505d11b88ad94bf
904b70bb1a8e8aca2947b598b56dc526430e43a965cc8678bfa38214207e9a29
GET /request.php?zone=chn8refwbhzs&nw=20&renderingType=javascript&namespace=5b4e2b5560&subid=&uid=6e4570618bb19f4b&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=160x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCbbWZqbknZK77HZKW6wS-056IDMm5opxprLHNztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BH2nZ5EFS6kIVtUaQkL-QSjiZKjoVf_lua7EYO7BXnY1eZ4rqYZie9tt_bE5g5ZFIAmfXtPrJV6JMxMgyBbtGBvn3_gWdOiOC3Gw9XaZvesuDHr1KAjMDoi7hbaXy13ec2zt8zQGO9csnG4-qXynqv0SdezA6LedmrjaDgylof1_f76JpvvDdKacvaqkYpjVrJH72q4wGxcOwESMWCrGn2Vb9oCIDixkwz8NcPRkxJ-ZUNp-s1B2zk9Lo4XyyGJJydec40vKr669isFl8OnnN_aJN-l1p8QmJeMTgzRAdiM6XTNCALVomVvMlxcyX4_cAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymLaNHgRgQ_lQZXs-faM3vs1TRFkvKfTB-dnJm4yqLQIzjVFvpXwcVOI9nAHIrTASNX7gspr7Cd8gle-kAWhprV8eWUXfssZEYAQ%26sig%3DAOD64_0DNBU8kyNtIjvRWhbwDERiN-7G8Q%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BU-y2W_VlOpJottFNuq9skOJpnHV1LgMBbqTOHolOajh65I82qmzMSuJnYni9CZh9jGUSwOm4MXw-NBZIbZ_j9A9drPrbU5lPjmm81lnG19Jc6Jlt2NFsqzvLvLrXKk-gHMXFkpswSqquM3dRb7IM_zZFLKBcsn-Ce1_EiPixtpPDWUxo%26cry%3D1%26dbm_d%3DAKAmf-DDVa_qTcMwwPcCWwf50jLRjT4Lr_xttGzLJZaNOCUGlqTyuT5jrtZFuxfhc0zYG77qmERzHM8Vo_I5HFIuV8DlowqE8m2OCZoXfHammoRue1lS7NW5tA9waP_F_2O_QyXHUrv337Xt-ZnjbDR0KVBNp_-XRv-4L8cYieHu8vNtxbKqPmvL1jP4rH6gYW7_RqqpqOJnJyVLPQg66JGBxGY9MyUXI4_MdHhQRjWjIRTfGe2Tj2v--c3M7wGFIaqywT8TD-Ys9JOd9hGCU6HkqW1RqSgLo7-p4PHkJSrmReAz3_EkFOxvBQjlkAnNip97WsqRd0VGILeLNUX22PRy3DvsvLsZsJxvg_zInf35IK_ioKfkz-mlgkFblgx9AM_SiCoMGzQNfcYhA2cFyiVfTBIRlraYoiMF2YuYHZJIeD5puvbQN_zIcZfEOYniHfN9x-rRFC0nKr9XdT7g74gZOto7rRTNOh80PTi5VkjV5grwmByM2f8V9tK0MWUZzP7Nw-iitbOmDGyU4VoDONaaEb-xCkpcKF-nt-xKTsLRU0EAIzz7ez0%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=4896202751771&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900028.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 01 Apr 2023 05:57:14 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68; expires=Fri, 30-Jun-2023 04:57:14 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 26698700016516704438322012281028
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Connection: close
Content-Type: application/x-javascript; charset=utf-8
hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1d1a362ff6&subid=&uid=d7e1498cb9b9b735&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=3048228300255&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
136.243.149.243200 OK 510 B URL HTTP/1.1 hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1d1a362ff6&subid=&uid=d7e1498cb9b9b735&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=3048228300255&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 136.243.149.243:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash ef4bed82b4329d72b8d5b648e68f406c
0692e102f288216109a3c3dc03a3edaf1d1d918e
74b1adde50364889902e0dc52d8539b69674c22f1e96362e3ad12836c8c71efa
GET /request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1d1a362ff6&subid=&uid=d7e1498cb9b9b735&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCiFq6qbknZIjnG8rj6gTXgLXgBMm5opxpvK_NztUP8C4QASCf-Z4EYMOEgICYGMgBCakC56MY7Ykvsj6oAwGqBPEBT9BUnXiMg_8VwH26PV8bGBvL-j53wMYyo8_1YCmwUXENPaE2_-Y2DEdiFyxIPbXtDFQOAZcksCrDs9cWV5nWQwiAxbm8jIQ03uOnuvz7XUfCTyI05CeZCKzlcbkt-cg7DuARV1QLRUXg9e6j5uKzvygiEr9h3CBKc0NfaVKVN041gFu-M60vfWiIb21QhAqwfno6IH-0JX1fvpKydEEYESi4TvOICO6SS6tWvFdNINWEthqMnilHwZ17u979lupqtAVLPD5AKiJl7kH09guDq98Dg0uH6_lFFFzS6LlGhaiSCciWILQhO3qTGSM6lu38d8AEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ym4tQkt8Fp3aUmvZlEkhYg9XnyvVwD-NxfV4lzxsQ5WxBdwC7W0aQtI7U4uaJWgZbQVv4PceoBpxq6DZsvqYw1YvrNSA9dXJYYAQ%26sig%3DAOD64_1AiQsReoblHm47AeWXcqaR9EYN4g%26client%3Dca-pub-9446512090355518%26dbm_c%3DAKAmf-BHAGmabF2-yITAk-HdyzW6Ssa0kHgB8WiFcNi5oQpr1simTMytLxTMWJVhQhOvWApZIsRwXxTZqKaQlphkqQjrFsL10JSgmNFSfFxI0GpHpm11KJLfJQffXOfMAfPkt0G60zpwX6GFulHviacqzqJBHYdoZbDjw4wgoVftzk3PphKWmVc%26cry%3D1%26dbm_d%3DAKAmf-BNGYgni9Ph_cCXowo1AMKMB5DpbvB68MKo7PNnG-CMuElO60swUTy8UHt-AFnLysc-V2mt5RJ6POACeWh_BWlxUoibNPCnffhpil4Va2xKY6LItVM9V0F-MEsPQ40ip-EoXg9b2FQ7bXJxfjdQKxJd-lYMq5-NaTVe6Ud3IeYyiI7oIRYf8dvnUlrcQF3zDEBeS9f-d2oKVAJwxRIWlvR4dOPOP4rMeErhTWF3uu1lQXTlt6DE5PysqMSGPCiG4S5M7OLuoFwzBwrLmWQrX69uOcFObanLEVRQbEIdj5Ok4-9ZZBlHOtzqo0rXxMNV1s0dsj85TUInKCOYxv8O2l6TWcOhwo-7zQNa6aHEmi5nkTiCR_DnHGIRxGutQE_zACOqISqb6MjtUEGVUsfVSESAGVcKgwf41KcD5wPRbksjYw8ZAEe7eGb3QI0LcVYDVYA9FZwscWUwF-mehyhiaLYK5ebAoxU_I9qbjelPrKOe0g5Jcla_zaxHZ-ys6c-5B5aTFJlkeXftCu-7QJsERI4UYneG1kfSsX0Ye8c1D00KkKGzPfw%26adurl%3D&documentReferer=https%3A%2F%2Fthedailyneopets.com%2F&ancestorOrigins=null&random=3048228300255&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900030.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:14 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 01 Apr 2023 05:57:14 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68; expires=Fri, 30-Jun-2023 04:57:14 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 66618800015834704438320012281030
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 510
Connection: close
Content-Type: application/x-javascript; charset=utf-8
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=22054&dpuuid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db13%26u%3D%24%7BDD_UUID%7D
3.248.139.52200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=22054&dpuuid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db13%26u%3D%24%7BDD_UUID%7D
IP 3.248.139.52:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=22054&dpuuid=18072662263041934352&redir=https%3A//a.tribalfusion.com/i.match%3Fp%3Db13%26u%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tribalfusion.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v046-03345ae29.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 0ydz+Dc6TLQ=
Content-Length: 59
Connection: keep-alive
hal900028.redintelligence.net/request_content.php?s=26698700016516704438322012281028&a=fef0fb39
88.99.165.19200 OK 1.5 kB URL HTTP/1.1 hal900028.redintelligence.net/request_content.php?s=26698700016516704438322012281028&a=fef0fb39
IP 88.99.165.19:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a5c0910387b94d8ebb716c3df7192b3f
3366a326481739944b29bd5324ae7fc2127848c5
f7e58281b00ca900ce116dfd586339876652046ec9f6198ab829a99efcd7e965
GET /request_content.php?s=26698700016516704438322012281028&a=fef0fb39 HTTP/1.1
Host: hal900028.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:15 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 01 Apr 2023 05:57:15 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1501
Connection: close
Content-Type: text/html; charset=utf-8
hal900030.redintelligence.net/request_content.php?s=66618800015834704438320012281030&a=08883008
136.243.149.243200 OK 2.3 kB URL HTTP/1.1 hal900030.redintelligence.net/request_content.php?s=66618800015834704438320012281030&a=08883008
IP 136.243.149.243:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash cf9522994a0104adf2f5a73464d39c54
b37be5f905c5f99423b196e71da77116280a16a4
