firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 05:35:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HlvkTNQEBJNUEjCHY7M4X6aB0LqBfE3K4EiMKJMSFsmUDcdvsbBI0w==
Age: 2987
saashika.000webhostapp.com/
145.14.144.126200 OK 22 kB URL HTTP/1.1 saashika.000webhostapp.com/
IP 145.14.144.126:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8803)
Hash d208aa1d66ff1fa7795ab0eb2ee65640
64bbe16a14a579a4394e1fcdacf8ba5192eda36d
f3b8d884aa83f1a1846c8ab8fe47a28a844833fbc5b87cc8efef463acf9b26ec
GET / HTTP/1.1
Host: saashika.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: ab0d673108204b514741377d2c93bd89
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7779
Expires: Thu, 15 Sep 2022 08:35:09 GMT
Date: Thu, 15 Sep 2022 06:25:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: A146C3RKPPOC0bHd7N9jQKEcQnH6Ials_lC_t5IdR26ErWw-09WX1w==
age: 6615
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
stats.wp.com/w.js?63
192.0.76.3200 OK 4.2 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (10813), with no line terminators
Hash 5f45d8e2b1450694a579a6dbad344ce5
086e9eb5dc601a819a00a69c908284a2b4fdd570
6e1e4dd8bfe8ac68d1d164b786ddee5b054d58455c4a0e4baae3abf48bcbaa14
GET /w.js?63 HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"61dc645f-2a3d"
Content-Encoding: gzip
Expires: Wed, 15 Mar 2023 09:22:45 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Allow-Origin: *
X-nc: HIT arn
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed1a966e9770807ef8b4f57a5113d29a
d843a3d371ee0424004f68ccc32ce06e6bc6e6c7
4932c01d3db39a9ac2f0f7e2693af95e5a334697edfd8d078fd52e421ba43721
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
0.gravatar.com/js/gprofiles.js?ver=202234z
192.0.73.2200 OK 7.4 kB URL HTTP/1.1 0.gravatar.com/js/gprofiles.js?ver=202234z
IP 192.0.73.2:0
File type ASCII text, with very long lines (24056), with no line terminators
Hash c2c47da57beeb7fc92cf269c12c0ebbb
930bc6b0c4e991bf4a1192f6e5a7b4d54f0610b6
0bd6204d0a180ad8e971f3fdab5402aa41978f55d362c9babedffc3aec4aebb6
GET /js/gprofiles.js?ver=202234z HTTP/1.1
Host: 0.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 25 Feb 2022 16:03:16 GMT
ETag: W/"6218fdc4-5df8"
Content-Encoding: gzip
Expires: Thu, 22 Sep 2022 06:25:30 GMT
Cache-Control: max-age=604800
www.googletagmanager.com/gtag/js?id=UA-238639976-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-238639976-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 709908de8f266eb07d4abfe17818c8dd
ca2020c68b47678efb052ffbcc79eb269f4074dc
342f4d8dde5d6277b4f29e5570000eb36fd9e01d25bd79502ea8196cbaffacec
GET /gtag/js?id=UA-238639976-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Sep 2022 06:25:30 GMT
expires: Thu, 15 Sep 2022 06:25:30 GMT
cache-control: private, max-age=900
last-modified: Thu, 15 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42339
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
saashikadecor.files.wordpress.com/2022/05/cropped-saas1.png?w=50
192.0.72.18200 OK 592 B URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/cropped-saas1.png?w=50
IP 192.0.72.18:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5a1f82ae6c4568972c116f66d03efcbc
466d4a5979038037ac6dd88b855fd8796b8c3056
4265c7b7e28a5f3d63c6c87a5aef9950edab195b00f7638987869c201afe5038
GET /2022/05/cropped-saas1.png?w=50 HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: image/webp
content-length: 592
last-modified: Sat, 07 May 2022 09:55:30 GMT
expires: Fri, 21 Oct 2022 15:44:50 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.000webhost.com/000webhost/logo/footer-powered-by-000webhost-white2.png
104.19.184.120200 OK 1.7 kB URL HTTP/2 cdn.000webhost.com/000webhost/logo/footer-powered-by-000webhost-white2.png
IP 104.19.184.120:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4f8ead9b4116b3a5098cf60e0e4195b3
4a783b5ab6cf8a075d89b16fb67250b5f5ed9a5b
86f2673ec74a632865109a76b2232f4f5b3587daa219e07a17ef1d9c76a0fda5
GET /000webhost/logo/footer-powered-by-000webhost-white2.png HTTP/1.1
Host: cdn.000webhost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: image/webp
content-length: 1696
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2046
content-disposition: inline; filename="footer-powered-by-000webhost-white2.webp"
etag: "6304b4e4-7fe"
last-modified: Tue, 23 Aug 2022 11:07:16 GMT
strict-transport-security: max-age=2592000
vary: Accept
x-content-type-options: nosniff
x-frame-options: sameorigin
