www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
54.230.111.7301 Moved Permanently 167 B URL HTTP/1.1 www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
IP 54.230.111.7:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request with Possible COVID-19 URI M2
GET /news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 01 Feb 2023 22:03:42 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
X-Cache: Redirect from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xn8c_-bH0Q0HiNsx0kJjQ6amtChyNjSDbuMR1Poae67VzljVDrBhFQ==
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7878
Expires: Thu, 02 Feb 2023 00:15:01 GMT
Date: Wed, 01 Feb 2023 22:03:43 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7605
Expires: Thu, 02 Feb 2023 00:10:28 GMT
Date: Wed, 01 Feb 2023 22:03:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 21:43:26 GMT
content-type: application/json
age: 1217
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10403
Expires: Thu, 02 Feb 2023 00:57:06 GMT
Date: Wed, 01 Feb 2023 22:03:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JZU+nEWlGA4hkYJwUC/WxgSyLURrbxGJXlKBASa7k42H3/JBq+HVV/eSRVMwTOVXBm1/Ogheprk1JLQb2yN4XA==
x-amz-request-id: 2FB0T278PJHT4ZJ2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 21:22:49 GMT
age: 2454
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:03:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
54.230.111.120200 OK 67 kB URL HTTP/1.1 www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
IP 54.230.111.120:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48149), with LF, NEL line terminators
Hash ceedb8af0160d8c28fc29da0530033cc
6b1bd8e34f42d291d786ca2df13628b488f88de1
42c8dda7c482c62654cb6fc50b584bd426aef66802e7ea6665b7241c985f41bc
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request with Possible COVID-19 URI M2
GET /news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=420
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self' https://cms.scrippsdigital.com
Date: Wed, 01 Feb 2023 22:03:42 GMT
Server: N/A
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Powered-By: Brightspot
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6P9HWDPSOGIwbbqqnPba0KF3EGESLWZ1GPYuuOR5ld4KYYpTnkr8VA==
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1ff74aab442f09fcaad69b961f34050b
dce6b1606d9f84c107dda78b54575db0abc2f58f
c52c37fd5e4c15f34a0aec3c57639ca95e1914937858d2d6fbff16530ae0cedb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 911
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:43 GMT
Last-Modified: Wed, 01 Feb 2023 21:48:32 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1ff74aab442f09fcaad69b961f34050b
dce6b1606d9f84c107dda78b54575db0abc2f58f
c52c37fd5e4c15f34a0aec3c57639ca95e1914937858d2d6fbff16530ae0cedb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 911
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:43 GMT
Last-Modified: Wed, 01 Feb 2023 21:48:32 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
use.typekit.net/tsu4adm.css
23.36.76.122200 OK 1.7 kB URL HTTP/2 use.typekit.net/tsu4adm.css
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 45ae8ddfb37f7b1c038cc6416b571a8a
4be8567782fa7f363ec8e0f63a7807aa51da1573
4e586a19177aa147a7155e54709aea92574363a049f3292bd3e5128a3980c7eb
GET /tsu4adm.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 1740
date: Wed, 01 Feb 2023 22:03:43 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.149.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:43 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Tue, 31 Jan 2023 02:45:54 GMT
etag: 0x8DB033545CD6338
x-ms-request-id: bec856a9-201e-0167-71d1-352d14000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 12314
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792dfa8e4e16fab8-OSL
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=tsu4adm&ht=tk&f=137.138.139.140.169.170.171.172.175.176.141.142.143.144.147.148.151.152.153.154.155.156.157.160.161.162.165.166.167.168&a=15199297&app=typekit&e=css
23.36.76.122200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=tsu4adm&ht=tk&f=137.138.139.140.169.170.171.172.175.176.141.142.143.144.147.148.151.152.153.154.155.156.157.160.161.162.165.166.167.168&a=15199297&app=typekit&e=css
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=tsu4adm&ht=tk&f=137.138.139.140.169.170.171.172.175.176.141.142.143.144.147.148.151.152.153.154.155.156.157.160.161.162.165.166.167.168&a=15199297&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:43 GMT
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 21:49:05 GMT
age: 878
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ewscripps.brightspotcdn.com/resource/00000185-e51e-d575-a3ad-f7bf68330000/styleguide/All.min.1e823b4c67d3b34bbaf82212958d0183.gz.css
54.230.111.53200 OK 21 kB URL HTTP/1.1 ewscripps.brightspotcdn.com/resource/00000185-e51e-d575-a3ad-f7bf68330000/styleguide/All.min.1e823b4c67d3b34bbaf82212958d0183.gz.css
IP 54.230.111.53:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 63dc8d15009425bdf7d94a6bffe0162c
d767293b270911644161de8f6ba54ad741746761
f085a8067ee0cb48afb4ac2f8acc3e0186b3b6c8e9d93f049ad851fdba652e18
GET /resource/00000185-e51e-d575-a3ad-f7bf68330000/styleguide/All.min.1e823b4c67d3b34bbaf82212958d0183.gz.css HTTP/1.1
Host: ewscripps.brightspotcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 21252
Connection: keep-alive
Date: Tue, 24 Jan 2023 18:50:58 GMT
Last-Modified: Tue, 24 Jan 2023 18:50:55 GMT
ETag: "63dc8d15009425bdf7d94a6bffe0162c"
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n19MmVnZXk5pU7lDa7CFPM6TGn0i9zOR-TYu1VfFOl53JJaG4ixKlg==
Age: 702766
ewscripps.brightspotcdn.com/resource/00000185-e51e-d575-a3ad-f7bf68330000/styleguide/All.min.095b19a9593893b120b4626364e057de.gz.js
54.230.111.53200 OK 105 kB URL HTTP/1.1 ewscripps.brightspotcdn.com/resource/00000185-e51e-d575-a3ad-f7bf68330000/styleguide/All.min.095b19a9593893b120b4626364e057de.gz.js
IP 54.230.111.53:0
File type Unicode text, UTF-8 text, with very long lines (32011), with LF, NEL line terminators
Size 105 kB (104861 bytes)
Hash a54d4386d6c47df974eb8c9ec32feb42
bbdac1e9c8dcde6d215c70b56bed5e8d8b0df16c
a016b0ac806267ac177e1f11b8d5b32221de18332a1c522ce3f2582502fb8e04
GET /resource/00000185-e51e-d575-a3ad-f7bf68330000/styleguide/All.min.095b19a9593893b120b4626364e057de.gz.js HTTP/1.1
Host: ewscripps.brightspotcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 104861
Connection: keep-alive
Date: Tue, 24 Jan 2023 18:50:58 GMT
Last-Modified: Tue, 24 Jan 2023 18:50:56 GMT
ETag: "a54d4386d6c47df974eb8c9ec32feb42"
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SxE1AmArYkxFqxgOc1BiuBHOXUe1VcB9qdk0Jos1UgZkFRwj6P8cWA==
Age: 702766
www.turnto23.com/styleguide/assets/Blank.gif
54.230.111.120200 OK 57 B URL HTTP/1.1 www.turnto23.com/styleguide/assets/Blank.gif
IP 54.230.111.120:0
File type GIF image data, version 87a, 16 x 9\012- data
Hash 38461a487eac6907f06a11ec9ceb4974
b486a0cb7a9bb25e750aafee73673f82a18f14c5
e4447831baf6690d632168390edfd95679cb7b5a09aec2c54d47b0a2343e54aa
GET /styleguide/assets/Blank.gif HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif;charset=UTF-8
Content-Length: 57
Connection: keep-alive
Cache-Control: public, max-age=31536000
Content-Security-Policy: frame-ancestors 'self' https://cms.scrippsdigital.com
Date: Thu, 09 Jun 2022 07:04:34 GMT
Server: N/A
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yAWKbhLxxHrEoZwDYTlaTqM795hGbVCjKFLjxk2owSU9hRC2XCGDAA==
Age: 20530748
ewscripps.brightspotcdn.com/dims4/default/e90eca7/2147483647/strip/true/crop/733x133+0+0/resize/400x73!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2Fcf%2F8e%2Ff028071a44a79debd9d35ae90156%2Fmain-logo.png
54.230.111.53200 OK 9.5 kB URL HTTP/1.1 ewscripps.brightspotcdn.com/dims4/default/e90eca7/2147483647/strip/true/crop/733x133+0+0/resize/400x73!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2Fcf%2F8e%2Ff028071a44a79debd9d35ae90156%2Fmain-logo.png
IP 54.230.111.53:0
File type PNG image data, 400 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash fee596d3415fecdb23ffa6bcc40f8a83
5cf04a49cdbea354f55832594c37501e50f00087
ffb3cbb692a508d81baac2714794cd9f522c1bc8e04dd282c7da81f5d7490e65
GET /dims4/default/e90eca7/2147483647/strip/true/crop/733x133+0+0/resize/400x73!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2Fcf%2F8e%2Ff028071a44a79debd9d35ae90156%2Fmain-logo.png HTTP/1.1
Host: ewscripps.brightspotcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 9527
Connection: keep-alive
Cache-Control: max-age=31536000, public
Date: Wed, 18 Jan 2023 00:27:28 GMT
Edge-Control: downstream-ttl=31536000
ETag: ccf0a05133d576a5cb6e4b69b880a901
Expires: Thu, 18 Jan 2024 00:27:28 GMT
Server: Apache
X-Robots-Tag: nofollow
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NhvyY8eCTY2lTHYNVOozwbc1BHUmXedlQYuBcQdy9CJaaG2WGdGXNw==
Age: 1287375
ewscripps.brightspotcdn.com/dims4/default/c22fc2f/2147483647/strip/true/crop/480x360+0+0/resize/480x360!/format/webp/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F57%2F1c%2F423562e34dad8ad1aa93569024f5%2Fpromo-480x360-1.png
54.230.111.53200 OK 30 kB URL HTTP/1.1 ewscripps.brightspotcdn.com/dims4/default/c22fc2f/2147483647/strip/true/crop/480x360+0+0/resize/480x360!/format/webp/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F57%2F1c%2F423562e34dad8ad1aa93569024f5%2Fpromo-480x360-1.png
IP 54.230.111.53:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 577d11392d4c9d81092fade292b50356
66fabda1977a063ad3f31da4deed2bebe607d0c5
6bf8fed17789aeabff02f60fe14e6af653d322b08b707af9da70080358e879d0
GET /dims4/default/c22fc2f/2147483647/strip/true/crop/480x360+0+0/resize/480x360!/format/webp/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F57%2F1c%2F423562e34dad8ad1aa93569024f5%2Fpromo-480x360-1.png HTTP/1.1
Host: ewscripps.brightspotcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/webp
Content-Length: 29626
Connection: keep-alive
Cache-Control: max-age=31536000, public
Date: Tue, 31 Jan 2023 22:09:23 GMT
Edge-Control: downstream-ttl=31536000
ETag: 750d10f0721ad05eb4b88ef84d868756
Expires: Wed, 31 Jan 2024 22:09:23 GMT
Server: Apache
X-Robots-Tag: nofollow
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5AiqzuDtgauoSvFU7iCgacBSenYgj6kHvtl0z5WSI6L55KpitEm4wg==
Age: 86060
ewscripps.brightspotcdn.com/dims4/default/913ddb1/2147483647/strip/true/crop/1280x720+0+0/resize/1280x720!/format/webp/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F75%2F73%2F1f32d9a242318390e05033ef8aa8%2Fdefault.png
54.230.111.53200 OK 36 kB URL HTTP/1.1 ewscripps.brightspotcdn.com/dims4/default/913ddb1/2147483647/strip/true/crop/1280x720+0+0/resize/1280x720!/format/webp/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F75%2F73%2F1f32d9a242318390e05033ef8aa8%2Fdefault.png
IP 54.230.111.53:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 53111891aad5d7235cc9c8e48e40be8e
0cdb0708d6aee19e876d1e1445a522d482e22fa9
c2f5f8cf7891a0ec68b7c4d100a788f259b3751670ff60c3ca5aa1cd5f91f308
GET /dims4/default/913ddb1/2147483647/strip/true/crop/1280x720+0+0/resize/1280x720!/format/webp/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F75%2F73%2F1f32d9a242318390e05033ef8aa8%2Fdefault.png HTTP/1.1
Host: ewscripps.brightspotcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/webp
Content-Length: 35886
Connection: keep-alive
Cache-Control: max-age=31536000, public
Date: Sun, 22 Jan 2023 21:38:46 GMT
Edge-Control: downstream-ttl=31536000
ETag: b2f21bcf68d8e879281cbe3abbe6ad27
Expires: Mon, 22 Jan 2024 21:38:46 GMT
Server: Apache
X-Robots-Tag: nofollow
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J--yMNNqMw_LO4THKsuEjYZjOmOEJUaf5DBMK0zVUzVwt5AS6-Gx5Q==
Age: 865497
ewscripps.brightspotcdn.com/dims4/default/9c70568/2147483647/strip/true/crop/1440x1440+560+0/resize/300x300!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F89%2F83%2Fdded7fc54928b97316b13e17f2b3%2Fgeneric-graphic-3-auto-x2.png
54.230.111.53200 OK 503 B URL HTTP/1.1 ewscripps.brightspotcdn.com/dims4/default/9c70568/2147483647/strip/true/crop/1440x1440+560+0/resize/300x300!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F89%2F83%2Fdded7fc54928b97316b13e17f2b3%2Fgeneric-graphic-3-auto-x2.png
IP 54.230.111.53:0
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
GET /dims4/default/9c70568/2147483647/strip/true/crop/1440x1440+560+0/resize/300x300!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F89%2F83%2Fdded7fc54928b97316b13e17f2b3%2Fgeneric-graphic-3-auto-x2.png HTTP/1.1
Host: ewscripps.brightspotcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 111246
Connection: keep-alive
Cache-Control: max-age=31536000, public
Date: Tue, 24 Jan 2023 16:07:51 GMT
Edge-Control: downstream-ttl=31536000
ETag: c9e017e64e549f54d9a6e7ea4b9ce71a
Expires: Wed, 24 Jan 2024 16:07:52 GMT
Server: Apache
X-Robots-Tag: nofollow
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cC2r0xaf691dKtOzSwJC5lTUtEcEcc25ftUSoFcpWbHU30CnoNJc2A==
Age: 712551
cdn.cookielaw.org/consent/4e2c2eed-09df-4b77-a788-1f351b30c8ed/4e2c2eed-09df-4b77-a788-1f351b30c8ed.json
104.16.149.64200 OK 1.1 kB URL HTTP/2 cdn.cookielaw.org/consent/4e2c2eed-09df-4b77-a788-1f351b30c8ed/4e2c2eed-09df-4b77-a788-1f351b30c8ed.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (2599), with no line terminators
Hash 07b7981d55529cd3a5a3a477c446cc67
8de6bfb2af1811bc3d6d3ec9368616ecd57f6001
5560fd53fe888a69c1584cff1d19b135f73e27214a14c90ea935b36dfdf364cf
GET /consent/4e2c2eed-09df-4b77-a788-1f351b30c8ed/4e2c2eed-09df-4b77-a788-1f351b30c8ed.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:43 GMT
content-type: application/x-javascript
content-length: 1134
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: B7eYHVVSnNOlo6R3xEbMZw==
last-modified: Thu, 18 Mar 2021 14:42:07 GMT
etag: 0x8D8EA1C01577C6C
x-ms-request-id: 14e86b50-601e-004d-344f-ca1e04000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 14598
expires: Thu, 02 Feb 2023 22:03:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792dfa8fdf9ffab8-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n4&v=3
23.36.76.122200 OK 17 kB URL HTTP/2 use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 16560, version 1.0\012- data
Hash 21776237ce9fa23dd98ad23252d6a3fa
bedf8f707c96c0cdb609c652828e797dcd214308
b4096925f34c85d0c0e934ad77c44165dcd66fecc354c153784d246f00911da5
GET /af/efe4a5/00000000000000007735e609/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16560
etag: "ef52ad3657e4d4a42c21db6c00d5c7ccc649bc94"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 22:03:44 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f5d07e28837968507023f936255ac97c
1770de659a96a07328e4bd3309d3aee61ce0fac2
f429b4b9bf2dbd4cf65911120aca6175271c0bb7d780602ab7962e519ca0c5a5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 22:03:44 GMT
Last-Modified: Wed, 01 Feb 2023 21:35:52 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gORYh1BMTjZ03Bd5MwDzW1v4hh5hsfz4iHU6AI8PqH42Vy4SloxIQw==
Age: 1673
use.typekit.net/af/8738d8/00000000000000007735e611/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n8&v=3
23.36.76.122200 OK 17 kB URL HTTP/2 use.typekit.net/af/8738d8/00000000000000007735e611/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n8&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 16880, version 1.0\012- data
Hash 6a1d05018e31f55e279ffe04ec9ea9c1
0c2fb9790414353667bf93757473893fbe404e2a
5d8f24de649d274c051960845b51a0407362d6b4c80de23985e648d3378708f5
GET /af/8738d8/00000000000000007735e611/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n8&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16880
etag: "a5565f97e4389f39e94f7880b2c8088023e4d88a"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 22:03:44 GMT
X-Firefox-Spdy: h2
assets.scrippsdigital.com/cms/images/logo-scripps.png
54.230.111.9200 OK 3.5 kB URL HTTP/1.1 assets.scrippsdigital.com/cms/images/logo-scripps.png
IP 54.230.111.9:0
File type PNG image data, 34 x 34, 8-bit/color RGB, non-interlaced\012- data
Hash f46791d665054bf21da09492d448e1d2
4b6a560aa122c68836e61beb63ea8c0a6d1366d4
d66c157e60a88623fc6bb87393d303096b3a2db235ad33c1cdb80ed71ee38c42
GET /cms/images/logo-scripps.png HTTP/1.1
Host: assets.scrippsdigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3532
Connection: keep-alive
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 23 Oct 2017 14:04:11 GMT
x-amz-version-id: 8lNexGmb6tKD4SPVOeXslwnzBtFWYJoV
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 01 Feb 2023 04:26:55 GMT
ETag: "f46791d665054bf21da09492d448e1d2"
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xvSyEc1ln64M2KQaQthAH_ena9uHKTdqEeK_vqQevMKjJby4b5TVXQ==
Age: 84010
use.typekit.net/af/2555e1/00000000000000007735e603/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n7&v=3
23.36.76.122200 OK 17 kB URL HTTP/2 use.typekit.net/af/2555e1/00000000000000007735e603/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 16832, version 1.0\012- data