9ede0af1a695cc4622a58c238e8094614824eb4483cea84802b518f65c73ed69
GET /request_content.php?s=66618800015834704438320012281030&a=08883008 HTTP/1.1
Host: hal900030.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:15 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 01 Apr 2023 05:57:15 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2293
Connection: close
Content-Type: text/html; charset=utf-8
ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js
142.250.74.42200 OK 32 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js
IP 142.250.74.42:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32764)
Hash 548260b20981c0be2d9dcf8d01c08c24
84230120f8f1bd559eca3fb2fec6acf6cffbf4e7
2f8a612a714e5c928525fdb193f8ec12f7965a6c0d63dd8e58ccae239358c8bb
GET /ajax/libs/jquery/1.6.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900030.redintelligence.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32245
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 18:05:16 GMT
expires: Sat, 30 Mar 2024 18:05:16 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 39119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hal900028.redintelligence.net/viewability?s=26698700016516704438322012281028&a=fafd4d20&vb=m
88.99.165.19200 OK 0 B URL HTTP/1.1 hal900028.redintelligence.net/viewability?s=26698700016516704438322012281028&a=fafd4d20&vb=m
IP 88.99.165.19:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=26698700016516704438322012281028&a=fafd4d20&vb=m HTTP/1.1
Host: hal900028.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900028.redintelligence.net/request_content.php?s=26698700016516704438322012281028&a=fef0fb39
Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:15 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
cdn.contentspread.net/24i/content/soberfb/EN/S-160x600.gif
51.75.147.170200 OK 41 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-160x600.gif
IP 51.75.147.170:0
File type GIF image data, version 89a, 160 x 600\012- data
Hash da9a6ccde110136238361e46336d1008
3f6cfcfee67d960abf2df0c8fff886948c3049af
d570e242efad060adb9d0c0772e1d75f6ad9ca6b92582053376d3e3ee8585579
GET /24i/content/soberfb/EN/S-160x600.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900028.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 04:57:15 GMT
Content-Type: image/gif
Content-Length: 40644
Last-Modified: Mon, 23 Jul 2018 15:19:30 GMT
Connection: close
ETag: "5b55f202-9ec4"
Accept-Ranges: bytes
cdn.contentspread.net/24i/content/soberfb/EN/S-300x250.gif
51.75.147.170200 OK 71 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-300x250.gif
IP 51.75.147.170:0
File type GIF image data, version 89a, 300 x 250\012- data
Hash d6ba1ff0393a5eb5224cf2416db7ba0b
c73aed3c96fd54b634cf2f38358fb59f99484ae0
fb805ea8e0e2123c713b4613ec92e55d7c11db579417ab8bdbd070d5c18e5104
GET /24i/content/soberfb/EN/S-300x250.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900030.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 04:57:15 GMT
Content-Type: image/gif
Content-Length: 71110
Last-Modified: Mon, 23 Jul 2018 15:20:14 GMT
Connection: close
ETag: "5b55f22e-115c6"
Accept-Ranges: bytes
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash e0d836f92b9849f6a5a5797c87ed4fda
e13a8c86872ab84c203ef8c373830acaf129e0f7
ce2b87cb46a747b9749e8d557788144329fb38cf706dba039b57c0fa168f8b91
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 01 Apr 2023 04:57:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 31 Mar 2023 20:38:49 GMT