x-hostinger-datacenter: srv
x-hostinger-node: nl-srv-cdn2
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5512
expires: Thu, 15 Sep 2022 10:25:30 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 74af49177c33b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed1a966e9770807ef8b4f57a5113d29a
d843a3d371ee0424004f68ccc32ce06e6bc6e6c7
4932c01d3db39a9ac2f0f7e2693af95e5a334697edfd8d078fd52e421ba43721
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.0.2-alpha-53930
192.0.77.32200 OK 5.3 kB URL HTTP/2 s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.0.2-alpha-53930
IP 192.0.77.32:0
File type ASCII text, with very long lines (15660)
Hash ce43e9d3d4ed082cc2f28fefff621dbf
375474ca22a06679a115581547724b818e556e2b
b361ada8e5d83bca57bb197b0d07b61a60b4d491431e191dce9c089d4b361cc4
GET /wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.0.2-alpha-53930 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"627a5af9-48b9"
content-encoding: br
expires: Thu, 24 Aug 2023 09:31:02 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.wp.com/_static/??-eJxdjF0OQDAQhC+kFg3hQZwF2VC6bZNuI25vRSLibeabHziCmr1jdAyUVLBpMS7C7IkEKWt2FBd/JBeSgQHn2cg6vuIJPp+8IslDSBMsI+MxnhD5tHgXB+rLptC6rbtKbxctMDKX?cssminify=yes
192.0.77.32200 OK 28 kB URL HTTP/2 s0.wp.com/_static/??-eJxdjF0OQDAQhC+kFg3hQZwF2VC6bZNuI25vRSLibeabHziCmr1jdAyUVLBpMS7C7IkEKWt2FBd/JBeSgQHn2cg6vuIJPp+8IslDSBMsI+MxnhD5tHgXB+rLptC6rbtKbxctMDKX?cssminify=yes
IP 192.0.77.32:0
File type ASCII text, with very long lines (60822), with no line terminators
Hash bdad8768c455fd39c6d00cac2ab3b30e
57836a04e25e78a849c25cfc6bc20a21974c697b
9d4466d6d3e753fff875edd0b44cecebef362998c1135b448102c060431a2373
GET /_static/??-eJxdjF0OQDAQhC+kFg3hQZwF2VC6bZNuI25vRSLibeabHziCmr1jdAyUVLBpMS7C7IkEKWt2FBd/JBeSgQHn2cg6vuIJPp+8IslDSBMsI+MxnhD5tHgXB+rLptC6rbtKbxctMDKX?cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Thu, 22 Oct 2020 16:58:59 GMT
etag: W/"5f91ba53-ed96"
content-encoding: br
expires: Tue, 13 Jun 2023 18:21:37 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
s0.wp.com/_static/??/wp-content/mu-plugins/carousel/swiper-bundle.css,/wp-content/mu-plugins/carousel/jetpack-carousel.css?m=1630955947j&cssminify=yes
192.0.77.32200 OK 7.2 kB URL HTTP/2 s0.wp.com/_static/??/wp-content/mu-plugins/carousel/swiper-bundle.css,/wp-content/mu-plugins/carousel/jetpack-carousel.css?m=1630955947j&cssminify=yes
IP 192.0.77.32:0
File type ASCII text, with very long lines (32095), with no line terminators
Hash 4e159a3de5142f5b41e3111be1bba77b
2807dd7202d4e1a9be919fd9d1e3130c20aabb47
d573a3f200e0bd2162b86b4a9cb481578f004971e62f2f847d6df338198d0e4a
GET /_static/??/wp-content/mu-plugins/carousel/swiper-bundle.css,/wp-content/mu-plugins/carousel/jetpack-carousel.css?m=1630955947j&cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Mon, 06 Sep 2021 19:19:33 GMT
etag: W/"613669c5-7d5f"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:52 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
fonts.gstatic.com/s/fanwoodtext/v15/3XFtErwl05Ad_vSCF6Fq7xX2QtzZ.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/fanwoodtext/v15/3XFtErwl05Ad_vSCF6Fq7xX2QtzZ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30712, version 1.0\012- data
Hash 0a7849489bcc82e8e2412cce06a66d35
f83bbb6fc4da50065567965f62489e41976d4cab
8ce9304834aaafd39e5ad6d6b23ea6775b768c91f3cc8039b6121fe51231b61a
GET /s/fanwoodtext/v15/3XFtErwl05Ad_vSCF6Fq7xX2QtzZ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 03:16:47 GMT
expires: Sat, 09 Sep 2023 03:16:47 GMT
cache-control: public, max-age=31536000
age: 529723
last-modified: Thu, 21 Apr 2022 17:01:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
saashikadecor.files.wordpress.com/2022/05/image-3.png
192.0.72.18200 OK 341 kB URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/image-3.png
IP 192.0.72.18:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 341 kB (341277 bytes)
Hash 58767c97c6d3a10c55f7dc34c924b816
8f0def429de51d71a4095073b252a201e05c6cb9
c61e96baab98dcd3f94aa58bb17c039c29f895fbfff1945fe1142624d0c192e6
GET /2022/05/image-3.png HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: image/png
content-length: 341277
last-modified: Sat, 07 May 2022 11:51:48 GMT
expires: Wed, 12 Oct 2022 08:08:41 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