Hash 99cfcab4e91c1bc97731bcfe27ac5b29
740fcbaba11d23a5b9daa66fbd99ed8c4250fe6d
81a6361b1f6ff5f9f6ca05b773fb993d7b7b3f668635ccba4379fa3ecb9a7e3e
GET /af/2555e1/00000000000000007735e603/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16832
etag: "96c7595dad6bb306bf9cc4c7a3b3d28654c7d636"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 22:03:44 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/3322cc/00000000000000007735e616/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=i4&v=3
23.36.76.122200 OK 17 kB URL HTTP/2 use.typekit.net/af/3322cc/00000000000000007735e616/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=i4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 17212, version 1.0\012- data
Hash 133a3f4bada71d50c6dba1e84cd2f86e
89387c1bedc41f76e4234e623eee894b3e06fc52
fdcb74f626ef8f1059c0e3bd503017b8fdda4a54afcc26a4da734f5fd5c7a87a
GET /af/3322cc/00000000000000007735e616/30/l?primer=7fa3915bdafdf03041871920a205bef951d72bf64dd4c4460fb992e3ecc3a862&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17212
etag: "71f986ad2b4d0b6a0e5a056380e0c8c577137ae8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 22:03:44 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-L6JB
172.217.21.168200 OK 50 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-L6JB
IP 172.217.21.168:0
File type ASCII text, with very long lines (16021)
Hash b03674ab9901536cc6795333999cfa20
cef0a797be646b045aa9c727c368f3d842eb028f
42c7111b76adaaf2088354eb73bca52f7c6710ba711e586fe259dcde75dcc06f
GET /gtm.js?id=GTM-L6JB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 22:03:44 GMT
expires: Wed, 01 Feb 2023 22:03:44 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 Feb 2023 21:36:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49683
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.1.0/webfonts/fa-brands-400.woff2
172.64.132.15200 OK 63 kB URL HTTP/2 use.fontawesome.com/releases/v5.1.0/webfonts/fa-brands-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 63376, version 1.0\012- data
Hash f319eac1c755f9929fd856720ce1695e
0a885a5dbd97bd9f4fb1821eb82f2135471faff9
62b5e7ae9e2ed60dcd7cb2e0823dd0884575f2176aff629f2df1e912dfae20e1
GET /releases/v5.1.0/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:44 GMT
content-type: font/woff2
content-length: 63376
x-amz-id-2: eOwsCdC6QiH/BAGqXPLklVEZg88BxGKmUIuoK2ehQB9+J7yy/Wjpn4DqYF2u4eTl66wZi2VaO/A=
x-amz-request-id: K25WZ4Q98PHVR59V
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:30:49 GMT
etag: "f319eac1c755f9929fd856720ce1695e"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2384224
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aQVtS7x9v8IzNig5PQ8Fg3cMCsF7YZoOeS4HwtA5aa3qWK4oUWMADnNdLaBTGLBgBkt%2FTN5Gs0DBXRf%2F5DFEWy05hNAHCSX0eyJpRoWRZN9o03Qg0EaZNjrEpOnEBMnxWPbDeiJ4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792dfa908da224d8-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ewscripps.brightspotcdn.com/dims4/default/6f09cce/2147483647/strip/true/crop/1280x720+0+0/resize/1280x720!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F75%2F73%2F1f32d9a242318390e05033ef8aa8%2Fdefault.png
54.230.111.53200 OK 637 kB URL HTTP/1.1 ewscripps.brightspotcdn.com/dims4/default/6f09cce/2147483647/strip/true/crop/1280x720+0+0/resize/1280x720!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F75%2F73%2F1f32d9a242318390e05033ef8aa8%2Fdefault.png
IP 54.230.111.53:0
File type PNG image data, 1280 x 720, 8-bit/color RGB, non-interlaced\012- data
Size 637 kB (637373 bytes)
Hash 28f16075eae6d5e2549ea9e63d5ecec7
9409e68d61822c797326597f6926280585203729
0104b76c13fddc72cee34137e41900c14863262ac5e4c00d723c0664cc1e86c0
GET /dims4/default/6f09cce/2147483647/strip/true/crop/1280x720+0+0/resize/1280x720!/quality/90/?url=http%3A%2F%2Fewscripps-brightspot.s3.amazonaws.com%2F75%2F73%2F1f32d9a242318390e05033ef8aa8%2Fdefault.png HTTP/1.1
Host: ewscripps.brightspotcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 637373
Connection: keep-alive
Cache-Control: max-age=31536000, public
Date: Sat, 21 Jan 2023 10:26:09 GMT
Edge-Control: downstream-ttl=31536000
ETag: d32808c0e1ed364bc85c5b7084736461
Expires: Sun, 21 Jan 2024 10:26:09 GMT
Server: Apache
X-Robots-Tag: nofollow
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uXw4kNyklI1sMsSw9ONGs3sZEtQtzZbz4f27x19rurrV6uNLM8-zeA==
Age: 992255
use.fontawesome.com/releases/v5.1.0/webfonts/fa-solid-900.woff2
172.64.132.15200 OK 60 kB URL HTTP/2 use.fontawesome.com/releases/v5.1.0/webfonts/fa-solid-900.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 59572, version 1.0\012- data
Hash 18d2347ab2a9f40ca2247cdb03303d84
8aba5b59c5aa7f548a1fa663f02f3cdd3757bb52
a83079124373d924ad1402fbc08d2e24d0043234d4c26565f1c368745f55f5d9
GET /releases/v5.1.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:44 GMT
content-type: font/woff2
content-length: 59572
x-amz-id-2: pW2NJ2FFY/nEDqGZEbNItyWD1+zN7B1nufap7tdPZu3c8yoPKRaoOzDmTxWac5wZZU+BykWcYu2+aTcSWnec0A==
x-amz-request-id: TBDNSA9VXGY2XNZP
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:30:49 GMT
etag: "18d2347ab2a9f40ca2247cdb03303d84"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2384224
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1RNt%2B%2FoD84xyRf9ROBRkdOhZNb0vYJa%2BmxOrXH25JtUtElCtfFovANmG7sfUwlBjp3kloQwUKR7nWE6zmDjwe0%2BceTLZGlTF6qRwZ9Y7k8lcbKKLZJW31KQdKQl%2BB0YbxIN0VBRO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792dfa905d5524d8-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f3d5b74e63d467acf18fa941d23650c2
93cd122d9b982801f2a9f61ebef77a3c28c203cf
4e5efe8ca9374c0c4812f28e44b9eb1f2bcfe9237508f93709d095e535540982
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:44 GMT
Server: ECS (amb/6BB3)
Content-Length: 279
push.services.mozilla.com/
44.226.39.149101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.226.39.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KcV50gEOwjHqPqaEbgoTlQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UyLacVjTVCX293OgRtCE5w39Yt4=
analyticssystems.net/api/v2/client/impression/6d6d25e3-5be4-444b-82ae-a8f0bb892234?rand=779551
172.67.203.105202 Accepted 0 B URL HTTP/2 analyticssystems.net/api/v2/client/impression/6d6d25e3-5be4-444b-82ae-a8f0bb892234?rand=779551
IP 172.67.203.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/impression/6d6d25e3-5be4-444b-82ae-a8f0bb892234?rand=779551 HTTP/1.1
Host: analyticssystems.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Wed, 01 Feb 2023 22:03:44 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: Fz_SfdVPAA6gCysAieoh
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EXZbHpC%2FKEwTle09X18kqSNbXGG3nfScqSSRPJadqPhloB%2FdpDRekqQER4uzmeMhpZxok4i6EAXMXvLwT77TlG2Mg8D1VS8png%2BKbs9HbMfoBghi%2F7GyYK3BRGs%2FdI%2B5Lwaf9%2BF4AQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792dfa916f08b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5218
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:44 GMT
Last-Modified: Wed, 01 Feb 2023 20:36:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
cdn.cookielaw.org/scripttemplates/6.15.0/otBannerSdk.js
104.16.149.64200 OK 84 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.15.0/otBannerSdk.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (65455)
Hash 8abb321c0e12732468696a145137b9c3
14d13668f212d9a781fccebb1a4197087c3d74f3
839ecad0cd04e3532905b6b47ef6551f054296f04809abe2d158bf46edebb305
GET /scripttemplates/6.15.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:44 GMT
content-type: application/javascript
content-length: 84314
content-encoding: gzip
content-md5: irsyHA4ScyRoaWoUUTe5ww==
last-modified: Tue, 23 Mar 2021 01:57:54 GMT
etag: 0x8D8ED9F12F4599F
x-ms-request-id: 1ab7faf1-a01e-003d-466c-c46dc0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 46059
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792dfa92a9a8fab8-OSL
X-Firefox-Spdy: h2
cd.connatix.com/connatix.playspace.js
151.101.66.137302 Found 0 B URL HTTP/2 cd.connatix.com/connatix.playspace.js
IP 151.101.66.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connatix.playspace.js HTTP/1.1
Host: cd.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://cds.connatix.com/p/220094/connatix.playspace.dc.js
accept-ranges: bytes
access-control-max-age: 86400
date: Wed, 01 Feb 2023 22:03:44 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f3d5b74e63d467acf18fa941d23650c2
93cd122d9b982801f2a9f61ebef77a3c28c203cf
4e5efe8ca9374c0c4812f28e44b9eb1f2bcfe9237508f93709d095e535540982
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:44 GMT
Last-Modified: Wed, 01 Feb 2023 22:03:44 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
www.turnto23.com/breaking-news-alerts?_renderer=json
54.230.111.120200 OK 83 kB URL HTTP/1.1 www.turnto23.com/breaking-news-alerts?_renderer=json
IP 54.230.111.120:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 5bcd2f2450e3db69c3afb5990377e6e1
cfcca6450b86552eec61c6594792a1b27c773a9c
9a220e65c4531ad5d7995c877c6cce9b5ce38a749f8b1812f1f54fc78ede0027
GET /breaking-news-alerts?_renderer=json HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
Connection: keep-alive
Cookie: usprivacy=1---
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=420
Content-Security-Policy: frame-ancestors 'self' https://cms.scrippsdigital.com
Date: Wed, 01 Feb 2023 22:02:16 GMT
Server: N/A
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Powered-By: Brightspot
X-Robots-Tag: nofollow
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EbMLaFJy3d4uSmANNqy-4hvp8hnMcOeVkhu9JL5OFlu1oHBlb6VV4Q==
Age: 88
www.turnto23.com/apple-touch-icon.png
54.230.111.120200 OK 7.0 kB URL HTTP/1.1 www.turnto23.com/apple-touch-icon.png
IP 54.230.111.120:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 523837d11ed627e074793b804f422c41
17be31884198ab04ddca900c77aa671509d0c44e
aeb84e09e842aa21b19683ca1d18ae4bffd48e2bb6c3cd9f9b0fbb09c6a760c3
GET /apple-touch-icon.png HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
Cookie: usprivacy=1---
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png;charset=UTF-8
Content-Length: 7044
Connection: keep-alive
Cache-Control: max-age=420
Content-Security-Policy: frame-ancestors 'self' https://cms.scrippsdigital.com
Date: Wed, 01 Feb 2023 22:03:43 GMT
Server: N/A
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZlgRq5dHDWxrXHicqoew7-X1e5K9wTOl2K6w0lemB4ildL-OdUer1Q==
www.turnto23.com/weather/alerts?_renderer=json
54.230.111.120200 OK 83 kB URL HTTP/1.1 www.turnto23.com/weather/alerts?_renderer=json
IP 54.230.111.120:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 344327fcccedb71f5d5bd89d9d26f2b8
058eae706292429103244409d39484783fe86f32
f21e213bd7a467da8ddcd49a66f52c90d7eb1280e74c0d219872a789dd0e3178
GET /weather/alerts?_renderer=json HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
Connection: keep-alive
Cookie: usprivacy=1---
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=420
Content-Security-Policy: frame-ancestors 'self' https://cms.scrippsdigital.com
Date: Wed, 01 Feb 2023 22:02:17 GMT
Server: N/A
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Powered-By: Brightspot
X-Robots-Tag: nofollow
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SuDqrT_ZJD_lKW2T6xSUH38A092Rh4XFGFiJcfVhIzdejoe3JxLwCw==
Age: 87
cdn.cookielaw.org/opt-out/otCCPAiab.js
104.16.149.64200 OK 88 kB URL HTTP/2 cdn.cookielaw.org/opt-out/otCCPAiab.js
IP 104.16.149.64:0
Hash aa2a4baa3b0ea3a5944bf97b194dec63
7bfd2926b23d19ca542a671cde7bcdde0cb8afec
05d815b0203612faae7b000fda53b61697979751194623cb7d47f2632e8de929
GET /opt-out/otCCPAiab.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:43 GMT
content-type: application/javascript
content-md5: ERttG9+iQk1LCPjR495NRw==
last-modified: Tue, 22 Feb 2022 22:01:18 GMT
x-ms-request-id: 00bc8f20-801e-016a-3f39-28c218000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 71203
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792dfa8e5e25fab8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cds.connatix.com/p/220094/connatix.playspace.dc.js
151.101.66.137200 OK 239 kB URL HTTP/2 cds.connatix.com/p/220094/connatix.playspace.dc.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 239 kB (238821 bytes)
Hash 92afc817943aaf82302d98cecfb37c6d
eef7f06719152b39b08fb18bb754b00578f50f70
01b382395479cddea892a49eefc6ecb7f7734ce7da09aef2ff0799bc7ac82604
GET /p/220094/connatix.playspace.dc.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Feb 2023 16:51:43 GMT
etag: "5f5fb31784f8d7ace0ba618ad62144d2"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:44 GMT
age: 18477
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 238821
X-Firefox-Spdy: h2
ads.rubiconproject.com/prebid/5776_Scripps_Local_Stations.js
104.110.14.155200 OK 471 B URL HTTP/2 ads.rubiconproject.com/prebid/5776_Scripps_Local_Stations.js
IP 104.110.14.155:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
GET /prebid/5776_Scripps_Local_Stations.js HTTP/1.1
Host: ads.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 19 Jan 2023 22:10:54 GMT
content-encoding: gzip
content-type: text/javascript
content-length: 123009
expires: Wed, 01 Feb 2023 22:03:44 GMT
date: Wed, 01 Feb 2023 22:03:44 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/4e2c2eed-09df-4b77-a788-1f351b30c8ed/4d0b06d0-30ab-434a-8856-1c08f337ac57/en.json
104.16.149.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/consent/4e2c2eed-09df-4b77-a788-1f351b30c8ed/4d0b06d0-30ab-434a-8856-1c08f337ac57/en.json
IP 104.16.149.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (59739), with no line terminators
Hash 6d6b6ef6d3e72d7dbf5c4fd3afa535ee
b7ec33cc291c0d0003fb8267286e6347a18a6017
925dd90174f1659f2e5e412647898a93348daa5907a597653e9db6cbf8c65323
GET /consent/4e2c2eed-09df-4b77-a788-1f351b30c8ed/4d0b06d0-30ab-434a-8856-1c08f337ac57/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:44 GMT
content-type: application/x-javascript
content-length: 11459
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: bWtu9tPnLX2/XE/Tr6U17g==
last-modified: Thu, 18 Mar 2021 14:42:12 GMT
etag: 0x8D8EA1C045F7B2D
x-ms-request-id: 97c405ad-b01e-0000-2430-bfd8e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 14595
expires: Thu, 02 Feb 2023 22:03:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792dfa939a2afab8-OSL
X-Firefox-Spdy: h2
api.ewscloud.com/prod/scheduler/v1/com.turnto23/schedules/current/?type=web
54.230.111.69200 OK 0 B URL HTTP/2 api.ewscloud.com/prod/scheduler/v1/com.turnto23/schedules/current/?type=web
IP 54.230.111.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /prod/scheduler/v1/com.turnto23/schedules/current/?type=web HTTP/1.1
Host: api.ewscloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 0
date: Wed, 01 Feb 2023 22:03:44 GMT
x-amzn-requestid: f884725d-83c0-4a30-b216-ff93de99c617
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: frg2HFs0oAMF2-g=
access-control-allow-methods: GET,OPTIONS
x-amzn-trace-id: Root=1-63dae1c0-540710a1267d2d0f4d97bae7
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0vd58PZnmXKTz_al-8fxlBJcQWiA_YEisbgFBVjwM1KEfXsRMwlGbQ==
X-Firefox-Spdy: h2
www.turnto23.com/favicon-16x16.png
54.230.111.120200 OK 637 B URL HTTP/1.1 www.turnto23.com/favicon-16x16.png
IP 54.230.111.120:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 55171691cb01247ce1b7d904df02e0d8
04547f86f0fbf9d7b89f014e156590b128c53c45
2d52a249fc19b6bd4c570bf3751b2db3c8c1bac5dcc684bfd6469e62c5e2ce20
GET /favicon-16x16.png HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
Cookie: usprivacy=1---
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png;charset=UTF-8
Content-Length: 637
Connection: keep-alive
Cache-Control: max-age=420
Content-Security-Policy: frame-ancestors 'self' https://cms.scrippsdigital.com
Date: Wed, 01 Feb 2023 22:03:44 GMT
Server: N/A
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6J9h9EIZif41BA-CoD0rQUk8kGgYYuoVjuyo_VKQon1MYpDIq4xdAw==
cdn.cookielaw.org/scripttemplates/6.15.0/assets/otFlat.json
104.16.149.64200 OK 2.9 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.15.0/assets/otFlat.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (10396)
Hash 1539798a3a2c08c53721cfbef05ff66f
e93c111dd3140a207e84420123f2f0641cf757ab
77ddf93d02893ec61858411a3548a1768801a55b7f289053750ca472b008e320
GET /scripttemplates/6.15.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:44 GMT
content-type: application/json
content-length: 2864
content-encoding: gzip
content-md5: FTl5ijosCMU3Ic++8F/2bw==
last-modified: Tue, 23 Mar 2021 01:57:46 GMT
etag: 0x8D8ED9F0DD0D265
x-ms-request-id: b2bb89fa-f01e-00cb-626e-c44ad6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 14589
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792dfa947abefab8-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.15.0/assets/v2/otPcPanel.json