Expires: Sat, 01 Apr 2023 20:38:49 GMT
ETag: "e13a8c86872ab84c203ef8c373830acaf129e0f7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
hal900030.redintelligence.net/viewability?s=66618800015834704438320012281030&a=821597a6&vb=m
136.243.149.243200 OK 0 B URL HTTP/1.1 hal900030.redintelligence.net/viewability?s=66618800015834704438320012281030&a=821597a6&vb=m
IP 136.243.149.243:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=66618800015834704438320012281030&a=821597a6&vb=m HTTP/1.1
Host: hal900030.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900030.redintelligence.net/request_content.php?s=66618800015834704438320012281030&a=08883008
Cookie: 8lcfmzhxc8d6_uid=a0990054991e8b68
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:15 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=146&ttfrms=27&bridua=2&tstype=2&eparams=DC4FC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETauU42%3FFC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETau&srcurlD=0&aUrlD=0&ssl=https:&dfs=1965&ddur=57&uid=1680325032702288&jsCallback=dvCallback_1680325032702965&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=939&winw=1280&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fwc=0&fcl=689&flt=204&fec=797&fcifrms=4&brh=1&sdf=2&dvp_epl=121&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3758893&cmp=29589193&sid=6596925&plc=363109549&crt=189546978&btreg=553987365&btadsrv=doubleclick&adsrv=1&advid=9999271&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=17843220.310674194&dvp_tukv=2629554.658906091&dvp_tuid=1674501665593&jurtd=2774146657
34.149.12.213200 OK 857 B URL HTTP/1.1 tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=146&ttfrms=27&bridua=2&tstype=2&eparams=DC4FC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETauU42%3FFC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETau&srcurlD=0&aUrlD=0&ssl=https:&dfs=1965&ddur=57&uid=1680325032702288&jsCallback=dvCallback_1680325032702965&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=939&winw=1280&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fwc=0&fcl=689&flt=204&fec=797&fcifrms=4&brh=1&sdf=2&dvp_epl=121&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3758893&cmp=29589193&sid=6596925&plc=363109549&crt=189546978&btreg=553987365&btadsrv=doubleclick&adsrv=1&advid=9999271&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=17843220.310674194&dvp_tukv=2629554.658906091&dvp_tuid=1674501665593&jurtd=2774146657
IP 34.149.12.213:0
File type ASCII text, with very long lines (1499), with no line terminators
Hash c2f3880b852182404b4928e3cae44a6b
00cf2a92241abb42d3864dde1f54f03546942dab
6c11cd5a7605bcfee8b71758999a7a011a145034d414b0759aaa3bdc7fd03cea
GET /visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=146&ttfrms=27&bridua=2&tstype=2&eparams=DC4FC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETauU42%3FFC%3Dl9EEADTbpTauTauE9652%3A%3DJ%3F6%40A6ED%5D4%40%3ETau&srcurlD=0&aUrlD=0&ssl=https:&dfs=1965&ddur=57&uid=1680325032702288&jsCallback=dvCallback_1680325032702965&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=939&winw=1280&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fwc=0&fcl=689&flt=204&fec=797&fcifrms=4&brh=1&sdf=2&dvp_epl=121&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3758893&cmp=29589193&sid=6596925&plc=363109549&crt=189546978&btreg=553987365&btadsrv=doubleclick&adsrv=1&advid=9999271&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=17843220.310674194&dvp_tukv=2629554.658906091&dvp_tuid=1674501665593&jurtd=2774146657 HTTP/1.1