fonts.gstatic.com/s/fanwoodtext/v15/3XFzErwl05Ad_vSCF6Fq7xX2R-zb_Pk.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/fanwoodtext/v15/3XFzErwl05Ad_vSCF6Fq7xX2R-zb_Pk.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 32020, version 1.0\012- data
Hash c07d262225dcc8f46127e55f5084c5c3
aa4078282cf979e0d450add331be9b03ffc850da
759a967721b2b1c95d8333ec6902fe8f36f202e2c0e73c4df08b1ed1b5001e31
GET /s/fanwoodtext/v15/3XFzErwl05Ad_vSCF6Fq7xX2R-zb_Pk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32020
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 03:16:48 GMT
expires: Sat, 09 Sep 2023 03:16:48 GMT
cache-control: public, max-age=31536000
age: 529722
last-modified: Thu, 21 Apr 2022 16:45:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
saashikadecor.files.wordpress.com/2022/05/cropped-saas1.png?w=300
192.0.72.18200 OK 6.1 kB URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/cropped-saas1.png?w=300
IP 192.0.72.18:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 187e46d0531c61a45822928660eadab4
57250246aa022f59e74119550b6327e87000b993
aefd913f9486e240fb80b5ac43e5a62a7cac4ad66743287ab9aa9929734449b3
GET /2022/05/cropped-saas1.png?w=300 HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:31 GMT
content-type: image/webp
content-length: 6096
last-modified: Sat, 07 May 2022 09:55:30 GMT
expires: Mon, 10 Oct 2022 18:24:36 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.6638506163926209
192.0.76.3200 OK 50 B URL HTTP/1.1 pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.6638506163926209
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.6638506163926209 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:31 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
s0.wp.com/_static/??-eJyFUtlqxDAM/KE6zlKa0ofSb5Ft4XojH/ho8N9XCbRkN2T3RTCSRhodcklCx1AxVOmbSNSsC0UuSUcvineE/Q4NupQXuaMpivaf6CHPWF2wQkGWnHrrOZD3PZ2xWIvExtE4OxQEi6zoE0HFIkvthI+7LzEbMEVaigrokPuXZhtDhdlyJKP8ubwOH8MoVXNk1oJ6FuRUhtzvmrqgqRnWcuW50DhAQr+NsQMst2MWhBZ0H7wLz+kc2+Mb0rn4TSkXw5pglQw9tipsduZkV09LZFgPdbbq3a3WvbHfJziKf3Ti7ZGUShlLEWy9a17UbyZuf/XlPy/TNL6/TZdxvP4C6GP70w==?cssminify=yes
192.0.77.32200 OK 20 kB URL HTTP/2 s0.wp.com/_static/??-eJyFUtlqxDAM/KE6zlKa0ofSb5Ft4XojH/ho8N9XCbRkN2T3RTCSRhodcklCx1AxVOmbSNSsC0UuSUcvineE/Q4NupQXuaMpivaf6CHPWF2wQkGWnHrrOZD3PZ2xWIvExtE4OxQEi6zoE0HFIkvthI+7LzEbMEVaigrokPuXZhtDhdlyJKP8ubwOH8MoVXNk1oJ6FuRUhtzvmrqgqRnWcuW50DhAQr+NsQMst2MWhBZ0H7wLz+kc2+Mb0rn4TSkXw5pglQw9tipsduZkV09LZFgPdbbq3a3WvbHfJziKf3Ti7ZGUShlLEWy9a17UbyZuf/XlPy/TNL6/TZdxvP4C6GP70w==?cssminify=yes
IP 192.0.77.32:0
File type ASCII text, with very long lines (65518)
Hash 34f672575b95142a61ab2a6e7626dd58
868244e634cf437a882e81ae4b09892ee85661b8
9655691ce1406cd907fa6bb1e19e9c12619b2faf16cacb21c9a3bb1302d7b59c
GET /_static/??-eJyFUtlqxDAM/KE6zlKa0ofSb5Ft4XojH/ho8N9XCbRkN2T3RTCSRhodcklCx1AxVOmbSNSsC0UuSUcvineE/Q4NupQXuaMpivaf6CHPWF2wQkGWnHrrOZD3PZ2xWIvExtE4OxQEi6zoE0HFIkvthI+7LzEbMEVaigrokPuXZhtDhdlyJKP8ubwOH8MoVXNk1oJ6FuRUhtzvmrqgqRnWcuW50DhAQr+NsQMst2MWhBZ0H7wLz+kc2+Mb0rn4TSkXw5pglQw9tipsduZkV09LZFgPdbbq3a3WvbHfJziKf3Ti7ZGUShlLEWy9a17UbyZuf/XlPy/TNL6/TZdxvP4C6GP70w==?cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Wed, 17 Aug 2022 17:08:50 GMT
etag: W/"62fd20a2-293e6"
content-encoding: br
expires: Fri, 18 Aug 2023 16:41:32 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
saashikadecor.files.wordpress.com/2022/05/image-4.png
192.0.72.18200 OK 537 kB URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/image-4.png
IP 192.0.72.18:0
File type PNG image data, 632 x 630, 8-bit/color RGBA, non-interlaced\012- data
Size 537 kB (536702 bytes)
Hash 706fae6e63d37449a93dbf332566e7d4
ab856664696443c02efe5930c148a68990fbfe7e
3277a445521cf7687188e0dc2cfc9a7fedbc9c43e5ae0efbee3155633a5e8a24
GET /2022/05/image-4.png HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: image/png
content-length: 536702
last-modified: Sat, 07 May 2022 12:04:04 GMT
expires: Thu, 06 Oct 2022 09:03:35 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
saashikadecor.files.wordpress.com/2022/05/image-5.png
192.0.72.18200 OK 559 kB URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/image-5.png
IP 192.0.72.18:0
File type PNG image data, 800 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 559 kB (559188 bytes)
Hash a18dfc9a3f8f0fb461c3c676c0abf04b
c07e55272a143ec29353ae73ed653a1ad00110b7
dcff3c8760b8e1ec43eb3c75f5571356e1b372ab88a9108ce52c923d64d623f6
GET /2022/05/image-5.png HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: image/png
content-length: 559188