104.16.149.64200 OK 11 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.15.0/assets/v2/otPcPanel.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (37569)
Hash ac8ddd866109be28d86a75439fb1813a
fe47ea17efebde542c8b14b764322cd890d8e0ba
2386e8c7ca037521f9e39f79995e4d122c0fc173e3bda96a9550e9e4f5bc8902
GET /scripttemplates/6.15.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:44 GMT
content-type: application/json
content-length: 11445
content-encoding: gzip
content-md5: rI3dhmEJvijYanVDn7GBOg==
last-modified: Tue, 23 Mar 2021 01:57:48 GMT
etag: 0x8D8ED9F0F6BE564
x-ms-request-id: b43c8f81-801e-0047-7f1f-57078d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 14589
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792dfa947abffab8-OSL
X-Firefox-Spdy: h2
hbx.media.net/bidexchange.js?cid=8CU6Q6626&version=5.1&dn=www.turnto23.com
23.38.200.22200 OK 108 kB URL HTTP/2 hbx.media.net/bidexchange.js?cid=8CU6Q6626&version=5.1&dn=www.turnto23.com
IP 23.38.200.22:0
Size 108 kB (107686 bytes)
Hash a4eaf5761c4ed1d570104eb692bc1e0a
eaf25a7d7f5e5d62e96966ac258f8cd208fc6ec7
5d19b6ca046d548d8972a6a5fe97f95fb284f7c924c1f48d9e7f63bb7b9433b5
GET /bidexchange.js?cid=8CU6Q6626&version=5.1&dn=www.turnto23.com HTTP/1.1
Host: hbx.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/javascript; charset=utf-8
x-mnet-h: E
strict-transport-security: max-age=86400 ; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1800
expires: Wed, 01 Feb 2023 22:33:44 GMT
date: Wed, 01 Feb 2023 22:03:44 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:57:00 GMT
age: 32804
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4yxwz2MFTdpb8I56VVbFU2Zz0qG_uHcYc3aDtn6boQPjhw7UFLLnYw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 10:37:09 GMT
age: 41195
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 70426
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:27:41 GMT
age: 52563
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4MpUHqMYJoNA7QuRuQwbJIodNkhizq6EL5SPbIoSKFQjtoAKQgLuEg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:42:57 GMT
age: 1247
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71bb87d4-a329-46af-946e-9b5edda7dddb.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71bb87d4-a329-46af-946e-9b5edda7dddb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2419bbbf287e620325438f5620183e32
257963245f14742bf9cd90e71ca748066d5495c3
47c7495be97a81189da17fc3abf430d1f4ecae95fdda30006cc462a4cea4c643
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71bb87d4-a329-46af-946e-9b5edda7dddb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7628
x-amzn-requestid: 29c70d62-ed3a-4c90-8f32-2dc0c1caf5e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcDSnG4RIAMF5eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4b276-0267c928110be13d26906bed;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 05:28:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TYhxCYdYE1eycAY4NW0eFqmjssmfRFIuOXiFfxl0MEO337qQ1aZZ-A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 20:28:04 GMT
age: 5740
etag: "257963245f14742bf9cd90e71ca748066d5495c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.ewscloud.com/prod/scheduler/v1/com.turnto23/schedules/current/?type=web
54.230.111.69200 OK 6.3 kB URL HTTP/2 api.ewscloud.com/prod/scheduler/v1/com.turnto23/schedules/current/?type=web
IP 54.230.111.69:0
File type JSON data\012- , ASCII text
Hash 1c64c844472e50afa0aab3e4f80c4de2
a9b4152330b036b8a1c4e5532e400a1441d5bb59
b8ff5a894254d8060168e048774bc146b53af591cb25b5618b44319b57950c93
GET /prod/scheduler/v1/com.turnto23/schedules/current/?type=web HTTP/1.1
Host: api.ewscloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Authorization: Token bc22df1e0efb4dcb53f2438a4b71da118f05788c
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 6263
date: Wed, 01 Feb 2023 22:03:44 GMT
x-amzn-requestid: 1c7a8f52-c5ef-4f2b-9d4b-59516734cc93
access-control-allow-origin: *
x-amz-apigw-id: frg2KHV3IAMFREg=
x-amzn-trace-id: Root=1-63dae1c0-1881a89300e83af232d56ac8
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E7TMVDXcyu2cZ8-tLYbMovmvmNvjzg7zzUolvmtU1hmGgQXWrJiZNQ==
X-Firefox-Spdy: h2
cds.connatix.com/p/220094/connatix.playspace.css
151.101.66.137200 OK 15 kB URL HTTP/2 cds.connatix.com/p/220094/connatix.playspace.css
IP 151.101.66.137:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 75e306816b131688397fe40d8b1416d9
a1b369b95f18cba0eba43a5a55b1b7233789da4e
21ba3c631aa00e73ddd2b93832b91a8e929f8dc4dc63cab47a3ac62c48f15975
GET /p/220094/connatix.playspace.css HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Feb 2023 16:51:43 GMT
etag: "bb9b687951c8b534bba30208c6548861"
content-type: text/css
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:44 GMT
age: 18479
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 15247
X-Firefox-Spdy: h2
widgets.outbrain.com/outbrain.js
23.38.201.81200 OK 76 kB URL HTTP/2 widgets.outbrain.com/outbrain.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (1595)
Hash 5aa51a59895f13f82a68e6938e631896
cbcf83a5b244db53ca17e58a0d6e6040e7921e99
49c5a4a50e187312261a12991979b8edb53acc49f59587cc8d94307983fc375e
GET /outbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 76269
x-traceid: 489c766ed12ea11236b47ee65475af2c
etag: "16-wHLFRv4kYDwbxETANWhVwyofEag"
last-modified: Wed, 01 Feb 2023 13:36:31 GMT
cache-control: max-age=14400
content-encoding: gzip
vary: Accept-Encoding
date: Wed, 01 Feb 2023 22:03:44 GMT
edge-cache-tag: widget-cheetah
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
hblg.media.net/log?logid=kfk&evtid=flog&itype=HB&tElp=16&adt=desktop&cid=8CU6Q6626&ct=OSLO&cc=NO&ugd=4&app=0&pht=939&pid=8PRL4E7N3&dn=turnto23.com&servname=ssp-serving-d75ffb89-2d9pm&svr=020113_520_013113_498_ssp&sc=&version=4&vh=939&vw=1280&vsid=&vid=00001675289048226015326356484939&sspAbBucket=CONTROL&lw=1&dapp=green&itypeid=1&sd=1&adbd=0&npa=0&gdpr_enf=1&csex=0&gdfstr=Y-N&gdpr=1&csstr=&tcf_cmp=&tcf_status=&tcf_prp=&suc=0&tcf_api=0&usp_enf=1&usp_status=0&usp_ldf=&usp_string=&ufca=-1&coppa_status=&coppa_applied=&id_details=&abte=SSP_CLIENT&rtype=&lbr=1&mnkv=&pabte=&pc=&ccat=&floc_id=&floc_ver=&gfundl=700>d=&inid=&ngfundl=1000&rdl=700&a=0&r=209&lper=1&requrl=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&kwrf=
23.38.200.22200 OK 35 B URL HTTP/2 hblg.media.net/log?logid=kfk&evtid=flog&itype=HB&tElp=16&adt=desktop&cid=8CU6Q6626&ct=OSLO&cc=NO&ugd=4&app=0&pht=939&pid=8PRL4E7N3&dn=turnto23.com&servname=ssp-serving-d75ffb89-2d9pm&svr=020113_520_013113_498_ssp&sc=&version=4&vh=939&vw=1280&vsid=&vid=00001675289048226015326356484939&sspAbBucket=CONTROL&lw=1&dapp=green&itypeid=1&sd=1&adbd=0&npa=0&gdpr_enf=1&csex=0&gdfstr=Y-N&gdpr=1&csstr=&tcf_cmp=&tcf_status=&tcf_prp=&suc=0&tcf_api=0&usp_enf=1&usp_status=0&usp_ldf=&usp_string=&ufca=-1&coppa_status=&coppa_applied=&id_details=&abte=SSP_CLIENT&rtype=&lbr=1&mnkv=&pabte=&pc=&ccat=&floc_id=&floc_ver=&gfundl=700>d=&inid=&ngfundl=1000&rdl=700&a=0&r=209&lper=1&requrl=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&kwrf=
IP 23.38.200.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 349909ce1e0bc971d452284590236b09
adfc01f8a9de68b9b27e6f98a68737c162167066
796c46ec10bc9105545f6f90d51593921b69956bd9087eb72bee83f40ad86f90
GET /log?logid=kfk&evtid=flog&itype=HB&tElp=16&adt=desktop&cid=8CU6Q6626&ct=OSLO&cc=NO&ugd=4&app=0&pht=939&pid=8PRL4E7N3&dn=turnto23.com&servname=ssp-serving-d75ffb89-2d9pm&svr=020113_520_013113_498_ssp&sc=&version=4&vh=939&vw=1280&vsid=&vid=00001675289048226015326356484939&sspAbBucket=CONTROL&lw=1&dapp=green&itypeid=1&sd=1&adbd=0&npa=0&gdpr_enf=1&csex=0&gdfstr=Y-N&gdpr=1&csstr=&tcf_cmp=&tcf_status=&tcf_prp=&suc=0&tcf_api=0&usp_enf=1&usp_status=0&usp_ldf=&usp_string=&ufca=-1&coppa_status=&coppa_applied=&id_details=&abte=SSP_CLIENT&rtype=&lbr=1&mnkv=&pabte=&pc=&ccat=&floc_id=&floc_ver=&gfundl=700>d=&inid=&ngfundl=1000&rdl=700&a=0&r=209&lper=1&requrl=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&kwrf= HTTP/1.1
Host: hblg.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
access-control-allow-origin: *
content-length: 35
expires: Wed, 01 Feb 2023 22:03:45 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 01 Feb 2023 22:03:45 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=3295&u=https%3A%2F%2Fwww.turnto23.com
54.230.111.210200 OK 454 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3295&u=https%3A%2F%2Fwww.turnto23.com
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with very long lines (454), with no line terminators
Hash 62e8ad3d0085a5e744683f6f743a42bd
3f1d7885fb441ce2f9f8074674404abe7b0bc360
7bceebd890cb5c1598fa1553fa9db16dd51cb1210b0fe4bfc43dd2d750eafbdd
GET /cdn/prod/config?src=3295&u=https%3A%2F%2Fwww.turnto23.com HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 454
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Wed, 01 Feb 2023 18:00:29 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QMQ52VDHySooE7E7_gxAg9Zfd0POv8aAM7-IatP7PUy0YXsC94Nvxw==
age: 14596
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 01 Feb 2023 21:45:20 GMT
expires: Wed, 01 Feb 2023 23:45:20 GMT
cache-control: public, max-age=7200
age: 1105
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash e3a3be1c110dff3eca66f8ebdb71adcd
84437f72bfec86dec86153d84f54766d37aba9b9
505036f28cd32e8b6f301cfb21c999f904ec84048b92618d4ca8c1f272d8c548
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5488
Cache-Control: max-age=110460
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Etag: "63d9d8cd-2d7"
Expires: Fri, 03 Feb 2023 04:44:45 GMT
Last-Modified: Wed, 01 Feb 2023 03:13:17 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 727
capi.connatix.com/core/story?v=220094
151.101.66.137200 OK 2.9 kB URL HTTP/2 capi.connatix.com/core/story?v=220094
IP 151.101.66.137:0
Hash e68530989c93892873059e78f1722a9e
14581ef07ad1dcc893c241ae486017b8612eaea7
8f66d788c4c2298b73b734249463074ce1dd015b43140d269fe1c5870bf40e86
POST /core/story?v=220094 HTTP/1.1
Host: capi.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 176
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
content-encoding: gzip
content-type: application/x-protobuf
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:45 GMT
vary: Accept-Encoding
access-control-max-age: 86400
content-length: 2936
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.162200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (39375)
Hash 547d65b05c44fc81c52b3598c990cef2
e9a14195456c115d76b272524a1194e9ba934deb
c8f161ca5047c961150ac366698e114022381b97178a8bcf2baed83da11ec83a
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27568
date: Wed, 01 Feb 2023 22:03:45 GMT
expires: Wed, 01 Feb 2023 22:03:45 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1470 / 716 of 1000 / last-modified: 1675253181"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.sitescout.com/iap/88f2a0fd9298a35d
98.98.134.243302 Found 0 B URL HTTP/2 pixel.sitescout.com/iap/88f2a0fd9298a35d
IP 98.98.134.243:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iap/88f2a0fd9298a35d HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
set-cookie: ssi=8ece2d6e-2f9d-4562-a07a-9bea48ccc573#1675289025139; Domain=.sitescout.com; Expires=Thu, 01-Feb-2024 22:03:45 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/iap/88f2a0fd9298a35d?cookieQ=1
content-length: 0
date: Wed, 01 Feb 2023 22:03:44 GMT
server: AC1.1
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash eabe4f6a931b2207a47bbc8dc095170e
4d760a0bf6a7622f0bdef11fb01def3a9d457095
4a5f09c963ed6c4b50c86d4510c862ed08c1d0701d6c481da2d0710acafbb19e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A5F09C963ED6C4B50C86D4510C862ED08C1D0701D6C481DA2D0710ACAFBB19E"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3985
Expires: Wed, 01 Feb 2023 23:10:10 GMT
Date: Wed, 01 Feb 2023 22:03:45 GMT
Connection: keep-alive
connect.facebook.net/en_US/sdk.js?hash=096ecd72a1fd8f80ee0b23b1bbc47fb6
157.240.205.11200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=096ecd72a1fd8f80ee0b23b1bbc47fb6
IP 157.240.205.11:0
File type ASCII text, with very long lines (17777)
Hash cb385638ceba621c636a3c2cfcb83bec
6918cdceacf9aeddd0314eb687596dbcc5146ee1
aaf16840f8a861df931e5bf50a9d6c56c3361d9e2426563f6dfc223d8d44cf11
GET /en_US/sdk.js?hash=096ecd72a1fd8f80ee0b23b1bbc47fb6 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: da654ce7f8e0e5cbb38320a6a103579d
etag: "11069736dccee9b4a4ed2ef5e1dfc8d1"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 01 Feb 2024 21:02:51 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: yzhWOM66Yhxjajws/Lg77A==
x-fb-debug: GNyhOrZa5zAqUHJhS4GovpgDeT/vzpe+bf3FEpnoaA/WVbB8MuBKKjY+LvvXPt2iMyTDNbZyO0d0Jwrh9IB+EQ==
priority: u=3,i
content-length: 88415
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 22:03:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.turnto23.com/weather?_renderer=json
54.230.111.120200 OK 126 kB URL HTTP/1.1 www.turnto23.com/weather?_renderer=json
IP 54.230.111.120:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size 126 kB (126054 bytes)
Hash 60e662cb36648900302f5a08731cc785
25a1eb646663d8bfadff4a237ef9f7dc9548d8f5
47b8931fece16e1f51080c58535218620247c6e7b90f852d0362b3e0cbac6fd0
GET /weather?_renderer=json HTTP/1.1
Host: www.turnto23.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/news/coronavirus/western-dental-golden-state-drilling-and-finish-line-issue-warn-letters
Connection: keep-alive
Cookie: usprivacy=1---
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=420
Content-Security-Policy: frame-ancestors 'self' https://cms.scrippsdigital.com
Date: Wed, 01 Feb 2023 22:03:44 GMT
Server: N/A
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Powered-By: Brightspot
X-Robots-Tag: nofollow
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZNwPWXHssdW0isFG9SOXvzIED86l9jiaLobtkcmsa0idCIuZKynNCQ==
p1.parsely.com/plogger/?rand=1675289047750&plid=44484659&idsite=turnto23.com&url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&urlref=&screen=1280x1024%7C1280x1002%7C24&data=%7B%7D&sid=1&surl=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sref=&sts=1675289047746&slts=0&title=Western+Dental%2C+Golden+State+Drilling%2C+and+Finish+Line+issue+WARN+letters&date=Wed+Feb+01+2023+22%3A04%3A07+GMT%2B0000+(Coordinated+Universal+Time)&action=pageview&pvid=42678168&u=pid%3Db1bf21611ebd9d69c5c838ba54d403fd
63.34.81.234200 OK 43 B URL HTTP/1.1 p1.parsely.com/plogger/?rand=1675289047750&plid=44484659&idsite=turnto23.com&url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&urlref=&screen=1280x1024%7C1280x1002%7C24&data=%7B%7D&sid=1&surl=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sref=&sts=1675289047746&slts=0&title=Western+Dental%2C+Golden+State+Drilling%2C+and+Finish+Line+issue+WARN+letters&date=Wed+Feb+01+2023+22%3A04%3A07+GMT%2B0000+(Coordinated+Universal+Time)&action=pageview&pvid=42678168&u=pid%3Db1bf21611ebd9d69c5c838ba54d403fd
IP 63.34.81.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /plogger/?rand=1675289047750&plid=44484659&idsite=turnto23.com&url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&urlref=&screen=1280x1024%7C1280x1002%7C24&data=%7B%7D&sid=1&surl=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sref=&sts=1675289047746&slts=0&title=Western+Dental%2C+Golden+State+Drilling%2C+and+Finish+Line+issue+WARN+letters&date=Wed+Feb+01+2023+22%3A04%3A07+GMT%2B0000+(Coordinated+Universal+Time)&action=pageview&pvid=42678168&u=pid%3Db1bf21611ebd9d69c5c838ba54d403fd HTTP/1.1
Host: p1.parsely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:03:45 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Wednesday, 01-Feb-2023 22:03:45 GMT
Cache-Control: no-cache
widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
23.38.201.81200 OK 43 B URL HTTP/2 widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
IP 23.38.201.81:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /widget/detect/px.gif?ch=1 HTTP/1.1
Host: widget-pixels.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 43
content-type: image/gif
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3:1601475749.911431"
last-modified: Wed, 30 Sep 2020 14:22:29 GMT
server: AkamaiNetStorage
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 22:03:45 GMT
date: Wed, 01 Feb 2023 22:03:45 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010130/module/notOutbrain.js
23.38.201.81200 OK 21 B URL HTTP/2 widgets.outbrain.com/nanoWidget/2010130/module/notOutbrain.js
IP 23.38.201.81:0
File type very short file (no magic)
Hash b9afc501fc43fbea335a2dc5d43263a1
7290a2dd6afbf39ecfc35b52dfb32a38fc222994
d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
GET /nanoWidget/2010130/module/notOutbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "68b329da9893e34099c7d8ad5cb9c940:1675260300.524279"
last-modified: Wed, 01 Feb 2023 13:35:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 21
cache-control: max-age=604800
expires: Wed, 08 Feb 2023 22:03:45 GMT