Host: tps.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:15 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0
Content-Encoding: br
Expires: 03/31/2023 04:57:15
Pragma: no-cache
Vary: Accept-Encoding
cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=0b2b2b6669424147a900d1c9422e59e5&dup=&eoid=1000&mpt=1680325033991975
95.101.11.115302 Moved Temporarily 0 B URL HTTP/1.1 cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=0b2b2b6669424147a900d1c9422e59e5&dup=&eoid=1000&mpt=1680325033991975
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect/?host=tpsc-eu3¶m=akipv6&impid=0b2b2b6669424147a900d1c9422e59e5&dup=&eoid=1000&mpt=1680325033991975 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://tpsc-eu3.doubleverify.com/event.png?impid=0b2b2b6669424147a900d1c9422e59e5&akipv6=&dup=&eoid=1000
Date: Sat, 01 Apr 2023 04:57:15 GMT
Connection: keep-alive
tpsc-eu3.doubleverify.com/event.png?impid=0b2b2b6669424147a900d1c9422e59e5&akipv6=&dup=&eoid=1000
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=0b2b2b6669424147a900d1c9422e59e5&akipv6=&dup=&eoid=1000
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.png?impid=0b2b2b6669424147a900d1c9422e59e5&akipv6=&dup=&eoid=1000 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://thedailyneopets.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Sat, 01 Apr 2023 04:57:15 GMT
Connection: keep-alive
Cache-Control: max-age=0
Expires: 03/31/2023 04:57:15
Pragma: no-cache
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 508 B IP 142.250.74.131:0
Hash f76349c7ac3ccc2d581babc532040186
2d827aeec09e98e483d956b07267895a684c1970
c3676a8bf5f189863daea26d64d5ebac48ae0d8782e5d195e9f51f75dca7eec8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 741a2f47aab81a2c7ed0fadaa1fa74e3
be34e0df4a5f272589a017ce77ece974d890f27c
4ea1737c8246072ea1072314ae684c1f7e518a81a5200c46374e47378bfb6b63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 9f0849b1d573be8a976b6570fe57ba06
9ee338e4270a6ae593d42accb68f2204824f26b3
f8df9e0f0eb45835203391b2ef6268a115af62147061e6ac013cc548f5697ef2
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 01 Apr 2023 04:57:15 GMT
date: Sat, 01 Apr 2023 04:57:15 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-snOwx1HW9xN-w2aFWgR_Sw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 9d84201fc20313cab4b5d13d777c66ff
b905e52481ed0cdfdae6b70224d824f05340b54d
8c9c9fbd24882d2d2f50edbda665363e0f49ab681ac79f88b88ad053d919718b
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 01 Apr 2023 04:57:15 GMT
date: Sat, 01 Apr 2023 04:57:15 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-H9liXaCZ6_98yERx5b365Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpsc-eu3.doubleverify.com/event.png?impid=0b2b2b6669424147a900d1c9422e59e5&flavor=0&gdpr=&gdpr_consent=&vdur=1274&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=57&tetms=5&msltms=12&vltms=1274&sei=146&vetms=15&tuviims=174&tuviems=1463&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=394&msrcannum=4&ismms=65&isumms=64&nvr=6&isgmmims=65&isgmv4mims=65&elmtp=3&isbxdms=3408&b11=3445&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&dvp_mvpw=device-width&dvp_mvpis=1&lftb=3445&sftb=3445&msrdp=3&naral=2&vct=1&vphgt=939&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=100&advisonl=true&isiabvms=1291&isuiabvms=1291&isgmpims=64&isgmv4dpims=1291&ispmxpms=1291&iscvmvms=1984&engalms=62&dvp_hdnAd=0&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=4313&mpt=1680325036991483