last-modified: Sat, 07 May 2022 12:16:03 GMT
expires: Sat, 22 Oct 2022 03:58:31 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s0.wp.com/_static/??-eJyFjjsSwjAMRC+EMGkCFAxnSWLhcbAlI9mE3J7wCb+GSiPt212ZIUHHlJGy6dVEbn1AKIrSuOkGng687HVhvjkJGZLwZZw1T10oFvUm9qeCMj7HMnr6C0H0TpqMn/DcFgukUJwnNWdvkZOg3hPeG2Q+IkEr3jr89beB3SthYLGNVehCo/p4pIsJiAmcTTJ593FX1fVqXW+ratNfAd2eaqM=
192.0.77.32200 OK 42 kB URL HTTP/2 s0.wp.com/_static/??-eJyFjjsSwjAMRC+EMGkCFAxnSWLhcbAlI9mE3J7wCb+GSiPt212ZIUHHlJGy6dVEbn1AKIrSuOkGng687HVhvjkJGZLwZZw1T10oFvUm9qeCMj7HMnr6C0H0TpqMn/DcFgukUJwnNWdvkZOg3hPeG2Q+IkEr3jr89beB3SthYLGNVehCo/p4pIsJiAmcTTJ593FX1fVqXW+ratNfAd2eaqM=
IP 192.0.77.32:0
File type ASCII text, with very long lines (46140)
Hash 944e9b17a397400bc9a54dea775d064b
6cb8ceb1e759b83f2536545e6441a9063ad799f4
bb12436652ddb6942ca7de58f448103023d8ea7e06a1eef3be72c1b9398cdf4e
GET /_static/??-eJyFjjsSwjAMRC+EMGkCFAxnSWLhcbAlI9mE3J7wCb+GSiPt212ZIUHHlJGy6dVEbn1AKIrSuOkGng687HVhvjkJGZLwZZw1T10oFvUm9qeCMj7HMnr6C0H0TpqMn/DcFgukUJwnNWdvkZOg3hPeG2Q+IkEr3jr89beB3SthYLGNVehCo/p4pIsJiAmcTTJ593FX1fVqXW+ratNfAd2eaqM= HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 17 Aug 2022 20:45:31 GMT
etag: W/"62fd536b-1dd50"
content-encoding: br
expires: Thu, 17 Aug 2023 20:45:44 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quattrocento/v17/OZpbg_xvsDZQL_LKIF7q4jP_eE3vcKnY.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/quattrocento/v17/OZpbg_xvsDZQL_LKIF7q4jP_eE3vcKnY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35952, version 1.0\012- data
Hash 1ede9b49c70635ad07115dc802702118
a7cea5ca5f71b4fed7fc4a69434091c87faf71f5
5e232623c90033b45c4ca98c53ff6b4b5b6c54b1c2da2f05a3a1a7e68e2ca8f5
GET /s/quattrocento/v17/OZpbg_xvsDZQL_LKIF7q4jP_eE3vcKnY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 23:58:19 GMT
expires: Thu, 14 Sep 2023 23:58:19 GMT
cache-control: public, max-age=31536000
age: 23232
last-modified: Wed, 27 Apr 2022 16:14:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.wp.com/wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes
192.0.77.32200 OK 202 B URL HTTP/2 s0.wp.com/wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes
IP 192.0.77.32:0
File type CSV text\012- , ASCII text
Hash c24280c084d657b0203ce5c7d58cdc49
ba3333be9957cd238d6e88da11558d3d5ea5b3ca
743431fa30f95ed20742dadd1d5626dc84de3eaba9929ac03737c284716dcc2a
GET /wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"5bffef56-1d7"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:53 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?blog=204269986&v=wpcom&tz=-7&user_id=0&post=8&subd=saashikadecor&host=saashika.000webhostapp.com&ref=&rand=0.727087679796199
192.0.76.3200 OK 50 B URL HTTP/1.1 pixel.wp.com/g.gif?blog=204269986&v=wpcom&tz=-7&user_id=0&post=8&subd=saashikadecor&host=saashika.000webhostapp.com&ref=&rand=0.727087679796199
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?blog=204269986&v=wpcom&tz=-7&user_id=0&post=8&subd=saashikadecor&host=saashika.000webhostapp.com&ref=&rand=0.727087679796199 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:31 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 06:03:22 GMT
Expires: Thu, 15 Sep 2022 06:50:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: C2pSWbH_XOEIIzMJMfSc_lRQlJQITqSIuDkspG4cxod9LmPgZ5JLzA==
Age: 1329
www.google-analytics.com/ga.js
142.250.74.174200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Thu, 15 Sep 2022 05:04:55 GMT
Expires: Thu, 15 Sep 2022 07:04:55 GMT
Cache-Control: public, max-age=7200
Age: 4836
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Thu, 15 Sep 2022 04:41:12 GMT
expires: Thu, 15 Sep 2022 06:41:12 GMT
cache-control: public, max-age=7200
age: 6259
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.pubmine.com/conf?gdpr=0&pp.pt=0&pp.ht=0&pp.tn=gateway&pp.uloggedin=0&pp.amp=false&pp.consent=0&pp.gdpr_applies=false&pp.ad.label.text=Advertisements&pp.ad.reportAd.text=Report%20this%20ad&pp.siteid=8982&pp.blogid=204269986&rid=8335707158874&ref=http%3A%2F%2Fsaashika.000webhostapp.com%2F&vp=1280x939&cb=callback__l82o3lrj_1
63.33.106.135200 OK 6.2 kB URL HTTP/1.1 s.pubmine.com/conf?gdpr=0&pp.pt=0&pp.ht=0&pp.tn=gateway&pp.uloggedin=0&pp.amp=false&pp.consent=0&pp.gdpr_applies=false&pp.ad.label.text=Advertisements&pp.ad.reportAd.text=Report%20this%20ad&pp.siteid=8982&pp.blogid=204269986&rid=8335707158874&ref=http%3A%2F%2Fsaashika.000webhostapp.com%2F&vp=1280x939&cb=callback__l82o3lrj_1