date: Wed, 01 Feb 2023 22:03:45 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
54.230.111.73200 OK 1.9 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.73:0
File type ASCII text, with very long lines (3936)
Hash ccbe1595614949962ea0f4c9ec84e783
65525e8918223db782724d28fce74efb513a0fb0
f422f26d9197a10abf1a13a13a87a5fcc4b98ad57aae11fadfddf2df02b591f5
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 01:20:12 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YSc0C9v5A5zoedY7KW1SPUvT4JyX90c9Aw849gpEPg9FGjBVy5S0Ng==
age: 74614
X-Firefox-Spdy: h2
sb.scorecardresearch.com/b?c1=2&c2=6036471&cs_it=b3&cv=3.8.0.210223&ns__t=1675289048375&ns_c=UTF-8&c7=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&c8=Western%20Dental%2C%20Golden%20State%20Drilling%2C%20and%20Finish%20Line%20issue%20WARN%20letters&c9=
54.230.111.73204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=2&c2=6036471&cs_it=b3&cv=3.8.0.210223&ns__t=1675289048375&ns_c=UTF-8&c7=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&c8=Western%20Dental%2C%20Golden%20State%20Drilling%2C%20and%20Finish%20Line%20issue%20WARN%20letters&c9=
IP 54.230.111.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=2&c2=6036471&cs_it=b3&cv=3.8.0.210223&ns__t=1675289048375&ns_c=UTF-8&c7=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&c8=Western%20Dental%2C%20Golden%20State%20Drilling%2C%20and%20Finish%20Line%20issue%20WARN%20letters&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 22:03:45 GMT
set-cookie: UID=1E90f0d279046807b5cc9a21675289025; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GfWpuNl0g6-szRhSolmIbkR1ju08ECOqOnRGWzmdYRog8VVuyawB1Q==
X-Firefox-Spdy: h2
tcheck.outbrainimg.com/tcheck/check/d3d3LnR1cm50bzIzLmNvbQ==
23.38.201.176200 OK 15 B URL HTTP/1.1 tcheck.outbrainimg.com/tcheck/check/d3d3LnR1cm50bzIzLmNvbQ==
IP 23.38.201.176:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 529cac05e2a53fd8794eb9e5699d9740
6b22e508bdcfbb35d24e176eefc89179212397a6
39d160e97e2bea07b0cf1c647259ffa4f0bd07069dba4e6c19a22d38b408510f
GET /tcheck/check/d3d3LnR1cm50bzIzLmNvbQ== HTTP/1.1
Host: tcheck.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 15
X-TraceId: 129c0944a61e0a71412c889d968fc73b
ETag: W/"f-ayLlCL3PuzXSThdu78iReSEjl6Y"
Cache-Control: max-age=32501
Expires: Thu, 02 Feb 2023 07:05:26 GMT
Date: Wed, 01 Feb 2023 22:03:45 GMT
Connection: keep-alive
Access-Control-Max-Age: 43200
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&gjid=1356282254&_gid=838370128.1675289048&_u=aGDAiEAjBAAAAGAAI~&z=122112716
173.194.73.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&gjid=1356282254&_gid=838370128.1675289048&_u=aGDAiEAjBAAAAGAAI~&z=122112716
IP 173.194.73.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&gjid=1356282254&_gid=838370128.1675289048&_u=aGDAiEAjBAAAAGAAI~&z=122112716 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.turnto23.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 01 Feb 2023 22:03:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f92b908b158c16edc5e024eb8220ba01
9dd592ed65b3c585c58d9668e4ad2b4fa6706bf9
2b4d2da9d199766bfe0b6eaeab8f622eca60d45b24d401fd5b728e26f88505b3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3853
Cache-Control: max-age=93704
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Etag: "63d99dbc-116"
Expires: Fri, 03 Feb 2023 00:05:29 GMT
Last-Modified: Tue, 31 Jan 2023 23:01:16 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
lit.connatix.com/08d73d33-9bb5-9b21-f035-1721d593115a/blockedDomains_7.bin
151.101.194.137200 OK 101 B URL HTTP/2 lit.connatix.com/08d73d33-9bb5-9b21-f035-1721d593115a/blockedDomains_7.bin
IP 151.101.194.137:0
Hash c66e7bc0ba3aa8943eba7179a309d18d
2d826a6183600e4c464c41a17c0dc66108da7387
9f36edf94631e729e9636e96e7168b872ae4380934a1d0dae9e51c927bbdb5ed
GET /08d73d33-9bb5-9b21-f035-1721d593115a/blockedDomains_7.bin HTTP/1.1
Host: lit.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 04 May 2022 14:04:38 GMT
etag: "07bbfe91d7886a5178aa8cbc65cdd250"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:45 GMT
age: 23615853
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 101
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
odb.outbrain.com/utils/get?url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&idx=0&rand=75071&key=NANOWDGT01&widgetJSId=AR_11&va=true&et=true&format=html&adblck=false&abwl=false&px=154&py=2028&vpd=1089&cw=608&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=L01mc1cK&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpa=1---&ccpaStat=1&chs=1&ogn=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
151.101.86.132200 OK 9.4 kB URL HTTP/2 odb.outbrain.com/utils/get?url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&idx=0&rand=75071&key=NANOWDGT01&widgetJSId=AR_11&va=true&et=true&format=html&adblck=false&abwl=false&px=154&py=2028&vpd=1089&cw=608&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=L01mc1cK&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpa=1---&ccpaStat=1&chs=1&ogn=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
IP 151.101.86.132:0
File type Unicode text, UTF-8 text, with very long lines (37866), with no line terminators
Hash a4a5c7c35f5562191156725a86e9a204
394883c9ba51bb6e348ef63fe3a4d183d4067617
f385cef4bba62cb07124225db1fd6b7afdb228d78adaf2c5071d6e4fdb409a77
GET /utils/get?url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&idx=0&rand=75071&key=NANOWDGT01&widgetJSId=AR_11&va=true&et=true&format=html&adblck=false&abwl=false&px=154&py=2028&vpd=1089&cw=608&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=L01mc1cK&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpa=1---&ccpaStat=1&chs=1&ogn=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters HTTP/1.1
Host: odb.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: 0c565a624254891d73eae0dac708d13e
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 01 Feb 2023 22:03:45 GMT
x-served-by: cache-lga13622-LGA, cache-bma1647-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675289025.387448,VS0,VE145
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, BMA, Europe1
content-length: 9379
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
216.58.207.234200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (2846)
Size 126 kB (125826 bytes)
Hash 6ed42284d9cb14eefc19b7b02d6ead5c
862c3202660ff851c25f023ef6521e261b563ee7
597bf7014b6939cc86e79b26c7b8701731d1bbd71554c6ddbdc15297c8f3f509
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 125826
date: Wed, 01 Feb 2023 22:03:45 GMT
expires: Wed, 01 Feb 2023 22:03:45 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location/dnsfeed
104.18.27.85200 OK 554 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location/dnsfeed
IP 104.18.27.85:0
Hash e89743906e5e9c30f691c15a3cfdbe95
86edb3634bbdb10d79139abe8af708a96d434b93
88b5077c9ffb646ac9b23db29a2af2b6ca35408f18ae13ee3b3ab56e78d42fb0
GET /cookieconsentpub/v1/geo/location/dnsfeed HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:44 GMT
content-type: text/javascript
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 792dfa903be6b4e8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/d5294a77-cb90-4e74-a63a-cb8da9140ef0.bin
151.101.194.137200 OK 1.4 kB URL HTTP/2 vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/d5294a77-cb90-4e74-a63a-cb8da9140ef0.bin
IP 151.101.194.137:0
Hash f685244bf1440700ecb98ffc746d39e1
c55e63a5858211fde3e46ca94af51f9ca4be1a81
c0f8a25d7e6d2e9f3ed1785ed97cc54bed17bf53d8eb88e62b4afe2e32781a0f
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/d5294a77-cb90-4e74-a63a-cb8da9140ef0.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 01 Feb 2023 20:11:49 GMT
etag: "bb18250d770cd4709b4f21da47e8d842"
x-amz-server-side-encryption: AES256
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:45 GMT
age: 6634
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 1355
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash d97d41df365692d7528a21a9fe1e64d3
bfce06741cf4c2edfe36207bdaff6d0ec67b0a3a
3b3457133095f9681071f2376435bf08b1f4e1df9e74dbd089243656bb81ab56
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:03:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 05 Feb 2023 18:31:09 GMT
ETag: "bfce06741cf4c2edfe36207bdaff6d0ec67b0a3a"
Last-Modified: Wed, 01 Feb 2023 18:31:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 784
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792dfa9b0dccb521-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash a17c96761f8218b0b63c6f11079757be
c45a81c3fbb5d91ec1340ced417112c6c655640f
54e2bcc707530e4527ade0911de377a6c71797c60359f5c857127d45c72d3f0d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161850
Date: Wed, 01 Feb 2023 22:03:45 GMT
Etag: "63da9d94-1d7"
Expires: Fri, 03 Feb 2023 19:01:15 GMT
Last-Modified: Wed, 01 Feb 2023 17:12:52 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EUpuYrEBV4QlVFe7ETfDpYdyiMwly42v1Z--NyJ7cwSJ9GRaiYtY2A==
Age: 6503
btloader.com/tag?aax_id=AAX21O2VJ&upapi=true
172.67.70.134302 Found 532 B URL HTTP/2 btloader.com/tag?aax_id=AAX21O2VJ&upapi=true
IP 172.67.70.134:0
Hash 82da9d0185c72e110412409b88787f6b
d8acc59962ed8bfdc389b648b6e5c16b9bd05cf2
4fa252353a91b7b4f5a1ee0cb71505a36e79e8efbd891f47c1a5b5114d05157c
GET /tag?aax_id=AAX21O2VJ&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=3600, must-revalidate
location: /tag?o=5107371200741376&upapi=true
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 1550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ot0Lnrs15trimiNq3GtLLBqOqCmURFAcHZ28tV1adE%2FXvnAkJ91Eu2ga586%2F9frUhLeNIj%2Fy1BadzkCC8mZaDh9p8igpUrS2ZayErY4EaN748Pbfzmr%2BKTXpB4Yg%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792dfa98be161c06-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 307b680f75b781be2e42adf2a615441d
25264885c2afe44a3988f8b81d47575e9597c41f
caba53430996249482ee800add00833818fb58ac5878ca6d07623afc55674c70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6301
Cache-Control: max-age=130354
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Etag: "63da2356-1d7"
Expires: Fri, 03 Feb 2023 10:16:19 GMT
Last-Modified: Wed, 01 Feb 2023 08:31:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 307b680f75b781be2e42adf2a615441d
25264885c2afe44a3988f8b81d47575e9597c41f
caba53430996249482ee800add00833818fb58ac5878ca6d07623afc55674c70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6301
Cache-Control: max-age=130354
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Etag: "63da2356-1d7"
Expires: Fri, 03 Feb 2023 10:16:19 GMT
Last-Modified: Wed, 01 Feb 2023 08:31:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
web.hb.ad.cpe.dotomi.com/cvx/client/hb/ortb/25
63.215.202.146204 No Content 0 B URL HTTP/2 web.hb.ad.cpe.dotomi.com/cvx/client/hb/ortb/25
IP 63.215.202.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cvx/client/hb/ortb/25 HTTP/1.1
Host: web.hb.ad.cpe.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1343
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 01 Feb 2023 22:03:45 GMT
cache-control: no-cache
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 78358d092407ef8288d729d24e4c5354
b8f794bb16cc34445a96eb922d7f6e9a3a08026c
3bbb966cacca297b381e02e74fc7fc5422b5ae48085da5a30006992d24967e70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6038
Cache-Control: max-age=103428
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Etag: "63d9bb2f-1d7"
Expires: Fri, 03 Feb 2023 02:47:33 GMT
Last-Modified: Wed, 01 Feb 2023 01:06:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ewscripps-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=6d52fea8-cd97-40a0-ba8f-4343adeaf388%2Cd5043a9b-d3d0-4517-bf1e-aacb97eb78bf&nocache=1675289048922&us_privacy=1---&aus=728x90%7C300x600%2C300x250&divids=MAD_INVIEW%2CMAD_RIGHT_RAIL&aucs=%252F6088%252Fssp.kero%252Finview-bottom%2C%252F6088%252Fssp.kero%252Fnews%252Fcoronavirus%252Fdetail%2523MAD_RIGHT_RAIL&auid=544041597%2C544041594
35.244.159.8200 OK 79 B URL HTTP/2 ewscripps-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=6d52fea8-cd97-40a0-ba8f-4343adeaf388%2Cd5043a9b-d3d0-4517-bf1e-aacb97eb78bf&nocache=1675289048922&us_privacy=1---&aus=728x90%7C300x600%2C300x250&divids=MAD_INVIEW%2CMAD_RIGHT_RAIL&aucs=%252F6088%252Fssp.kero%252Finview-bottom%2C%252F6088%252Fssp.kero%252Fnews%252Fcoronavirus%252Fdetail%2523MAD_RIGHT_RAIL&auid=544041597%2C544041594
IP 35.244.159.8:0
File type JSON data\012- , ASCII text
Hash e97faf26556726a77d064aefa3cfac2e
8f662fdfbd0b06fc96c55d10f9cf66c5549af281
8ffdf9a8ad0232f6afd904bf0ce2cc8d6d3e11b88f4ea4e5ed60f63c8077aeee
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=6d52fea8-cd97-40a0-ba8f-4343adeaf388%2Cd5043a9b-d3d0-4517-bf1e-aacb97eb78bf&nocache=1675289048922&us_privacy=1---&aus=728x90%7C300x600%2C300x250&divids=MAD_INVIEW%2CMAD_RIGHT_RAIL&aucs=%252F6088%252Fssp.kero%252Finview-bottom%2C%252F6088%252Fssp.kero%252Fnews%252Fcoronavirus%252Fdetail%2523MAD_RIGHT_RAIL&auid=544041597%2C544041594 HTTP/1.1
Host: ewscripps-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: application/json
content-length: 79
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 901d1972a3f8519c45024c85e022f21c
d3506c76a057286477853cf3165a5ff935fdfe46
d543f6087520f9e585e69be328f3e22b34688b6babb1a0ad08d7b8ff5c4f270f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4347
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Last-Modified: Wed, 01 Feb 2023 20:51:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
c2shb.ssp.yahoo.com/bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a96941601797961e0d76292764800c0&cmd=bid&secure=1&us_privacy=1---
35.157.246.167200 OK 80 B URL HTTP/2 c2shb.ssp.yahoo.com/bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a96941601797961e0d76292764800c0&cmd=bid&secure=1&us_privacy=1---
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f9808e07f0ebbc71dfd65fb214f93f7
2260c7439e88979def587cc9f9170d8292eb3731
bea393424d7d1b073629f0b7027aa6817b063bf515ce24f3e527495b4f28e1c0
GET /bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a96941601797961e0d76292764800c0&cmd=bid&secure=1&us_privacy=1--- HTTP/1.1
Host: c2shb.ssp.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: application/json;charset=utf-8
content-length: 80
server: ATS/9.1.10.25
access-control-allow-origin: https://www.turnto23.com
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
set-cookie: A3=d=AQABBMHh2mMCEFvXPTyDn3W4euOebKKrS2MFEgEBAQEz3GPkYwAAAAAA_eMAAA&S=AQAAAl6nntPRVQK6NOASSQl7M_c; Expires=Fri, 2 Feb 2024 04:03:45 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
c2shb.ssp.yahoo.com/bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a969c0301797961d75b629237ad00a9&cmd=bid&secure=1&us_privacy=1---
35.157.246.167200 OK 78 B URL HTTP/2 c2shb.ssp.yahoo.com/bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a969c0301797961d75b629237ad00a9&cmd=bid&secure=1&us_privacy=1---
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash af3be03acfd2cd5617d6aae6308b07c4
a5c405bf537ab3493c9ef6ef986a3636028576b5
441ddf84f4462f6a8e8c665026d0585e52f0ff8cda8234032b34c218f890be18
GET /bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a969c0301797961d75b629237ad00a9&cmd=bid&secure=1&us_privacy=1--- HTTP/1.1
Host: c2shb.ssp.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: application/json;charset=utf-8
content-length: 78
server: ATS/9.1.10.25
access-control-allow-origin: https://www.turnto23.com
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
set-cookie: A3=d=AQABBMHh2mMCEM1cIFte-CycCcOFs07X3TIFEgEBAQEz3GPkYwAAAAAA_eMAAA&S=AQAAAjN3uhAPWTD1FldLVLNAeJY; Expires=Fri, 2 Feb 2024 04:03:45 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ad-delivery.net/px.gif?ch=2
104.26.2.70200 OK 43 B URL HTTP/2 ad-delivery.net/px.gif?ch=2
IP 104.26.2.70:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdvRyQuiKR7vao0d0gZH1fD4TACxVBfdiOoBZcjsTHe5pQD9btOiEjggzyh8C86yatVzyUlYTAFym5Cc073wIsWMUTACWflM
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 26 Jan 2023 22:54:58 GMT
cache-control: public, max-age=86400
age: 518753
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2BtpceD2Pjzj%2FlQ9hCnw0Y0yI7XQuRZKB3nevAPw%2Bh%2F9TdqGuE%2FEHoFhI5xC7ZamnoB8mMrEDW1Afe4oz6DdpJyFOwq3t1bYbEPbu20ccGPe1YnwrbFi%2BXtzqpYfgiR2MA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792dfa9b89540afe-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1ecb087472d343d7ffc15b1657ae7921
dfb1cdf6bb50739ca07591cb9dea7cfd2fe899f6
5b10cad8e4365c5d3ab604ad61ebd87b0d956d4204cd5cc55d92f31593181b3d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 22:03:45 GMT
Last-Modified: Wed, 01 Feb 2023 20:26:58 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: w8f7QnGWIWB2iZi4w3aQM-IVcNA9LZk-j5NOv2ZaqL3t5FiLlGSsYA==
Age: 5807
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 901d1972a3f8519c45024c85e022f21c
d3506c76a057286477853cf3165a5ff935fdfe46