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=0b2b2b6669424147a900d1c9422e59e5&flavor=0&gdpr=&gdpr_consent=&vdur=1274&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=57&tetms=5&msltms=12&vltms=1274&sei=146&vetms=15&tuviims=174&tuviems=1463&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=394&msrcannum=4&ismms=65&isumms=64&nvr=6&isgmmims=65&isgmv4mims=65&elmtp=3&isbxdms=3408&b11=3445&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&dvp_mvpw=device-width&dvp_mvpis=1&lftb=3445&sftb=3445&msrdp=3&naral=2&vct=1&vphgt=939&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=100&advisonl=true&isiabvms=1291&isuiabvms=1291&isgmpims=64&isgmv4dpims=1291&ispmxpms=1291&iscvmvms=1984&engalms=62&dvp_hdnAd=0&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=4313&mpt=1680325036991483
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event.png?impid=0b2b2b6669424147a900d1c9422e59e5&flavor=0&gdpr=&gdpr_consent=&vdur=1274&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=57&tetms=5&msltms=12&vltms=1274&sei=146&vetms=15&tuviims=174&tuviems=1463&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=394&msrcannum=4&ismms=65&isumms=64&nvr=6&isgmmims=65&isgmv4mims=65&elmtp=3&isbxdms=3408&b11=3445&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&dvp_mvpw=device-width&dvp_mvpis=1&lftb=3445&sftb=3445&msrdp=3&naral=2&vct=1&vphgt=939&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=100&advisonl=true&isiabvms=1291&isuiabvms=1291&isgmpims=64&isgmv4dpims=1291&ispmxpms=1291&iscvmvms=1984&engalms=62&dvp_hdnAd=0&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=4313&mpt=1680325036991483 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thedailyneopets.com
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Date: Sat, 01 Apr 2023 04:57:19 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: max-age=0
Expires: 03/31/2023 04:57:19
Pragma: no-cache
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jidQVHgb6EK_fyGj4wYgdWEBeth8CIB5szPrwrgmirz4Q9tSYpRrsw==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:06 GMT
age: 25813
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito:700
IP 142.250.74.106:0
GET /css?family=Nunito:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 01 Apr 2023 04:57:11 GMT
date: Sat, 01 Apr 2023 04:57:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pets.neopets.com/cp/rbs3ltbn/1/4.png
205.185.216.10200 OK 0 B URL HTTP/1.1 pets.neopets.com/cp/rbs3ltbn/1/4.png
IP 205.185.216.10:0
GET /cp/rbs3ltbn/1/4.png HTTP/1.1
Host: pets.neopets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:57:11 GMT
Connection: Keep-Alive
ETag: "1680299931"
Cache-Control: max-age=61300
Content-Length: 70697
Content-Type: image/png
Last-Modified: Fri, 31 Mar 2023 21:58:51 GMT
Accept-Ranges: bytes
X-HW: 1680325031.dop023.sk1.t,1680325031.cds253.sk1.shn,1680325031.dop023.sk1.t,1680325031.cds003.sk1.c
resources.infolinks.com/js/1852.004-3.026/ice.js
172.66.42.247200 OK 0 B URL HTTP/2 resources.infolinks.com/js/1852.004-3.026/ice.js
IP 172.66.42.247:0
GET /js/1852.004-3.026/ice.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:12 GMT
content-type: application/javascript
last-modified: Mon, 27 Mar 2023 12:22:57 GMT
etag: W/"2e133-5f7e0cd96e691"
cache-control: max-age=2592000
expires: Mon, 01 May 2023 02:33:38 GMT
via: 1.1 google
cf-cache-status: HIT
age: 8614
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e3ffd79f1b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/infolinks?zcc=1&cb=1680325033032