IP 63.33.106.135:0
File type ASCII text, with very long lines (6187), with no line terminators
Hash 7a6a06d21960d986541055084b54e8b6
b851af6d6ae08c51835babec7e1f8e72d0359323
4b05d9fc9f21237c6e357c21d464a77105a265efc6120d8b79c4f4546dc0b1e4
GET /conf?gdpr=0&pp.pt=0&pp.ht=0&pp.tn=gateway&pp.uloggedin=0&pp.amp=false&pp.consent=0&pp.gdpr_applies=false&pp.ad.label.text=Advertisements&pp.ad.reportAd.text=Report%20this%20ad&pp.siteid=8982&pp.blogid=204269986&rid=8335707158874&ref=http%3A%2F%2Fsaashika.000webhostapp.com%2F&vp=1280x939&cb=callback__l82o3lrj_1 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 6187
Content-Type: text/javascript; charset=utf-8
Date: Thu, 15 Sep 2022 06:25:31 GMT
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:31 GMT
tuuid_lu=1663223131; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:31 GMT
tps=!196,432465931!110,432465931!142,432465931!100,432465931!109,432465931!61,432465931!80,432465931; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:31 GMT
saashikadecor.files.wordpress.com/2022/05/cropped-saashika2-1.png
192.0.72.18200 OK 4.3 MB URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/cropped-saashika2-1.png
IP 192.0.72.18:0
File type PNG image data, 2560 x 1066, 8-bit/color RGBA, non-interlaced\012- data
Size 4.3 MB (4337474 bytes)
Hash a1523d14cd47e0903a9012f59335f260
019bdd1b56a726fb7d1958cae59c35ddd816fd2b
5450f9ce30e67b6cb2df8c6b218a8879c1dbc835eef27379c4cf5c22d28f7242
GET /2022/05/cropped-saashika2-1.png HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: image/png
content-length: 4337474
last-modified: Sat, 07 May 2022 11:00:50 GMT
expires: Thu, 20 Oct 2022 21:59:04 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
saashikadecor.files.wordpress.com/2022/05/cropped-saas1.png?w=192
192.0.72.18200 OK 3.9 kB URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/cropped-saas1.png?w=192
IP 192.0.72.18:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ce902cf147cf563c245ca68d5298c4ab
bdee00573a364c7d855c8e9721fd9b5b0236e6aa
61295ccc03ecf69a784913bc9f66d8d6225e427b61bd9a50104961ca3644f70e
GET /2022/05/cropped-saas1.png?w=192 HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:31 GMT
content-type: image/webp
content-length: 3898
last-modified: Sat, 07 May 2022 09:55:30 GMT
expires: Sun, 16 Oct 2022 10:14:36 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1052
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:31 GMT
Last-Modified: Thu, 15 Sep 2022 06:07:59 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h
192.0.77.32200 OK 383 B URL HTTP/2 s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h
IP 192.0.77.32:0
File type ASCII text, with very long lines (365)
Hash 8e4121f13b86617d66dec0e2c5b33c92
002b80c095155353853d9eec1a5e9427f7f1bd99
b0f896963ad8f4632754bcbdc8fc1e4775dc4c39fc7c2e7959c03ed3f9c639ff
GET /wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"5ffc31a9-465"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:52 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
s.pubmine.com/pixel?id=15&type=img
63.33.106.135200 OK 43 B URL HTTP/1.1 s.pubmine.com/pixel?id=15&type=img
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /pixel?id=15&type=img HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 43
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:32 GMT
ads.pubmatic.com/AdServer/js/user_sync.html?gdpr=0&gdpr_consent=&us_privacy=&predirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D11%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?gdpr=0&gdpr_consent=&us_privacy=&predirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D11%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?gdpr=0&gdpr_consent=&us_privacy=&predirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D11%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=148345
expires: Fri, 16 Sep 2022 23:37:57 GMT
date: Thu, 15 Sep 2022 06:25:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?gdpr=0&gdpr_consent=&us_privacy=&predirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D26%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?gdpr=0&gdpr_consent=&us_privacy=&predirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D26%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?gdpr=0&gdpr_consent=&us_privacy=&predirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D26%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=148345
expires: Fri, 16 Sep 2022 23:37:57 GMT