d543f6087520f9e585e69be328f3e22b34688b6babb1a0ad08d7b8ff5c4f270f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4347
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Last-Modified: Wed, 01 Feb 2023 20:51:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1ecb087472d343d7ffc15b1657ae7921
dfb1cdf6bb50739ca07591cb9dea7cfd2fe899f6
5b10cad8e4365c5d3ab604ad61ebd87b0d956d4204cd5cc55d92f31593181b3d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140113
Date: Wed, 01 Feb 2023 22:03:45 GMT
Etag: "63da4eeb-1d7"
Expires: Fri, 03 Feb 2023 12:58:58 GMT
Last-Modified: Wed, 01 Feb 2023 11:37:15 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Af1Y48a4aoiETCrnrM1cDotHWUQpTAv7IBA62CP1PvMNWuqSeCP0wg==
Age: 4903
images.outbrainimg.com/transform/v3/eyJpdSI6IjliMjA4YmI1YmFlOGY4MzE4YzEwNzc4YjQ3ZTZlMzJjZmFhMjhjM2U2ZDEzMThjZjBmZjYwMjM1MDJkMDdhYzMiLCJ3Ijo0MCwiaCI6NDAsImQiOjIuMCwiY3MiOjAsImYiOjJ9.png
23.38.201.176200 OK 894 B URL HTTP/2 images.outbrainimg.com/transform/v3/eyJpdSI6IjliMjA4YmI1YmFlOGY4MzE4YzEwNzc4YjQ3ZTZlMzJjZmFhMjhjM2U2ZDEzMThjZjBmZjYwMjM1MDJkMDdhYzMiLCJ3Ijo0MCwiaCI6NDAsImQiOjIuMCwiY3MiOjAsImYiOjJ9.png
IP 23.38.201.176:0
File type PNG image data, 80 x 80, 8-bit colormap, non-interlaced\012- data
Hash 976469dde0cc11d51bf821cd5d8b33c7
3640a23e854704de5bf3f7dfb180381ccc262902
0612de1012f59521576c23fabb07561be1873c42e96bed7a2cbb2ce21bc365a8
GET /transform/v3/eyJpdSI6IjliMjA4YmI1YmFlOGY4MzE4YzEwNzc4YjQ3ZTZlMzJjZmFhMjhjM2U2ZDEzMThjZjBmZjYwMjM1MDJkMDdhYzMiLCJ3Ijo0MCwiaCI6NDAsImQiOjIuMCwiY3MiOjAsImYiOjJ9.png HTTP/1.1
Host: images.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 894
last-modified: Wed, 19 Oct 2022 15:48:49 GMT
x-traceid: e9f445825aafc71090a970f6f119d0ad
cache-control: max-age=96575
date: Wed, 01 Feb 2023 22:03:45 GMT
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
185.89.210.101200 OK 261 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.210.101:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3411137e3fedfc00ca7fc4bacfb353ac
84bd71e1fd36febc9f9446ef6d9c123fbe4dbc4e
6e6f8b8bdbbf2efc16796061565e46d8f8affe733342c42721704f9899947a5d
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1133
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 01 Feb 2023 22:03:45 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 261
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.turnto23.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 88e9b48b-e66b-4507-9bed-422dc8af12cd
Set-Cookie: icu=ChgIxIZ3EAoYASABKAEwwcPrngY4AUABSAEQwcPrngYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:03:45 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=8674515793379714253; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:03:45 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 953.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3295&u=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&pid=RmkPtYbdznelL&cb=0&ws=1280x939&v=23.127.1625&t=1500&slots=%5B%7B%22sd%22%3A%22MAD_INVIEW%22%2C%22s%22%3A%5B%22728x90%22%5D%7D%2C%7B%22sd%22%3A%22MAD_RIGHT_RAIL%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%5D%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 245 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3295&u=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&pid=RmkPtYbdznelL&cb=0&ws=1280x939&v=23.127.1625&t=1500&slots=%5B%7B%22sd%22%3A%22MAD_INVIEW%22%2C%22s%22%3A%5B%22728x90%22%5D%7D%2C%7B%22sd%22%3A%22MAD_RIGHT_RAIL%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%5D%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 466bc93b4380d650328beb3d4a6602f1
f35b358a494be226cbd6ac96f0dd92e596f7b9d8
af5ced74b1660a7a2aaae1628aee94d23943d9ec4006eef2878216b6e4a116c4
GET /e/dtb/bid?src=3295&u=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&pid=RmkPtYbdznelL&cb=0&ws=1280x939&v=23.127.1625&t=1500&slots=%5B%7B%22sd%22%3A%22MAD_INVIEW%22%2C%22s%22%3A%5B%22728x90%22%5D%7D%2C%7B%22sd%22%3A%22MAD_RIGHT_RAIL%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%5D%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 245
server: Server
date: Wed, 01 Feb 2023 22:03:45 GMT
x-amz-rid: CRBHE8CY5X6RPW91E1ZY
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eqvHLrzNl5I2tdiJ7VnYMzNMKExdJaIPNvUarKFvLujnt0lgkQEJSQ==
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5920
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Last-Modified: Wed, 01 Feb 2023 20:25:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3a24f73634f4c175fcf8afe66522d4c5
b6be0ef8b424d88db88206728b3edfb6e2af45f4
0b3ac603508f11a804d8b65f369965f3f2685378a8e498c7148b541391966736
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 22:03:45 GMT
Last-Modified: Wed, 01 Feb 2023 21:32:55 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uJUgPR6M2Rw6Ihks1sRs3Jny1fCarM7Kh390Gzt-sWl8S3GuER8_rQ==
Age: 1851
ad-delivery.net/px.gif?ch=1&e=0.9841368825281416
104.26.2.70200 OK 43 B URL HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.9841368825281416
IP 104.26.2.70:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.9841368825281416 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdvRyQuiKR7vao0d0gZH1fD4TACxVBfdiOoBZcjsTHe5pQD9btOiEjggzyh8C86yatVzyUlYTAFym5Cc073wIsWMUTACWflM
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 26 Jan 2023 22:54:58 GMT
cache-control: public, max-age=86400
age: 518753
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8jk%2F%2FF9BZ38OxdENjCTw3ZsEzKcX61h0%2B47cIf7KGt%2BnMW2GAVyeAPVzbzob3GkZYkZym9PibO3yU903w%2BdjLmmIdDd33QXM4l7sdJJdUi2LRwsgcj36TnAmNCV2XnrZiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792dfa9bd9930afe-OSL
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
142.250.74.2200 OK 13 kB URL HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 142.250.74.2:0
File type ASCII text, with very long lines (1493)
Hash 0dece4b354fc41d0430994be26247a47
1063c9471665bb53cc9a4e89c4cf0f1e9f695f8d
71a1c1d814cc6c713b3513212be779f944e9b4002e1fb89ac36e438a1a04e4a0
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13109
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 21:14:00 GMT
expires: Wed, 01 Feb 2023 22:14:00 GMT
cache-control: public, max-age=3600
age: 2985
last-modified: Mon, 31 Oct 2022 17:24:37 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/ob_logo_67x12.png
23.38.201.81200 OK 2.3 kB URL HTTP/2 widgets.outbrain.com/images/widgetIcons/ob_logo_67x12.png
IP 23.38.201.81:0
File type PNG image data, 67 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash c52b07e749f7a09fa7b97b7e195e06ce
1ef88a5ee1b625df63c918425400b2a70cb15364
487aec7746a83542b3573383df65747e31c494d8412103b5675329f3d4befaeb
GET /images/widgetIcons/ob_logo_67x12.png HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "c52b07e749f7a09fa7b97b7e195e06ce:1673369415.187551"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 2326
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 22:03:45 GMT
date: Wed, 01 Feb 2023 22:03:45 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/achoice.svg
23.38.201.81200 OK 990 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/achoice.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (990), with no line terminators
Hash 5ab8e16b5f46213840bcd403e349419c
f03f6dc8e2206a94119af76f9a3b3c835390cae7
9ba56f5ffa579747efde1d2a429b325a9fb7220d30f4268e4a44ecbe4a9bf034
GET /images/widgetIcons/achoice.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "5ab8e16b5f46213840bcd403e349419c:1673369393.880194"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 990
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 22:03:45 GMT
date: Wed, 01 Feb 2023 22:03:45 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/tr/sr?v=220094
18.189.204.58200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/sr?v=220094
IP 18.189.204.58:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/sr?v=220094 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 358
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
content-encoding: gzip
content-type: application/x-protobuf
date: Wed, 01 Feb 2023 22:03:45 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
widgets.outbrain.com/nanoWidget/2010130/module/streamFeed.js?e=1
23.38.201.81200 OK 13 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2010130/module/streamFeed.js?e=1
IP 23.38.201.81:0
File type ASCII text, with very long lines (1562)
Hash 50c10af810b8526eccdab87602c87732
bff48d4a8818367a23fa65b7209d7cd98d69c777
28b0b71c2b369fc55b8541c3db7895dab7ad29568fe35b8347a63c29a62e5e0d
GET /nanoWidget/2010130/module/streamFeed.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "ea295cb19472922580bd70418bf9a370:1675260318.840883"
last-modified: Wed, 01 Feb 2023 13:35:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Wed, 08 Feb 2023 22:03:45 GMT
date: Wed, 01 Feb 2023 22:03:45 GMT
content-length: 13243
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bb063466ede638546bcf0d9118f60010
888713f29881410fba6adb75da7dd17ffa5646ae
a3fb848a19e944c1887175dd96797bc923535b0ee569630b8b479d7a3330d84e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3FB848A19E944C1887175DD96797BC923535B0EE569630B8B479D7A3330D84E"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2392
Expires: Wed, 01 Feb 2023 22:43:37 GMT
Date: Wed, 01 Feb 2023 22:03:45 GMT
Connection: keep-alive
web.hb.ad.cpe.dotomi.com/cvx/client/hb/ortb/25
63.215.202.146204 No Content 0 B URL HTTP/2 web.hb.ad.cpe.dotomi.com/cvx/client/hb/ortb/25
IP 63.215.202.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cvx/client/hb/ortb/25 HTTP/1.1
Host: web.hb.ad.cpe.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 956
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 01 Feb 2023 22:03:45 GMT
cache-control: no-cache
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c2shb.ssp.yahoo.com/bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a96941601797961e0d7629232df00aa&cmd=bid&secure=1&us_privacy=1---
35.157.246.167200 OK 79 B URL HTTP/2 c2shb.ssp.yahoo.com/bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a96941601797961e0d7629232df00aa&cmd=bid&secure=1&us_privacy=1---
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 14fffb4ed9adc45771dcf275c6095fd6
b349cd0827d7fdd1a0b825d07ac535a5e363df11
0585efe9e3fb77f6eff92e994e4a8da0fd4c5835fa791a73635ab9de72e881b9
GET /bidRequest?dcn=8a96941601797961e0d76287ae890051&pos=8a96941601797961e0d7629232df00aa&cmd=bid&secure=1&us_privacy=1--- HTTP/1.1
Host: c2shb.ssp.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: application/json;charset=utf-8
content-length: 79
server: ATS/9.1.10.25
access-control-allow-origin: https://www.turnto23.com
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
set-cookie: A3=d=AQABBMHh2mMCELA6IY20gHwVWXzzR5uPmJ8FEgEBAQEz3GPkYwAAAAAA_eMAAA&S=AQAAAobPhqxqtsk2Ycfr05GO2xo; Expires=Fri, 2 Feb 2024 04:03:45 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
216.58.207.230200 OK 104 B URL HTTP/2 ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
IP 216.58.207.230:0
File type MS Windows icon resource - 2 icons, 16x16, 16 colors, 32x32, 16 colors\012- data
Hash 32ac8a9b81788b981a3a7e13c14082d4
fbfd48a2bfe8d4247a975176f88d18c3c2ad1952
00cc7617e054596ff0aaabd8a93a9214dc5304bfe317316022dbf4fb3ea073d2
GET /favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 104
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 15:55:01 GMT
expires: Thu, 02 Feb 2023 15:55:01 GMT
cache-control: public, max-age=86400
age: 22124
last-modified: Tue, 08 May 2012 13:08:06 GMT
content-type: image/x-icon
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s0.2mdn.net/instream/video/client.js
172.217.21.166200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 172.217.21.166:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Wed, 01 Feb 2023 22:03:45 GMT
expires: Wed, 01 Feb 2023 22:03:45 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=5776&site_id=361740&zone_id=1954234&size_id=2&alt_size_ids=55%2C57&us_privacy=1---&rf=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.page=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.domain=turnto23.com&tg_i.aupname=%2F6088%2Fssp.kero%26mad_header&tg_i.pbadslot=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&tk_flint=dmpbjs_v7.31.0&x_source.tid=2ec3c6ac-8928-43a7-a454-a3e946ab7947&l_pb_bid_id=2953f2d120443c18&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&slots=1&rand=0.1089852080638275
213.19.162.41200 OK 528 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=5776&site_id=361740&zone_id=1954234&size_id=2&alt_size_ids=55%2C57&us_privacy=1---&rf=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.page=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.domain=turnto23.com&tg_i.aupname=%2F6088%2Fssp.kero%26mad_header&tg_i.pbadslot=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&tk_flint=dmpbjs_v7.31.0&x_source.tid=2ec3c6ac-8928-43a7-a454-a3e946ab7947&l_pb_bid_id=2953f2d120443c18&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&slots=1&rand=0.1089852080638275
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (528), with no line terminators
Hash 700d9e50b5a11c79dec9ebde54c24587
397e18ff84f7c49748d9ea90180763f6f756a039
249c7065508777582793f0ad50aafc2981df0b00534db182f5cba1b9b1001c87
GET /a/api/fastlane.json?account_id=5776&site_id=361740&zone_id=1954234&size_id=2&alt_size_ids=55%2C57&us_privacy=1---&rf=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.page=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.domain=turnto23.com&tg_i.aupname=%2F6088%2Fssp.kero%26mad_header&tg_i.pbadslot=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&tk_flint=dmpbjs_v7.31.0&x_source.tid=2ec3c6ac-8928-43a7-a454-a3e946ab7947&l_pb_bid_id=2953f2d120443c18&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&slots=1&rand=0.1089852080638275 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Wed, 01 Feb 2023 22:03:46 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDM7TXG7-23-3VL8; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 22:03:45 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|SDziDG3X/EihNRlrBtuo1+9DtVM30fCggXrkegRyN1lGfBWA0qmd2F8ktaCmE+RlA5w0JVL33aKTwFQz9WuEZertw01iAmAx; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 22:03:45 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 528
X-Firefox-Spdy: h2
tlx.3lift.com/header/auction?lib=prebid&v=7.31.0&referrer=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tmax=2000&us_privacy=1---
35.158.173.74200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=7.31.0&referrer=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tmax=2000&us_privacy=1---
IP 35.158.173.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=7.31.0&referrer=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tmax=2000&us_privacy=1--- HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 992
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:46 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-device-memory,sec-ch-save-data,sec-ch-ua-mobile,sec-ch-downlink,user-agent,sec-ch-ect,sec-ch-width,sec-ch-prefers-color-scheme,sec-ch-ua-bitness,sec-ch-ua,sec-ch-ua-arch,sec-ch-rtt,sec-ch-viewport-height,sec-ch-ua-platform,sec-ch-viewport-width,sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-dpr
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ib.adnxs.com/ut/v3/prebid
185.89.210.101200 OK 142 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.210.101:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e9231b2185fc35941a4e2dc4668a80c4
4cb458123ae73e29891c138c106073f64a656393
1cd996eb5fd253821ff0b1cafdc13ec04374f0b621e0da8fc871a080682c3cb7
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 879
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 01 Feb 2023 22:03:46 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 142
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.turnto23.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 26bf9eb5-6ca9-4847-a5f5-c2f67de9177f
Set-Cookie: icu=ChgIxIZ3EAoYASABKAEwwsPrngY4AUABSAEQwsPrngYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:03:46 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=857713218760479058; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:03:46 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 953.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
e.serverbid.com/api/v2
159.89.246.130200 OK 42 B IP 159.89.246.130:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 6b3ea90ae05ba6e3c5cb69e41bd4f3b0
e30d26c37cfb45eb346edb53f9322a672fdb2368
d1f523b2fc3183afb2614ae37c78a70c1a51374882df736654ba9021eee82960
POST /api/v2 HTTP/1.1
Host: e.serverbid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 482
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 10080
content-type: application/json
content-length: 42
content-encoding: gzip
set-cookie: CONSUMABLEID=093ef86b25014b15bef86b25010b15f0; Max-Age=1296000; Expires=Thu, 16 Feb 2023 22:03:46 GMT; Path=/; Domain=.serverbid.com; Secure; SameSite=None