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/infolinks?zcc=1&cb=1680325033032
IP 213.19.147.44:0
GET /usersync2/infolinks?zcc=1&cb=1680325033032 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://router.infolinks.com/dyn/r1-usync?uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=infolinks
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=infolinks
IP 213.19.147.44:0
GET /usersync2/rmpssp?sub=infolinks HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-0d11363c-5cb7-4e27-8873-7aa982d1b6f2-003%22%2C%22zdxidn%22%3A%222069.56%22%7D; path=/; expires=Sun, 31 Mar 2024 04:57:13 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rmpssp?sub=infolinks&zcc=1&cb=1680325033235
etag: RX0d11363c5cb74e2788737aa982d1b6f2003
X-Firefox-Spdy: h2
rt3027.infolinks.com/action/getads.htm?hks=%5B%7B%22lid%22%3A%22d_IL_INSEARCH%22%2C%22bdc%22%3A1%2C%22prod_t%22%3A%22d%22%2C%22garc%22%3A0%2C%22sdata%22%3A%22net%22%2C%22scs%22%3A%22lt7iZmVUVu%22%7D%5D&rid=d386b1f3-dab2-4a02-ba1f-629d558c5c26&jsv=1852.004-3.026&sr=1280X1002&rts=1680325032065&cfv=-1&cb=getAdsResponse&os=Windows&ov=10&br=Firefox&bv=105.0&dv=p&ce=t&purl=https%3A%2F%2Fthedailyneopets.com%2F&tzo=-0000&c=c&strg=true&rsd=3xBP7r5YKRJqvqnHbcfJJhSX8ycqRQrBus0m7tBwcfWSWCHFHa7m6EClF9pKdQm4LboO6SJATm93dn0nUM8kRKMP-lg85-itd9XoHXOTQqi8NnsBKWE3As8rM8-RLv0qyu2vVeoamPX8UnKpYibtVnpQgLMW3kSy&rsk=38&rcs=aqRPZYzqyGjkeueU2qqkkg&cuid=8a1c385a-9ebe-4336-9b92-106c4bab4338&hbnr=false
172.66.42.247200 OK 0 B URL HTTP/2 rt3027.infolinks.com/action/getads.htm?hks=%5B%7B%22lid%22%3A%22d_IL_INSEARCH%22%2C%22bdc%22%3A1%2C%22prod_t%22%3A%22d%22%2C%22garc%22%3A0%2C%22sdata%22%3A%22net%22%2C%22scs%22%3A%22lt7iZmVUVu%22%7D%5D&rid=d386b1f3-dab2-4a02-ba1f-629d558c5c26&jsv=1852.004-3.026&sr=1280X1002&rts=1680325032065&cfv=-1&cb=getAdsResponse&os=Windows&ov=10&br=Firefox&bv=105.0&dv=p&ce=t&purl=https%3A%2F%2Fthedailyneopets.com%2F&tzo=-0000&c=c&strg=true&rsd=3xBP7r5YKRJqvqnHbcfJJhSX8ycqRQrBus0m7tBwcfWSWCHFHa7m6EClF9pKdQm4LboO6SJATm93dn0nUM8kRKMP-lg85-itd9XoHXOTQqi8NnsBKWE3As8rM8-RLv0qyu2vVeoamPX8UnKpYibtVnpQgLMW3kSy&rsk=38&rcs=aqRPZYzqyGjkeueU2qqkkg&cuid=8a1c385a-9ebe-4336-9b92-106c4bab4338&hbnr=false
IP 172.66.42.247:0
GET /action/getads.htm?hks=%5B%7B%22lid%22%3A%22d_IL_INSEARCH%22%2C%22bdc%22%3A1%2C%22prod_t%22%3A%22d%22%2C%22garc%22%3A0%2C%22sdata%22%3A%22net%22%2C%22scs%22%3A%22lt7iZmVUVu%22%7D%5D&rid=d386b1f3-dab2-4a02-ba1f-629d558c5c26&jsv=1852.004-3.026&sr=1280X1002&rts=1680325032065&cfv=-1&cb=getAdsResponse&os=Windows&ov=10&br=Firefox&bv=105.0&dv=p&ce=t&purl=https%3A%2F%2Fthedailyneopets.com%2F&tzo=-0000&c=c&strg=true&rsd=3xBP7r5YKRJqvqnHbcfJJhSX8ycqRQrBus0m7tBwcfWSWCHFHa7m6EClF9pKdQm4LboO6SJATm93dn0nUM8kRKMP-lg85-itd9XoHXOTQqi8NnsBKWE3As8rM8-RLv0qyu2vVeoamPX8UnKpYibtVnpQgLMW3kSy&rsk=38&rcs=aqRPZYzqyGjkeueU2qqkkg&cuid=8a1c385a-9ebe-4336-9b92-106c4bab4338&hbnr=false HTTP/1.1
Host: rt3027.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: text/html;charset=UTF-8
x-application-context: application:prod
cache-control: no-cache,no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP NID OUR COR"
content-language: en-US
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e40035dffb511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
resources.infolinks.com/js/1852.004-3.026/intag_incontent.js
172.66.42.247200 OK 0 B URL HTTP/2 resources.infolinks.com/js/1852.004-3.026/intag_incontent.js
IP 172.66.42.247:0
GET /js/1852.004-3.026/intag_incontent.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: application/javascript