date: Thu, 15 Sep 2022 06:25:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?p=156204&gdpr=0&gdpr_consent=
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=156204&gdpr=0&gdpr_consent=
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?p=156204&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=148345
expires: Fri, 16 Sep 2022 23:37:57 GMT
date: Thu, 15 Sep 2022 06:25:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6ce4f13fdb952851182aa37a39f126d5
b2de27c47232c1e369b3a2f27e271ec6ddf08bee
97f1c64587bda43d49602f58e37b521045c3eade20704c47941c85b15c91bdb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1512
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 06:00:20 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
s.pubmine.com/adjr?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874
63.33.106.135200 OK 3.5 kB URL HTTP/1.1 s.pubmine.com/adjr?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874
IP 63.33.106.135:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (3495), with no line terminators
Hash 9adbf91e49304628ec5d960579942d1f
e3aad88a5b9947c24b3f62cb9b2987c90d005375
85cd1644eb631a9727f6cf7f6d32f3cee0c5312bcf577db54006cb570b83145c
POST /adjr?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: text/plain
Content-Length: 722
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://saashika.000webhostapp.com
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 3495
Content-Type: application/json; charset=utf-8
Date: Thu, 15 Sep 2022 06:25:32 GMT
Expires: 0
Pragma: no-cache
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
lcri5m=!2794,1,1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
ar1d=!0,1,1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
ih=!4017,432465932; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
lcai9h=!212,1,1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 4da306d5743c1f04af3bbb7c0dfe19d2
e9e01760bb40990668b542113e39418b06e07eb3
6dc42ed0e75e0358c052bd0eec9ff5dbb926f55a225ebcc2fbd78dc254951af5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3775
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 05:22:37 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 312
pixel.rubiconproject.com/exchange/sync.php?p=18894&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=&us_privacy=
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=18894&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=&us_privacy=
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=18894&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 0163a7456b0a5605e8b1fb1d4fba3e4d
Content-Type: image/gif
s.pubmine.com/adconf?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874
63.33.106.135200 OK 84 B URL HTTP/1.1 s.pubmine.com/adconf?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874
IP 63.33.106.135:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1e0f0adfbc997df7ad9e9e641a571663
21a9ead6aebd8179c9fdd2cbc5d4d2deb367b30b
c66d8a60355e4aed17ce2f793f56258ffe650c52f20e8e1c542d379c7b10c145
POST /adconf?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: text/plain
Content-Length: 689
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://saashika.000webhostapp.com
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 84
Content-Type: text/javascript; charset=utf-8
Date: Thu, 15 Sep 2022 06:25:32 GMT
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
ssbsync-global.smartadserver.com/api/sync?callerId=5&gdpr=0&gdpr_consent=&US_privacy=&redirectUri=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D23%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D[ssb_sync_pid]
185.86.139.101302 Found 0 B URL HTTP/1.1 ssbsync-global.smartadserver.com/api/sync?callerId=5&gdpr=0&gdpr_consent=&US_privacy=&redirectUri=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D23%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D[ssb_sync_pid]
IP 185.86.139.101:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=5&gdpr=0&gdpr_consent=&US_privacy=&redirectUri=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D23%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D[ssb_sync_pid] HTTP/1.1
Host: ssbsync-global.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Thu, 15 Sep 2022 06:25:32 GMT
location: https://s.pubmine.com/match?bidder_id=23&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7949788417183121912