date: Wed, 01 Feb 2023 22:03:45 GMT
X-Firefox-Spdy: h2
tlx.3lift.com/header/auction?lib=prebid&v=7.31.0&referrer=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tmax=2000&us_privacy=1---
35.158.173.74200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=7.31.0&referrer=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tmax=2000&us_privacy=1---
IP 35.158.173.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=7.31.0&referrer=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tmax=2000&us_privacy=1--- HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 650
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:46 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-ua-mobile,sec-ch-save-data,sec-ch-device-memory,sec-ch-dpr,sec-ch-ua-full-version,sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-viewport-width,sec-ch-ua-platform,sec-ch-viewport-height,sec-ch-rtt,sec-ch-ua-arch,sec-ch-ua,sec-ch-ua-bitness,sec-ch-prefers-color-scheme,sec-ch-width,sec-ch-ect,user-agent,sec-ch-downlink
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
e.serverbid.com/api/v2
159.89.246.130200 OK 42 B IP 159.89.246.130:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 6b3ea90ae05ba6e3c5cb69e41bd4f3b0
e30d26c37cfb45eb346edb53f9322a672fdb2368
d1f523b2fc3183afb2614ae37c78a70c1a51374882df736654ba9021eee82960
POST /api/v2 HTTP/1.1
Host: e.serverbid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 644
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 10080
content-type: application/json
content-length: 42
content-encoding: gzip
set-cookie: CONSUMABLEID=bfda48e844d64b3a9a48e844d63b3afd; Max-Age=1296000; Expires=Thu, 16 Feb 2023 22:03:46 GMT; Path=/; Domain=.serverbid.com; Secure; SameSite=None
date: Wed, 01 Feb 2023 22:03:45 GMT
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3295&u=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&pid=RmkPtYbdznelL&cb=1&ws=1280x939&v=23.127.1625&t=1500&slots=%5B%7B%22sd%22%3A%22MAD_HEADER%22%2C%22s%22%3A%5B%22970x250%22%2C%22728x90%22%2C%22970x90%22%2C%22994x30%22%2C%2210x1%22%5D%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 245 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3295&u=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&pid=RmkPtYbdznelL&cb=1&ws=1280x939&v=23.127.1625&t=1500&slots=%5B%7B%22sd%22%3A%22MAD_HEADER%22%2C%22s%22%3A%5B%22970x250%22%2C%22728x90%22%2C%22970x90%22%2C%22994x30%22%2C%2210x1%22%5D%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 51500f8fd0550142e75c669d8cbbe30e
601796f6ddad6756adc053b2fa9c9a3c78b4052d
ee9fcd885006526eaa34fe1672aa7ac104d4424e0c11d8f4a46ab061a4d495a8
GET /e/dtb/bid?src=3295&u=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&pid=RmkPtYbdznelL&cb=1&ws=1280x939&v=23.127.1625&t=1500&slots=%5B%7B%22sd%22%3A%22MAD_HEADER%22%2C%22s%22%3A%5B%22970x250%22%2C%22728x90%22%2C%22970x90%22%2C%22994x30%22%2C%2210x1%22%5D%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 245
server: Server
date: Wed, 01 Feb 2023 22:03:46 GMT
x-amz-rid: QB53JCXKT0NRV0YDJFM7
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SZ60DtfD-gYuvj_gRl9socWDT5ftPzN2g16NGMMUOZCAOq5UF3pI8w==
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=b185bd701d6860aef79a25e5dded2ee0_2980_1675289025479&tm=631&eT=0&widgetWidth=608&widgetHeight=194&widgetX=154&widgetY=2457&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&cheq=0&rtt=366&oo=true&lo=2186&odbreq=2507&odbres=2872&to=1675289046105&chs=1&ab=0&wl=0
64.202.112.95200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=b185bd701d6860aef79a25e5dded2ee0_2980_1675289025479&tm=631&eT=0&widgetWidth=608&widgetHeight=194&widgetX=154&widgetY=2457&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&cheq=0&rtt=366&oo=true&lo=2186&odbreq=2507&odbres=2872&to=1675289046105&chs=1&ab=0&wl=0
IP 64.202.112.95:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=b185bd701d6860aef79a25e5dded2ee0_2980_1675289025479&tm=631&eT=0&widgetWidth=608&widgetHeight=194&widgetX=154&widgetY=2457&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&cheq=0&rtt=366&oo=true&lo=2186&odbreq=2507&odbres=2872&to=1675289046105&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:03:46 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 403d23b318a0d80e11d53d9f0cf69df2
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.131:0
Hash 24cc0c11220c6628fe53a9b1e2bddd24
42ddb023c147decb09e51f322adc9fff6cffc23a
727e6ec413f49c27c58683eb02494f43525b524c2b3327e830a5c29df1b62403
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.131:0
Hash 24cc0c11220c6628fe53a9b1e2bddd24
42ddb023c147decb09e51f322adc9fff6cffc23a
727e6ec413f49c27c58683eb02494f43525b524c2b3327e830a5c29df1b62403
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.btloader.com/pv?tid=JaeIAJJb5X&w=5178607528312832&o=5107371200741376&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sid=E4EJ1Baml&upapi=true
130.211.23.194204 No Content 0 B URL HTTP/2 api.btloader.com/pv?tid=JaeIAJJb5X&w=5178607528312832&o=5107371200741376&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sid=E4EJ1Baml&upapi=true
IP 130.211.23.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=JaeIAJJb5X&w=5178607528312832&o=5107371200741376&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sid=E4EJ1Baml&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Wed, 01 Feb 2023 22:03:46 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.btloader.com/country
130.211.23.194200 OK 16 B IP 130.211.23.194:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 452880c1a375b8fba8c9499f0930d05f
ffe5484a23512c2a574d837fe2d3267b134e48c8
8b3383aa4c71f1d816bfaf33e3ef2e8ded067698a7798b9f306204d5777b140d
GET /country HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Wed, 01 Feb 2023 22:03:46 GMT
content-length: 16
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.131:0
Hash 24cc0c11220c6628fe53a9b1e2bddd24
42ddb023c147decb09e51f322adc9fff6cffc23a
727e6ec413f49c27c58683eb02494f43525b524c2b3327e830a5c29df1b62403
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.ewscloud.com/weathercenter/prod/static/weathericons/daytime/clear.png
54.230.111.4200 OK 2.4 kB URL HTTP/2 static.ewscloud.com/weathercenter/prod/static/weathericons/daytime/clear.png
IP 54.230.111.4:0
File type PNG image data, 150 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f1a98dbc07325a50205519845c81a5d
b93c330bb78f53bf21247dbfc3cd895071de5093
136da57ff927092cc8dd8aa976c27fb4ccb7336781a8d1335e6ed91bd61e50e5
GET /weathercenter/prod/static/weathericons/daytime/clear.png HTTP/1.1
Host: static.ewscloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 2411
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 14:29:44 GMT
x-amz-version-id: WA1mn.UmaUljWGeGqFJwyVbu315cs0BQ
accept-ranges: bytes
server: AmazonS3
date: Wed, 01 Feb 2023 22:03:46 GMT
cache-control: max-age=86400
etag: "2f1a98dbc07325a50205519845c81a5d"
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jYS3iO3uVPnykoadO2aH0WAOQYLbpDIJFGyY0aBKi4dn8aeE950ORw==
age: 127
X-Firefox-Spdy: h2
mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&settings=true&recs=true&widgetJSId=AR_11&key=NANOWDGT01&version=2010130&apv=false&sig=L01mc1cK&format=html&rand=22022&osLang=en-US&seid=null&va=true&et=true&cmpStat=0&ccpa=1---&ccpaStat=1&scrW=1280&scrH=1024&t=YjE4NWJkNzAxZDY4NjBhZWY3OWEyNWU1ZGRlZDJlZTA=&winW=1268&winH=939&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=608&activeTab=true&ogn=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&rw=CR_12&obRecsAbtestVars=1174:3820&chs=1
151.101.86.132200 OK 37 kB URL HTTP/2 mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&settings=true&recs=true&widgetJSId=AR_11&key=NANOWDGT01&version=2010130&apv=false&sig=L01mc1cK&format=html&rand=22022&osLang=en-US&seid=null&va=true&et=true&cmpStat=0&ccpa=1---&ccpaStat=1&scrW=1280&scrH=1024&t=YjE4NWJkNzAxZDY4NjBhZWY3OWEyNWU1ZGRlZDJlZTA=&winW=1268&winH=939&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=608&activeTab=true&ogn=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&rw=CR_12&obRecsAbtestVars=1174:3820&chs=1
IP 151.101.86.132:0
File type Unicode text, UTF-8 text, with very long lines (65522), with no line terminators
Hash 8abdba69e64d3278d80700fd2f1ad12d
aefde24ecf0010b1efce0738837d590afe57c848
eb82ef47bc16e8ba0c4b9ef5194648dca1c2a0be3c6544cacc9ed0c04385f8e6
GET /Multivac/api/get?url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&settings=true&recs=true&widgetJSId=AR_11&key=NANOWDGT01&version=2010130&apv=false&sig=L01mc1cK&format=html&rand=22022&osLang=en-US&seid=null&va=true&et=true&cmpStat=0&ccpa=1---&ccpaStat=1&scrW=1280&scrH=1024&t=YjE4NWJkNzAxZDY4NjBhZWY3OWEyNWU1ZGRlZDJlZTA=&winW=1268&winH=939&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=608&activeTab=true&ogn=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&rw=CR_12&obRecsAbtestVars=1174:3820&chs=1 HTTP/1.1
Host: mv.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: a1adc545914cc58b37ed1c82036a5cf6
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 01 Feb 2023 22:03:46 GMT
x-served-by: cache-lga21963-LGA, cache-bma1647-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675289026.012016,VS0,VE623
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, BMA, Europe1
content-length: 37188
X-Firefox-Spdy: h2
img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/1f642a46-3518-4b3a-906b-4818babdf647.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
151.101.66.137200 OK 16 kB URL HTTP/2 img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/1f642a46-3518-4b3a-906b-4818babdf647.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
IP 151.101.66.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x338, components 3\012- data
Hash 91f705c2cb55481f728603316a648847
dc97433ce79f56d607e66dfe609203514d889cc9
784f8ee1e415d7028429a751ece72881414fe87630311e94d0fc0bcda8ac5795
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/1f642a46-3518-4b3a-906b-4818babdf647.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "8t0EAimY/PK+Ub6av/ehCT3tHyevMz8ZfVZsM2aSOCU"
fastly-io-info: ifsz=362207 idim=1280x720 ifmt=png ofsz=16172 odim=600x338 ofmt=jpeg
fastly-stats: io=1
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6633
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 15555
X-Firefox-Spdy: h2
img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3fa31da6-0c28-4f84-a3fb-8086621ae6af.jpg?crop=600:410,smart&width=600&height=410&format=jpeg&quality=60&fit=crop
151.101.66.137200 OK 28 kB URL HTTP/2 img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3fa31da6-0c28-4f84-a3fb-8086621ae6af.jpg?crop=600:410,smart&width=600&height=410&format=jpeg&quality=60&fit=crop
IP 151.101.66.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x410, components 3\012- data
Hash f2c41d1471cc6b0eb4895b3c0e027e7b
98ceab85fc9efbd34883dcf08b418cdef687cc4c
1a7ce805c8a1978b4482b85d037b12211cf40ac64cf7ea718fd17f57d8ddfd66
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3fa31da6-0c28-4f84-a3fb-8086621ae6af.jpg?crop=600:410,smart&width=600&height=410&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "56hC44THwJDnhdAJieHuH57M4uzG2cnC0e8mfUPY8/Y"
fastly-io-info: ifsz=507700 idim=1280x720 ifmt=png ofsz=28218 odim=600x410 ofmt=jpeg
fastly-stats: io=1
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 27547
X-Firefox-Spdy: h2
img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/4fb9c834-9719-4449-8e8d-4cd7246e723c.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
151.101.66.137200 OK 20 kB URL HTTP/2 img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/4fb9c834-9719-4449-8e8d-4cd7246e723c.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
IP 151.101.66.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x338, components 3\012- data
Hash a8027fa0cfbd2d8d1583b6c9dbd0bdb6
974d47b744cf9c52fdf7b36f79d3becdeffe2ee1
90b98215e8eedd2b77cd86c7be3092f21290c25bab1d5b0962cf050edbece49f
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/4fb9c834-9719-4449-8e8d-4cd7246e723c.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "N/zmuiWGL9EyugByppDRJ4qrFUPXHGa2Le8R7OJq7qc"
fastly-io-info: ifsz=466680 idim=1280x720 ifmt=png ofsz=20850 odim=600x338 ofmt=jpeg
fastly-stats: io=1
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 20200
X-Firefox-Spdy: h2
img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3fa31da6-0c28-4f84-a3fb-8086621ae6af.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
151.101.66.137200 OK 24 kB URL HTTP/2 img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3fa31da6-0c28-4f84-a3fb-8086621ae6af.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
IP 151.101.66.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x338, components 3\012- data
Hash 75a1617c3bec31b0720418dd29a666e1
e71e72755b5c207564858ce810ba833365508e0e
2301005f2079dcffa80123aea14b5dc5b99b8982375b7d4c5ee9697b113cef31
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3fa31da6-0c28-4f84-a3fb-8086621ae6af.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "qMic9Gjeb1b9EJ13mowQWnjiz5nWn+WBRQdhl3rgvck"
fastly-io-info: ifsz=507700 idim=1280x720 ifmt=png ofsz=24747 odim=600x338 ofmt=jpeg
fastly-stats: io=1
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6633
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 24140
X-Firefox-Spdy: h2
img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3d77aa0b-f9fc-46f9-8372-c671b0bd1b7b.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
151.101.66.137200 OK 23 kB URL HTTP/2 img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3d77aa0b-f9fc-46f9-8372-c671b0bd1b7b.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
IP 151.101.66.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x338, components 3\012- data
Hash 696aee5494cc515656aebf6c42c100c3
7a2f35808f2b0e3f4d7d50048eb544c839533997
73edd21cce14295985666a85577674222e91156674370a6a823d18ba6dcff0ef
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/3d77aa0b-f9fc-46f9-8372-c671b0bd1b7b.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "VpnZh/RkclE/HsYRFac8RJutLSmEoYXHbQXB4cLwXMM"
fastly-io-info: ifsz=62676 idim=1280x720 ifmt=jpeg ofsz=23420 odim=600x338 ofmt=jpeg
fastly-stats: io=1
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 22709
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/tr/ao?v=220094
18.189.204.58200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/ao?v=220094
IP 18.189.204.58:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/ao?v=220094 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 373
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
content-encoding: gzip
content-type: application/x-protobuf
date: Wed, 01 Feb 2023 22:03:46 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/aa69cceb-2aff-4f28-b81c-8e484ea1e850.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
151.101.66.137200 OK 23 kB URL HTTP/2 img.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/aa69cceb-2aff-4f28-b81c-8e484ea1e850.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop
IP 151.101.66.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x338, components 3\012- data
Hash 1e245d812d235fa39d1f3296f5b76cf4
9bff6ce9d4fb7860783d0687c6b57435aeac6bd2
1d418164010155698516f2404769e9d20ec169f9808e631354e50b0fd45e0ed1
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/aa69cceb-2aff-4f28-b81c-8e484ea1e850.jpg?crop=600:338,smart&width=600&height=338&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "6d/ihRO840GTnDvxb8WmV8IbWXd69jVBTDGbetxFtuw"
fastly-io-info: ifsz=725748 idim=1280x720 ifmt=png ofsz=24425 odim=600x338 ofmt=jpeg
fastly-stats: io=1
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 23322
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=5776&site_id=361740&zone_id=1954240%3B1954238&size_id=2%3B15&alt_size_ids=%3B10&us_privacy=1---&rf=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.page=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.domain=turnto23.com&tg_i.aupname=%2F6088%2Fssp.kero%26mad_inview%3B%2F6088%2Fssp.kero%26mad_right_rail&tg_i.pbadslot=%2F6088%2Fssp.kero%2Finview-bottom%3B%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&tk_flint=dmpbjs_v7.31.0&x_source.tid=6d52fea8-cd97-40a0-ba8f-4343adeaf388%3Bd5043a9b-d3d0-4517-bf1e-aacb97eb78bf&l_pb_bid_id=14f5ced5dd52d278%3B1565842ba4a552&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6088%2Fssp.kero%2Finview-bottom%3B%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&slots=2&rand=0.9745949257866277
213.19.162.41200 OK 833 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=5776&site_id=361740&zone_id=1954240%3B1954238&size_id=2%3B15&alt_size_ids=%3B10&us_privacy=1---&rf=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.page=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.domain=turnto23.com&tg_i.aupname=%2F6088%2Fssp.kero%26mad_inview%3B%2F6088%2Fssp.kero%26mad_right_rail&tg_i.pbadslot=%2F6088%2Fssp.kero%2Finview-bottom%3B%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&tk_flint=dmpbjs_v7.31.0&x_source.tid=6d52fea8-cd97-40a0-ba8f-4343adeaf388%3Bd5043a9b-d3d0-4517-bf1e-aacb97eb78bf&l_pb_bid_id=14f5ced5dd52d278%3B1565842ba4a552&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6088%2Fssp.kero%2Finview-bottom%3B%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&slots=2&rand=0.9745949257866277