last-modified: Mon, 27 Mar 2023 12:22:57 GMT
etag: W/"31bf3-5f7e0cd96dec0"
cache-control: max-age=2592000
expires: Mon, 01 May 2023 03:00:01 GMT
via: 1.1 google
cf-cache-status: HIT
age: 7032
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e40034df5b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
resources.infolinks.com/js/1852.004-3.026/in_text.js
172.66.42.247200 OK 0 B URL HTTP/2 resources.infolinks.com/js/1852.004-3.026/in_text.js
IP 172.66.42.247:0
GET /js/1852.004-3.026/in_text.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: application/javascript
last-modified: Mon, 27 Mar 2023 12:22:57 GMT
etag: W/"2950-5f7e0cd96ee61"
cache-control: max-age=2592000
expires: Mon, 01 May 2023 04:47:32 GMT
via: 1.1 google
cf-cache-status: HIT
age: 581
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e40035df8b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
router.infolinks.com/gsd?evt=afterGSD&pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F&jsv=1852.004-3.026&_cb=16803250312190
172.66.42.247200 OK 0 B URL HTTP/2 router.infolinks.com/gsd?evt=afterGSD&pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F&jsv=1852.004-3.026&_cb=16803250312190
IP 172.66.42.247:0
GET /gsd?evt=afterGSD&pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F&jsv=1852.004-3.026&_cb=16803250312190 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:12 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: max-age=0
p3p: CP="NON DSP NID OUR COR"
set-cookie: cuid=8a1c385a-9ebe-4336-9b92-106c4bab4338; Domain=infolinks.com; Expires=Mon, 31-Mar-2025 04:57:12 GMT; Path=/; SameSite=None; Secure
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e3ffebaacb511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
router.infolinks.com/usync/manage?pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F
172.66.42.247200 OK 0 B URL HTTP/2 router.infolinks.com/usync/manage?pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F
IP 172.66.42.247:0
GET /usync/manage?pid=1355119&wsid=0&pdom=thedailyneopets.com&purl=https%3A%2F%2Fthedailyneopets.com%2F HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedailyneopets.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:57:12 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0e3ffe0a65b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/infolinks
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/infolinks
IP 213.19.147.44:0
GET /usersync2/infolinks HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-39caa9e5-f401-4d96-8c0a-41dca80bcbbc-003%22%2C%22zdxidn%22%3A%222109%22%7D; path=/; expires=Sun, 31 Mar 2024 04:57:13 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/infolinks?zcc=1&cb=1680325033032
etag: RX39caa9e5f4014d968c0a41dca80bcbbc003
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9212295768&_puid=18072662263041934352
54.155.55.194302 Found 0 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212295768&_puid=18072662263041934352
IP 54.155.55.194:0
GET /adscores/g.pixel?sid=9212295768&_puid=18072662263041934352 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tribalfusion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:57:13 GMT
location: https://a.tribalfusion.com/i.match?p=b23&u=220033204473000280082
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3A1X9YdtCxmIx%2B%2FXb84IDdT%2BHIhkkcypBG; Path=/; Domain=.agkn.com; Expires=Mon, 01-Apr-2024 04:57:13 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2