set-cookie: pid=7949788417183121912; expires=Mon, 16 Oct 2023 06:24:32 GMT; domain=smartadserver.com; path=/; secure; samesite=none
s.pubmine.com/jslog?n=cmp%20ping%20returned%20error%20with%20data%3A%20%7B%22gdprApplies%22%3Afalse%2C%22cmpLoaded%22%3Afalse%2C%22cmpStatus%22%3A%22stub%22%2C%22displayStatus%22%3A%22disabled%22%2C%22apiVersion%22%3A%222%22%7D&pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&s=err&v=2.36.71660581586862
63.33.106.135200 OK 43 B URL HTTP/1.1 s.pubmine.com/jslog?n=cmp%20ping%20returned%20error%20with%20data%3A%20%7B%22gdprApplies%22%3Afalse%2C%22cmpLoaded%22%3Afalse%2C%22cmpStatus%22%3A%22stub%22%2C%22displayStatus%22%3A%22disabled%22%2C%22apiVersion%22%3A%222%22%7D&pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&s=err&v=2.36.71660581586862
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /jslog?n=cmp%20ping%20returned%20error%20with%20data%3A%20%7B%22gdprApplies%22%3Afalse%2C%22cmpLoaded%22%3Afalse%2C%22cmpStatus%22%3A%22stub%22%2C%22displayStatus%22%3A%22disabled%22%2C%22apiVersion%22%3A%222%22%7D&pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&s=err&v=2.36.71660581586862 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 43
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:32 GMT
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 812f14fed2dd6db2ac2f69ed686637d4
e88e629fc6025053e63ec43650d1a9c6df50db4f
73c50ee61c1b379b38824b71d013ac9855c17ccfb74e547231498c303987c074
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 03:11:56 GMT
Expires: Wed, 21 Sep 2022 03:11:55 GMT
Etag: "e88e629fc6025053e63ec43650d1a9c6df50db4f"
Cache-Control: max-age=506182,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af49210c2f0b49-OSL
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 5a3cf740722cd5379699ecc2a6d19b9a
dc2926cba5b405ef00f9806714d128f89f79b0c3
968af6e4864609fc6d8407a1184e4f292b3acd126d9d6415c8ecfa4ae0de5e4b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 14 Sep 2022 21:59:57 GMT
Expires: Thu, 15 Sep 2022 21:59:57 GMT
ETag: "dc2926cba5b405ef00f9806714d128f89f79b0c3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3e6c131178768ed3a6f62b2022a578f
c405af5948b92cdf7432495ffa2eff0b024060da
95f9d78f15be73e9be6ec171e094580e976735fae09e07327c7983ddc31a9a2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5252
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 04:58:00 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6a591b8589dcbc2414c73ba5e75fb0a6
a5a33433c78233d74917a1656eb0ce56cb4dfc05
810ae202353f96759cff200408d2a85de0d5a9bf8f82699130f979a2a10ce045
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4826
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 05:05:06 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
s.pubmine.com/adjr?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874
63.33.106.135200 OK 3.1 kB URL HTTP/1.1 s.pubmine.com/adjr?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874
IP 63.33.106.135:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (3086), with no line terminators
Hash 756b36aaaf0f8e610a0ecb6871cd3ab2
df0566848206c064441667c17a2a676ad9dde923
3f3a07721238165d356588d2d35fd8a57d0647920f50cc77cc39f6cd3322c0ef
POST /adjr?pvid=24b9ff93-e1ac-4fbf-862d-71e74b510e17&rid=8335707158874 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: text/plain
Content-Length: 737
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://saashika.000webhostapp.com
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 3086
Content-Type: application/json; charset=utf-8
Date: Thu, 15 Sep 2022 06:25:32 GMT
Expires: 0
Pragma: no-cache
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
ih=!4042,432465932!4017,432465932; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
lcai9h=!215,1,1663223132!212,1,1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
ar1d=!0,2,1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
lcri5m=!2810,1,1663223132!2794,1,1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
cs.emxdgt.com/um?ssp=pbs&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D16%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%24UID
3.75.3.113302 Found 0 B URL HTTP/2 cs.emxdgt.com/um?ssp=pbs&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D16%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%24UID
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?ssp=pbs&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D16%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%24UID HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html