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (833), with no line terminators
Hash 95db9e6920e02199de1f6e49c6e6f4c6
ca5f2af09cf99a23d3a4f159a94310752b55281c
210f159cf713d56f2ffbbd7907602803aed0ad0d5063bfe618cfa4fcfde41581
GET /a/api/fastlane.json?account_id=5776&site_id=361740&zone_id=1954240%3B1954238&size_id=2%3B15&alt_size_ids=%3B10&us_privacy=1---&rf=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.page=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&tg_i.domain=turnto23.com&tg_i.aupname=%2F6088%2Fssp.kero%26mad_inview%3B%2F6088%2Fssp.kero%26mad_right_rail&tg_i.pbadslot=%2F6088%2Fssp.kero%2Finview-bottom%3B%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&tk_flint=dmpbjs_v7.31.0&x_source.tid=6d52fea8-cd97-40a0-ba8f-4343adeaf388%3Bd5043a9b-d3d0-4517-bf1e-aacb97eb78bf&l_pb_bid_id=14f5ced5dd52d278%3B1565842ba4a552&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6088%2Fssp.kero%2Finview-bottom%3B%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&slots=2&rand=0.9745949257866277 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDM7TXDK-4-8KNV; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 22:03:45 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoeoEFGHJgRK+9DtVM30fCggXrkegRyN1lGfBWA0qmd2F8ktaCmE+RlA5w0JVL33aKTwFQz9WuEZertw01iAmAx; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 22:03:45 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDM7TXDK-4-8KNV; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 22:03:45 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoeoEFGHJgRK+9DtVM30fCggXrkegRyN1lGfBWA0qmd2F8ktaCmE+RlA5w0JVL33aKTwFQz9WuEZertw01iAmAx; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 22:03:45 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capi-tier-1-us-east-2.connatix.com/tr/ps?v=220094
18.189.204.58200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/ps?v=220094
IP 18.189.204.58:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/ps?v=220094 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 324
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
content-encoding: gzip
content-type: application/x-protobuf
date: Wed, 01 Feb 2023 22:03:46 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
rock.defybrick.com/placement_invocation?id=65349&idx=0
54.230.111.61200 OK 18 kB URL HTTP/2 rock.defybrick.com/placement_invocation?id=65349&idx=0
IP 54.230.111.61:0
File type ASCII text, with very long lines (49039), with no line terminators
Hash 449a423abeac702cfd7368c5a1ba9822
06ebb32e04680d68e383016ff6b6eb6e326a0a61
4a2f633ca7a84b09da778fcb97cb91163af9ca231efdb0cda7875398c472b040
GET /placement_invocation?id=65349&idx=0 HTTP/1.1
Host: rock.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 18460
content-encoding: gzip
server: Caddy
date: Wed, 01 Feb 2023 15:28:18 GMT
cache-control: max-age=43200
expires: Thu, 02 Feb 2023 03:28:18 GMT
etag: "bf8f-sbLSqLgrhMmD0M6HbtAQ/QtX6WE"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ICz38EktHaxUhp68yZdfoRQELVqPE7FpMsThgAhYsXmXJQJrAwcpFw==
age: 23728
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&_u=aGDAiEAjBAAAAGAAI~&z=1587934455
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&_u=aGDAiEAjBAAAAGAAI~&z=1587934455
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&_u=aGDAiEAjBAAAAGAAI~&z=1587934455 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:03:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&_u=aGDAiEAjBAAAAGAAI~&z=1587934455
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&_u=aGDAiEAjBAAAAGAAI~&z=1587934455
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40538852-1&cid=870203921.1675289048&jid=1573930389&_u=aGDAiEAjBAAAAGAAI~&z=1587934455 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:03:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d9776b04c20f33e49c1c33884dc032f
53a087d768f8832b5bdeaf1100b483c1f1711f3a
e5aa7ac4cb892c5c86b9ea4361a7fda1b8d368d1f050b09454d6563446444d09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4790
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:46 GMT
Last-Modified: Wed, 01 Feb 2023 20:43:56 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
mcdp-nydc1.outbrain.com/l?token=d2a389e678e10587b53aaa47e90e1959_2980_1675289026295&tm=1651&eT=0&widgetWidth=608&widgetHeight=624&widgetX=154&widgetY=2651&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3899&cs=3&to=1675289046105&chs=1&ab=0&wl=0
64.202.112.95200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=d2a389e678e10587b53aaa47e90e1959_2980_1675289026295&tm=1651&eT=0&widgetWidth=608&widgetHeight=624&widgetX=154&widgetY=2651&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3899&cs=3&to=1675289046105&chs=1&ab=0&wl=0
IP 64.202.112.95:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=d2a389e678e10587b53aaa47e90e1959_2980_1675289026295&tm=1651&eT=0&widgetWidth=608&widgetHeight=624&widgetX=154&widgetY=2651&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3899&cs=3&to=1675289046105&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:03:46 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 55bdecfc2a525342e39ef585a2086a35
vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/37965704-c792-46a2-becd-862c5d1f1d87_360_h264.mp4
151.101.194.137206 Partial Content 775 kB URL HTTP/2 vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/37965704-c792-46a2-becd-862c5d1f1d87_360_h264.mp4
IP 151.101.194.137:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 775 kB (774934 bytes)
Hash 4799030ed8b21e41acedc4949afab983
01a665a60d06a024c4e3e3e9077fd4276811cf8b
449d1cec872cf255055cdf2db0a228e37e233d42df6e6d670dc06b24ca292775
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/37965704-c792-46a2-becd-862c5d1f1d87_360_h264.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Wed, 01 Feb 2023 20:10:33 GMT
etag: "1b9a9cc00aba4371511348a30280dcd7"
x-amz-server-side-encryption: AES256
content-type: video/mp4
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-range: bytes 0-1243720/1243721
content-length: 1243721
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=bf22bb9812d21acf4544c6e790e36f0f_2980_1675289026405&tm=1675&eT=0&widgetWidth=608&widgetHeight=780&widgetX=154&widgetY=3275&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3924&cs=3&to=1675289046105&chs=1&ab=0&wl=0
64.202.112.95200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=bf22bb9812d21acf4544c6e790e36f0f_2980_1675289026405&tm=1675&eT=0&widgetWidth=608&widgetHeight=780&widgetX=154&widgetY=3275&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3924&cs=3&to=1675289046105&chs=1&ab=0&wl=0
IP 64.202.112.95:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=bf22bb9812d21acf4544c6e790e36f0f_2980_1675289026405&tm=1675&eT=0&widgetWidth=608&widgetHeight=780&widgetX=154&widgetY=3275&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3924&cs=3&to=1675289046105&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:03:47 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 4a794e676e65d7fd9dc248826f3a2638
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=gg_n-index_rx_n-MediaNet_ox-db5_n-sharethrough_pm-db5_ym_rbd_n-emx_n-vmg_an-db5_sovrn_3lift_n-Outbrain&dcc=t
67.220.224.150200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=gg_n-index_rx_n-MediaNet_ox-db5_n-sharethrough_pm-db5_ym_rbd_n-emx_n-vmg_an-db5_sovrn_3lift_n-Outbrain&dcc=t
IP 67.220.224.150:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=gg_n-index_rx_n-MediaNet_ox-db5_n-sharethrough_pm-db5_ym_rbd_n-emx_n-vmg_an-db5_sovrn_3lift_n-Outbrain&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Wed, 01 Feb 2023 22:03:47 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: VNKH9KR15EV80WPSTY9X
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
g2.gumgum.com/hbid/imp?lt=1675289048912&to=0&aun=MAD_RIGHT_RAIL&gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&t=yvulvcbf&pi=3&maxw=300&maxh=600&si=113250&bf=300x600%2C300x250&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
54.194.82.195200 OK 770 B URL HTTP/2 g2.gumgum.com/hbid/imp?lt=1675289048912&to=0&aun=MAD_RIGHT_RAIL&gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&t=yvulvcbf&pi=3&maxw=300&maxh=600&si=113250&bf=300x600%2C300x250&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
IP 54.194.82.195:0
Hash 8e7f557ad2c2eb6f11aa9454da59dea6
ba4682b01ed0d0395cb144988c0f8ffa3db64692
00ee501672c93cbd93c90254688cc028801f48b5703adc05bab0ce25412dba64
GET /hbid/imp?lt=1675289048912&to=0&aun=MAD_RIGHT_RAIL&gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_RIGHT_RAIL&t=yvulvcbf&pi=3&maxw=300&maxh=600&si=113250&bf=300x600%2C300x250&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:46 GMT
content-type: application/json;charset=UTF-8
server: nginx
cache-control: private, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
set-cookie: cs=true; Domain=.gumgum.com; Expires=Thu, 01 Feb 2024 22:03:45 GMT; Path=/; Secure; SameSite=None
loc=N7qTz27lIInvAtVkW_A2n8IPDSVhUFp5ZtvvLnagCyWgO6qnhr3rsDgpAvQ4k_ILucM2xp01RC01kWvmi96IUASz3YPoPsdndUXuslWRIRkGoJVdhs0Ggw; Domain=.gumgum.com; Expires=Fri, 03 Mar 2023 22:03:45 GMT; Path=/; Secure; SameSite=None
vst=e_ba98d984-fecb-4edb-8513-ad9542f275b1; Domain=.gumgum.com; Expires=Thu, 01 Feb 2024 22:03:45 GMT; Path=/; Secure; SameSite=None
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.turnto23.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.turnto23.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.turnto23.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 01 Feb 2023 22:03:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/rtb/g?v=220094
18.189.204.58200 OK 344 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/rtb/g?v=220094
IP 18.189.204.58:0
Hash 347f8cfafa49ebc94b2d1b5f2347170e
cceb0539bec229665fd5a2e1a6dd4c95022292c3
baefd034585f3fe25d78b21a2440bc29354f16a7d8b7956e5970877fd92afe5d
POST /rtb/g?v=220094 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 943
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
content-encoding: gzip
content-type: application/x-protobuf
date: Wed, 01 Feb 2023 22:03:46 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 344
Connection: keep-alive
adservice.google.com/adsid/integrator.js?domain=www.turnto23.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.turnto23.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.turnto23.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 01 Feb 2023 22:03:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=44fb4a95ebdc864e9bb284724ceb5c92_2980_1675289026512&tm=1680&eT=0&widgetWidth=608&widgetHeight=624&widgetX=154&widgetY=4055&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3929&cs=3&to=1675289046105&chs=1&ab=0&wl=0
64.202.112.95200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=44fb4a95ebdc864e9bb284724ceb5c92_2980_1675289026512&tm=1680&eT=0&widgetWidth=608&widgetHeight=624&widgetX=154&widgetY=4055&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3929&cs=3&to=1675289046105&chs=1&ab=0&wl=0
IP 64.202.112.95:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=44fb4a95ebdc864e9bb284724ceb5c92_2980_1675289026512&tm=1680&eT=0&widgetWidth=608&widgetHeight=624&widgetX=154&widgetY=4055&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=715&oo=true&lo=2186&odbreq=2507&odbres=2872&mvreq=3169&mvres=3887&re=3929&cs=3&to=1675289046105&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:03:47 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: ec695711018372716c35820c2eda8fcc
19f29e026c0d6468ea0ce5d6ee0f3b16.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 19f29e026c0d6468ea0ce5d6ee0f3b16.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 19f29e026c0d6468ea0ce5d6ee0f3b16.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Wed, 01 Feb 2023 22:03:47 GMT
expires: Thu, 01 Feb 2024 22:03:47 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=64701877581095289071995181297668005871775622026221801175206212689156&nc=0&tsf=0&tsfmi=&pv=0&cb=1675289050306&ref=&pit=1&hl=1&op=0&fs=1280x939&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDI3NzZdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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&tsfu=&fst=1280x939&dep=0&cpos=%5B%7B%22x%22%3A154%2C%22y%22%3A2457%2C%22w%22%3A607%2C%22h%22%3A194%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A939%7D%5D&ver=41&cri=gqrnMdt89J&sdd=%7B%7D&pto=4203
50.16.211.97200 OK 1.5 kB URL HTTP/2 flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=64701877581095289071995181297668005871775622026221801175206212689156&nc=0&tsf=0&tsfmi=&pv=0&cb=1675289050306&ref=&pit=1&hl=1&op=0&fs=1280x939&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDI3NzZdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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&tsfu=&fst=1280x939&dep=0&cpos=%5B%7B%22x%22%3A154%2C%22y%22%3A2457%2C%22w%22%3A607%2C%22h%22%3A194%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A939%7D%5D&ver=41&cri=gqrnMdt89J&sdd=%7B%7D&pto=4203
IP 50.16.211.97:0
File type ASCII text, with very long lines (2385), with no line terminators
Hash c1a965f484cac8b83a862d1ad3d5a49f
00975785271d4f215c2611506bcafe53ac3670ec
9d2b3414bd79956d7f81bfa3c59c4b63542dbcc029bd62e8bcf72aaa28430f06
GET /show_pla?id=65349&url=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=64701877581095289071995181297668005871775622026221801175206212689156&nc=0&tsf=0&tsfmi=&pv=0&cb=1675289050306&ref=&pit=1&hl=1&op=0&fs=1280x939&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDI3NzZdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0%0D%0AIl0sWy0yLCI4LElMSFlMQjlCTFRhMkpxUWczRm9lZWwyd1liRTJvZ0JJS0o2Y1IwMDBNSkhRd1lU%0D%0AREdZYWh2M3V0NzFWcFhSOU84K001clZTS3Mxa1BCZS8vOTlzblZKR3BVZFBmZHp6bjNPZmMiXSxb%0D%0ALTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiY29yZVwiLFwi%0D%0AX19jb3JlLWpzX3NoYXJlZF9fXCIsXCJnbG9iYWxcIixcIlN5c3RlbVwiLFwiYXNhcFwiLFwiT2Jz%0D%0AZXJ2YWJsZVwiLFwic2V0SW1tZWRpYXRlXCIsXCJjbGVhckltbWVkaWF0ZVwiLFwicmVnZW5lcmF0%0D%0Ab3JSdW50aW1lXCIsXCJfYmFiZWxQb2x5ZmlsbFwiLFwiU2NyaXBwc0FkTGliXCIsXCJlbnZpcm9u%0D%0AbWVudFwiLFwiZGF5c1NpbmNlUHVibGlzaGVkXCIsXCJkYXRlUHVibGlzaGVkXCIsXCJwdWJsaXNo%0D%0AZWRUaW1lXCIsXCJtb2RpZmllZFRpbWVcIixcImRheXNTaW5jZVwiLFwiZ3RtT2JqXCIsXCJsb2dn%0D%0AZWRJblwiLFwiZ2V0Q29va2llXCIsXCJjYWxsTGV0dGVyc1wiLFwianNUaXRsZVwiLFwianNUYWdz%0D%0AXCIsXCJqc1B1Ymxpc2hEYXRlXCIsXCJqc1VwZGF0ZURhdGVcIixcImpzSXNCcmVha2luZ1wiLFwi%0D%0AanNJc0FsZXJ0XCIsXCJqc0F1dGhvcnNcIixcImpzSGFzVmlkZW9cIixcImpzU2VjdGlvblwiLFwi%0D%0AanNQYWdlVHlwZVwiLFwianNEaXNhYmxlUHJlcm9sbEFkc1wiLFwianNEaXNhYmxlRGlzcGxheUFk%0D%0Ac1wiLFwianNEaXNhYmxlSW5saW5lVmlkZW9BZHNcIixcImpzRm5hbWVcIixcImRhdGFMYXllclwi%0D%0ALFwieDAwXzB4MjFhNFwiLFwieDAwXzB4NWU5N1wiLFwiX1NjYW5uZXJcIixcIm9uUmVhZHlcIixc%0D%0AIk9uZVRydXN0U3R1YlwiLFwiT3B0YW5vbldyYXBwZXJcIixcIl9fdXNwYXBpXCIsXCJ1c1ByaXZh%0D%0AY3lDb29raWVcIixcImdhbW9vXCIsXCJvdENjcGFPcHRPdXRcIixcImRuc2ZlZWRcIixcImRkbHNc%0D%0AIixcImFkc09uUGFnZVwiXSxcIm5cIjpbXCJzYXlzd2hvXCJdLFwiZFwiOltdfSJdLFstNywiLSJd%0D%0ALFstOCwiLSJdLFstOSwiKyJdLFstMTAsIi0iXSxbLTExLCJ7XCJ0XCI6XCJcIixcIm1cIjpbXCJk%0D%0AZXNjcmlwdGlvblwiLFwib2c6dGl0bGVcIixcIm9nOmRlc2NyaXB0aW9uXCIsXCJ0d2l0dGVyOmRl%0D%0Ac2NyaXB0aW9uXCIsXCJ0d2l0dGVyOnRpdGxlXCIsXCJvZzpkZXNjcmlwdGlvblwiLFwiZGVzY3Jp%0D%0AcHRpb25cIixcInBhcnNlbHktdGl0bGVcIl19Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0x%0D%0AMywiLSJdLFstMTQsIntcIm9cIjowLjEzNjk4NjMwMTM2OTg2M30iXSxbLTE1LCItIl0sWy0xNiwi%0D%0AMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQs%0D%0AMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTI4MCw5MzksMCwwLDAsMCxc%0D%0AIi1cIixcIi1cIl0iXSxbLTIwLCI4NzAyMDM5MjEuMTY3NTI4OTA0OCJdLFstMjEsIkwwMW1jMWNL%0D%0AIl0sWy0yMiwiW1wiblwiLFwiblwiXSJdLFstMjMsIisiXSxbLTI0LCJbXSJdLFstMjUsIi0iXSxb%0D%0ALTI2LCItIl0sWy0yNywiLSJdLFstMjgsImVuLVVTLGVuIl0sWy0yOSwie1widlwiOlswLDAsMCww%0D%0ALDAsMCwwLDIsMCwyLDAsMiwwLDAsMCwwLDIsMiwwXX0iXSxbLTMwLCJbXCJ2XCIsMF0iXSxbLTMx%0D%0ALCJmYWxzZSJdLFstMzIsIjIiXSxbLTMzLCItIl0sWy0zNCwiLSJdLFstMzUsIlsxNjc1Mjg5MDUw%0D%0AMjk1LDBdIl0sWy0zNiwiW1wiNS80XCIsXCI1LzRcIl0iXSxbLTM3LCItIl0sWy0zOCwiaSwtMSwt%0D%0AMSwzODgsMCwzOSwwLDEsMTksMzI0LDM5OCwwLCwxMjYxLDQxOTEsNDE5MSJdLFstMzksIltcIjIw%0D%0AMTAwMTAxXCIsMCxcIkdlY2tvXCIsXCJOZXRzY2FwZVwiLFwiTW96aWxsYVwiLFwiMjAxODEwMDEw%0D%0AMDAwMDBcIixudWxsLGZhbHNlLG51bGwsZmFsc2UsbnVsbCwwXSJdLFstNDAsIjM3Il0sWy00MSwi%0D%0ALSJdLFstNDIsIjE3NzAwNTAwODEiXSxbLTQzLCIwMDAwMDAwMTAwMDAwMDAwMDExMTEwMDEwMCJd%0D%0ALFstNDQsIjAsNSwwLDUiXSxbLTQ1LCItIl0sWy00NiwiMCJdLFstNDcsIlVUQyxlbi1VUyxsYXRu%0D%0ALGdyZWdvcnkiXSxbLTQ4LCIwLDAiXSxbLTQ5LCItIl0sWyJibmNoIiw3Ml1d&tsfu=&fst=1280x939&dep=0&cpos=%5B%7B%22x%22%3A154%2C%22y%22%3A2457%2C%22w%22%3A607%2C%22h%22%3A194%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A939%7D%5D&ver=41&cri=gqrnMdt89J&sdd=%7B%7D&pto=4203 HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Wed, 01 Feb 2023 22:03:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 1452
X-Firefox-Spdy: h2
flint.defybrick.com/tracker/imp.gif?e=37dfbd8ee84e00136debc53de347889a9225c24f567d51c5c30f41b0254384cfa532ff1a285aa40e98d022e0b44dc87ea4a36fde4c1b8c682309094d0ba0bfea9475489e91da563e351aff717718956a8b70cd0130003f8101424d3f065cc3bf775d36fa26e877cb55e2cc7ce2586fb01f6f3903d053f054abd1c5d52fe87547ed62d2f1157f841638426f4d99c80666eb73aae2c4ff5f0afe1ccde66ebd7f9e79ce42f85a6af77159a80b431a2cdb5149ff81e8ab20ac6d9362cc12f3507178a9b06e273d7e52952d8f9912e04673f292b127537a3bc6f17b73d0df431c2a4571070aa78f3c162445f1ac163193aaf52b8ee0496e0f6efee7b79e8a74bbdb8d59e2049d5e68629bbd9ae3f13193d9b039c4660dd2abcf2c4a43a2647db4825121b78ce97e9d728625c3f664b73bd69a7fc63f34c0c871d8339781bdfa8beeeb1822a57ee0b8ab785865bbdb6395bc50af5703438b4f50979796dd8dea9220c43cddcee4c479e3733638836d3ad9959c5e2adceb67a011f082008370be6b455b588330b801cac4a030bd8a36c11bebc0cdcd64985e0b6bed551a5d75457b88af6fb20ad0c78b2fb4942af39b20ddcde2ef6c98b7a84a656e84a65043cda10e4a13b4a2a232f12890eb40fda27be33fff6f8759d708c5ea60d5104ce7b28f673d387c002b08400aace18c70cf01b141235f3baba645cde6671ee2aa8da8b66edeffa1ad94f2abed590c69b901d3f42a31c61d214289344f7b28b43efa6a0b81abd3698a2d&cb=1675289050722&cri=gqrnMdt89J
50.16.211.97200 OK 43 B URL HTTP/2 flint.defybrick.com/tracker/imp.gif?e=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&cb=1675289050722&cri=gqrnMdt89J
IP 50.16.211.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/imp.gif?e=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&cb=1675289050722&cri=gqrnMdt89J HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 01 Feb 2023 22:03:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b204f3abe06417a75a9703b1ed69bb37
f636ae39c412c40c3737e9c3c99a5e2e30a7e861
209edba54e970905fc4efd62b8736ef3f5d5021ccb82ea63e7ebfe0baf3e1896
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hbx.media.net/checksync.php?cid=8CU6Q6626&cs=1&cv=37&hb=1&prvid=117%2C59%2C23%2C29%2C71%2C178%2C79%2C2027%2C159%2C2026%2C58%2C3010%2C175%2C294%2C239%2C96%2C54%2C246%2C203%2C3018%2C339%2C38%2C226%2C2034%2C251%2C261%2C106%2C2030%2C3012%2C326%2C141%2C147%2C80%2C97%2C201%2C445%2C108%2C273%2C126%2C3017%2C3016%2C102%2C3007%2C75%2C229&vsSync=1&refUrl=&gdpr=1&gdprconsent=2&gdprstring=&usp_status=0&usp_consent=1&coppa=0
23.38.200.22200 OK 10 kB URL HTTP/2 hbx.media.net/checksync.php?cid=8CU6Q6626&cs=1&cv=37&hb=1&prvid=117%2C59%2C23%2C29%2C71%2C178%2C79%2C2027%2C159%2C2026%2C58%2C3010%2C175%2C294%2C239%2C96%2C54%2C246%2C203%2C3018%2C339%2C38%2C226%2C2034%2C251%2C261%2C106%2C2030%2C3012%2C326%2C141%2C147%2C80%2C97%2C201%2C445%2C108%2C273%2C126%2C3017%2C3016%2C102%2C3007%2C75%2C229&vsSync=1&refUrl=&gdpr=1&gdprconsent=2&gdprstring=&usp_status=0&usp_consent=1&coppa=0
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (25382)
Hash ee87e4bf998e88635d7e35984c07107b
148625b27a54dc7a911c91a91e3d68cf071fecc1
3e430bef3f075a4c10b3fd64f754a075926cb1a4d50df55f58053d35182ab271
GET /checksync.php?cid=8CU6Q6626&cs=1&cv=37&hb=1&prvid=117%2C59%2C23%2C29%2C71%2C178%2C79%2C2027%2C159%2C2026%2C58%2C3010%2C175%2C294%2C239%2C96%2C54%2C246%2C203%2C3018%2C339%2C38%2C226%2C2034%2C251%2C261%2C106%2C2030%2C3012%2C326%2C141%2C147%2C80%2C97%2C201%2C445%2C108%2C273%2C126%2C3017%2C3016%2C102%2C3007%2C75%2C229&vsSync=1&refUrl=&gdpr=1&gdprconsent=2&gdprstring=&usp_status=0&usp_consent=1&coppa=0 HTTP/1.1
Host: hbx.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
set-cookie: visitor-id=3182906273580244000V10; Expires=Thu, 01 Feb 2024 22:03:47 GMT; domain=.media.net; Path=/;
x-mnet-hl2: E
p3p: CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=86400 ; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Fri, 03 Feb 2023 22:03:47 GMT
date: Wed, 01 Feb 2023 22:03:47 GMT
content-length: 9961
X-Firefox-Spdy: h2
d3plfjw9uod7ab.cloudfront.net/ad/6d6d25e3-5be4-444b-82ae-a8f0bb892234.js
54.230.245.113200 OK 19 kB URL HTTP/2 d3plfjw9uod7ab.cloudfront.net/ad/6d6d25e3-5be4-444b-82ae-a8f0bb892234.js
IP 54.230.245.113:0
File type ASCII text, with very long lines (46207)
Hash c82ec6764a5a718fab6911603cced6a2
818d9d75655fd80aae1263834b142f5276d63b60
fb566ed31910452452e9c45b516add0e4d804d4a2d03bec92a6be47a196cad06
GET /ad/6d6d25e3-5be4-444b-82ae-a8f0bb892234.js HTTP/1.1
Host: d3plfjw9uod7ab.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 13:16:24 GMT
x-amz-version-id: OkSKuOi_M1KeQLKx0csIv8JFbutYIrO3
server: AmazonS3
content-encoding: br
date: Wed, 01 Feb 2023 21:59:33 GMT
cache-control: max-age=7200, public
etag: W/"7a14d816c6b9923b84f9184b6f85eef6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZLtMT2FhRooT8PXCuhqExqKChzDRDzdGFSVT-3DOOQLjtPBCQiPwUw==
age: 281
X-Firefox-Spdy: h2
prebid-a.rubiconproject.com/event
3.67.123.19200 OK 0 B URL HTTP/2 prebid-a.rubiconproject.com/event
IP 3.67.123.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /event HTTP/1.1
Host: prebid-a.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:48 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
X-Firefox-Spdy: h2
prebid-a.rubiconproject.com/event
3.67.123.19200 OK 0 B URL HTTP/2 prebid-a.rubiconproject.com/event
IP 3.67.123.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /event HTTP/1.1
Host: prebid-a.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.turnto23.com/
Origin: https://www.turnto23.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:48 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
X-Firefox-Spdy: h2
prebid-a.rubiconproject.com/event
3.67.123.19204 No Content 0 B URL HTTP/2 prebid-a.rubiconproject.com/event
IP 3.67.123.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event HTTP/1.1
Host: prebid-a.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2558
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 22:03:48 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2
prebid-a.rubiconproject.com/event
3.67.123.19204 No Content 0 B URL HTTP/2 prebid-a.rubiconproject.com/event
IP 3.67.123.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event HTTP/1.1
Host: prebid-a.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4115
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 22:03:48 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/tr/abt?v=220094
18.189.204.58200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/abt?v=220094
IP 18.189.204.58:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/abt?v=220094 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 467
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.turnto23.com
content-encoding: gzip
content-type: application/x-protobuf
date: Wed, 01 Feb 2023 22:03:50 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:42:52 GMT
age: 1259
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
g2.gumgum.com/hbid/imp?lt=1675289048912&to=0&aun=MAD_INVIEW&gpid=%2F6088%2Fssp.kero%2Finview-bottom&t=yvulvcbf&pi=3&maxw=728&maxh=90&si=113251&bf=728x90&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
54.194.82.195200 OK 0 B URL HTTP/2 g2.gumgum.com/hbid/imp?lt=1675289048912&to=0&aun=MAD_INVIEW&gpid=%2F6088%2Fssp.kero%2Finview-bottom&t=yvulvcbf&pi=3&maxw=728&maxh=90&si=113251&bf=728x90&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
IP 54.194.82.195:0
GET /hbid/imp?lt=1675289048912&to=0&aun=MAD_INVIEW&gpid=%2F6088%2Fssp.kero%2Finview-bottom&t=yvulvcbf&pi=3&maxw=728&maxh=90&si=113251&bf=728x90&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:46 GMT
content-type: application/json;charset=UTF-8
server: nginx
cache-control: private, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
set-cookie: cs=true; Domain=.gumgum.com; Expires=Thu, 01 Feb 2024 22:03:45 GMT; Path=/; Secure; SameSite=None
loc=N7qTz27lIInvAtVkW_A2n8IPDSVhUFp5ZtvvLnagCyWgO6qnhr3rsDgpAvQ4k_ILucM2xp01RC01kWvmi96IUASz3YPoPsdndUXuslWRIRkGoJVdhs0Ggw; Domain=.gumgum.com; Expires=Fri, 03 Mar 2023 22:03:45 GMT; Path=/; Secure; SameSite=None
vst=e_536484e7-9320-45a7-ad9a-1ff5f48d6b0b; Domain=.gumgum.com; Expires=Thu, 01 Feb 2024 22:03:45 GMT; Path=/; Secure; SameSite=None
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 01 Feb 2023 21:36:24 GMT
last-modified: Wed, 01 Feb 2023 21:25:54 GMT
etag: W/"ca579f2de02c4700bc4fa6f925ed06a1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 6fd3ab2be93b19c970fb371964d46d94.cloudfront.net (CloudFront), 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: fd1gK7MEP_sTMZvR8z2YNmyMfRJ-mfKqRlIOTYGSypEqqn-4d_TIXg==
age: 1641
X-Firefox-Spdy: h2
g2.gumgum.com/hbid/imp?lt=1675289049036&to=0&aun=MAD_HEADER&gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&t=yvulvcbf&pi=3&maxw=970&maxh=250&si=113248&bf=970x250%2C728x90%2C970x90&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
54.194.82.195200 OK 0 B URL HTTP/2 g2.gumgum.com/hbid/imp?lt=1675289049036&to=0&aun=MAD_HEADER&gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&t=yvulvcbf&pi=3&maxw=970&maxh=250&si=113248&bf=970x250%2C728x90%2C970x90&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters
IP 54.194.82.195:0
GET /hbid/imp?lt=1675289049036&to=0&aun=MAD_HEADER&gpid=%2F6088%2Fssp.kero%2Fnews%2Fcoronavirus%2Fdetail%23MAD_HEADER&t=yvulvcbf&pi=3&maxw=970&maxh=250&si=113248&bf=970x250%2C728x90%2C970x90&uspConsent=1---&vw=1280&vh=939&sw=1280&sh=1024&pu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters&ce=false&dpr=1&jcsi=%7B%22t%22%3A0%2C%22rq%22%3A8%2C%22pbv%22%3A%227.31.0%22%7D&ogu=https%3A%2F%2Fwww.turnto23.com%2Fnews%2Fcoronavirus%2Fwestern-dental-golden-state-drilling-and-finish-line-issue-warn-letters HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:46 GMT
content-type: application/json;charset=UTF-8
server: nginx
cache-control: private, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
access-control-allow-origin: https://www.turnto23.com
access-control-allow-credentials: true
set-cookie: cs=true; Domain=.gumgum.com; Expires=Thu, 01 Feb 2024 22:03:45 GMT; Path=/; Secure; SameSite=None
loc=N7qTz27lIInvAtVkW_A2n8IPDSVhUFp5ZtvvLnagCyWgO6qnhr3rsDgpAvQ4k_ILucM2xp01RC01kWvmi96IUASz3YPoPsdndUXuslWRIRkGoJVdhs0Ggw; Domain=.gumgum.com; Expires=Fri, 03 Mar 2023 22:03:45 GMT; Path=/; Secure; SameSite=None
vst=e_938915aa-7bb1-40df-8513-68e0a5a01560; Domain=.gumgum.com; Expires=Thu, 01 Feb 2024 22:03:45 GMT; Path=/; Secure; SameSite=None
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
d3plfjw9uod7ab.cloudfront.net/6d6d25e3-5be4-444b-82ae-a8f0bb892234.js
54.230.245.113200 OK 0 B URL HTTP/2 d3plfjw9uod7ab.cloudfront.net/6d6d25e3-5be4-444b-82ae-a8f0bb892234.js
IP 54.230.245.113:0
GET /6d6d25e3-5be4-444b-82ae-a8f0bb892234.js HTTP/1.1
Host: d3plfjw9uod7ab.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 13:16:24 GMT
x-amz-version-id: 2YmoUKxvEerAgqYu5_hCgTSn3.Rs3vac
server: AmazonS3
content-encoding: br
date: Wed, 01 Feb 2023 21:58:58 GMT
cache-control: max-age=3600, public
etag: W/"e4a531bd392e3e19506b373bc5c8c363"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5TFoZtMAEUzTh64ZtiCjS97yxupeJ5SBwDI4ZuRrvXeJ9RFSBxzPrw==
age: 324
X-Firefox-Spdy: h2
btloader.com/tag?o=5107371200741376&upapi=true
172.67.70.134200 OK 0 B URL HTTP/2 btloader.com/tag?o=5107371200741376&upapi=true
IP 172.67.70.134:0
GET /tag?o=5107371200741376&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.turnto23.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:45 GMT
content-type: application/javascript
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
etag: W/"07e72d3f1f31b771109c07690bb287c8"
last-modified: Wed, 01 Feb 2023 21:37:37 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 1550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6nA%2FtccjL8wTTAxVVlVAkIdwP2Z86hi019gC4pTFelS7S5yg7R6rY6Vbzv0Mk6vScdvkc1qtLYsvbPECBF2p9soi1KUD4RSCP4mtoxoyY9b3yd%2F8QY5jr%2FNHr0la9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792dfa9a983a1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 23 Dec 2022 01:05:48 GMT
x-amz-version-id: 1R3b4YI9dI20q9Y7Gq1DHxVUnq3Fp2gn
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 06:28:20 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uKpOIpBA2TDcsIHzJCVv8h6hdGGi725yIUCzRv6pmWMDB0cakKnxqw==
age: 56126
X-Firefox-Spdy: h2
vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/babec916-1f50-4725-adb2-fa5bba5c9727_360_h264.mp4
151.101.194.137206 Partial Content 0 B URL HTTP/2 vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/babec916-1f50-4725-adb2-fa5bba5c9727_360_h264.mp4
IP 151.101.194.137:0
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/babec916-1f50-4725-adb2-fa5bba5c9727_360_h264.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Wed, 01 Feb 2023 20:10:33 GMT
etag: "d280e529d480472da3b71b7df7ec11a9"
x-amz-server-side-encryption: AES256
content-type: video/mp4
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-range: bytes 0-1209501/1209502
content-length: 1209502
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.1.0/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.1.0/css/all.css
IP 172.64.132.15:0
GET /releases/v5.1.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.turnto23.com
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:03:43 GMT
content-type: text/css
x-amz-id-2: kzn/3pWWjRg5SVnjPn+Ci7cj6krusDvBDXEACzkmz+1JJykmu9a0a0HAaVKe51eoUjPF9NHxPqQ=
x-amz-request-id: KG694S4D6H8KBW8V
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:30:31 GMT
etag: W/"826c57385f3d35cfed5478ba7b1f5c03"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2410770
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jJuD2hylH%2F1DiwOWgjD2fLSYoW3XXRoappDehZ8UqdGgnC9PkJZitGI8nb88ob39Z1nVJpFEcU2oGKh%2B5uWjBN34%2FxKKzfVITv4RAfVkkmxaCn%2B6CsUd0P3qI64FkrC7Z9GUi3f9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792dfa8e8a1e24d8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.parsely.com/keys/turnto23.com/p.js
54.230.83.60200 OK 0 B URL HTTP/2 cdn.parsely.com/keys/turnto23.com/p.js
IP 54.230.83.60:0
GET /keys/turnto23.com/p.js HTTP/1.1
Host: cdn.parsely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Thu, 18 Feb 2021 19:18:57 GMT
pragma: public
content-encoding: gzip
date: Wed, 01 Feb 2023 08:12:50 GMT
expires: Thu, 02 Feb 2023 08:12:50 GMT
cache-control: max-age=86400, public
etag: W/"602ebda1-10711"
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bR_26KZm1WvG8tFz1BSP76mBhm9elHifFp7UpeZsVsF4sa9iuVqdkw==
age: 49854
X-Firefox-Spdy: h2
vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/df730fdb-7cf5-48a1-bd70-652e1f017588_360_h264.mp4
151.101.194.137206 Partial Content 0 B URL HTTP/2 vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/df730fdb-7cf5-48a1-bd70-652e1f017588_360_h264.mp4
IP 151.101.194.137:0
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/df730fdb-7cf5-48a1-bd70-652e1f017588_360_h264.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Wed, 01 Feb 2023 20:11:48 GMT
etag: "6c0c4250304a0a35ad48ccb8975bd782"
x-amz-server-side-encryption: AES256
content-type: video/mp4
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-range: bytes 0-1181749/1181750
content-length: 1181750
X-Firefox-Spdy: h2
vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/29a55618-f6a9-4472-9b63-034849edefef_360_h264.mp4
151.101.194.137206 Partial Content 0 B URL HTTP/2 vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/29a55618-f6a9-4472-9b63-034849edefef_360_h264.mp4
IP 151.101.194.137:0
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/29a55618-f6a9-4472-9b63-034849edefef_360_h264.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Wed, 01 Feb 2023 20:10:33 GMT
etag: "ee376a2c3dcb4e212ff51987956f5502"
x-amz-server-side-encryption: AES256
content-type: video/mp4
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-range: bytes 0-1063145/1063146
content-length: 1063146
X-Firefox-Spdy: h2
vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/dfa2b806-4e9a-4c34-89ef-bd03e7668967_360_h264.mp4
151.101.194.137206 Partial Content 0 B URL HTTP/2 vid.connatix.com/pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/dfa2b806-4e9a-4c34-89ef-bd03e7668967_360_h264.mp4
IP 151.101.194.137:0
GET /pid-8b4b2ee5-a789-4e09-9f56-48661b3cfec3/fd63edce-9cba-474d-a94f-5c490be3518f/dfa2b806-4e9a-4c34-89ef-bd03e7668967_360_h264.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.turnto23.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Wed, 01 Feb 2023 20:11:48 GMT
etag: "bbba3fa4771412bfe851b96788dac09d"
x-amz-server-side-encryption: AES256
content-type: video/mp4
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:03:46 GMT
age: 6634
access-control-max-age: 86400
access-control-allow-origin: *
content-range: bytes 0-1182959/1182960
content-length: 1182960
X-Firefox-Spdy: h2