date: Thu, 15 Sep 2022 06:25:32 GMT
location: https://ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D16%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%24EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ=
set-cookie: euid=57491663223132403207f1; Max-Age=2592000; Expires=Sat, 15 Oct 2022 06:25:32 GMT; Domain=.emxdgt.com; Path=/; HttpOnly
content-length: 0
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/bsync?uid=19340f4f097d16f41f34fc0274981ca4&name=PrebidServer&gdpr=0&gdpr_consent=&us_privacy=&url=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D22%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D[BUYER_USERID]
185.255.84.153307 Temporary Redirect 0 B URL HTTP/2 visitor.omnitagjs.com/visitor/bsync?uid=19340f4f097d16f41f34fc0274981ca4&name=PrebidServer&gdpr=0&gdpr_consent=&us_privacy=&url=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D22%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D[BUYER_USERID]
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /visitor/bsync?uid=19340f4f097d16f41f34fc0274981ca4&name=PrebidServer&gdpr=0&gdpr_consent=&us_privacy=&url=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D22%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D[BUYER_USERID] HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store, must-revalidate
expires: 0
location: https://s.pubmine.com/match?bidder_id=22&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7cd10618c185f5319101f0ef6f837bf3
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=7cd10618c185f5319101f0ef6f837bf3; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 15 Sep 2022 06:25:32 GMT
content-length: 0
x-envoy-upstream-service-time: 1
server: ayl-lb-fra02
X-Firefox-Spdy: h2
contextual.media.net/checksync.php?cid=8CU8HDVRS&cs=13
23.38.200.22200 OK 8.2 kB URL HTTP/2 contextual.media.net/checksync.php?cid=8CU8HDVRS&cs=13
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Hash 119b42cc70ed8f77cc6b049020a93b03
84feeee183a992f86ce6c998b3fde6ecf34e4ef7
dfdc3159fe0960c0a9c158fabfa02fa24afb577bfb10b244077f2ff487ac7ca3
GET /checksync.php?cid=8CU8HDVRS&cs=13 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Sat, 17 Sep 2022 06:25:32 GMT
date: Thu, 15 Sep 2022 06:25:32 GMT
content-length: 8247
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 15 Sep 2022 06:25:32 GMT
Connection: keep-alive
Vary: Accept-Encoding
u.openx.net/w/1.0/pd
35.244.159.8200 OK 20 B IP 35.244.159.8:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /w/1.0/pd HTTP/1.1
Host: u.openx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: text/html
content-length: 20
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58366/occ?uid=08c0c5f5-93cf-4890-a127-705ab458628d
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58366/occ?uid=08c0c5f5-93cf-4890-a127-705ab458628d
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58366/occ?uid=08c0c5f5-93cf-4890-a127-705ab458628d HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:32 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58366/occ?uid=08c0c5f5-93cf-4890-a127-705ab458628d&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFzFImMCEIJVg_4fZFVuoFrOHnuHbcEFEgEBAQEWJGMsYwAAAAAA_eMAAA&S=AQAAAquJOYDeEkOSHhzRMkVPxAg; Expires=Fri, 15 Sep 2023 12:25:32 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D10%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
37.252.173.22307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D10%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
IP 37.252.173.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D10%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D10%2526external_user_id%253D%2524UID%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D
AN-X-Request-Uuid: 735d4b56-839b-4d2a-8964-3b83142b64bc
Set-Cookie: uuid2=406319912897932333; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 06:25:32 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
151.101.85.108200 OK 506 B URL HTTP/1.1 acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
IP 151.101.85.108:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (855)
Hash b5df0fbc24b9c2e120c7adb1cd618f25
8ced45952c9a51b4e6689cd886e556719fa077b5
54020af72caa42494902c2e0d1fc011e0228df93d5531ef2f820af61528b3b63
GET /ib/static/usersync/v3/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 506
Server: nginx/1.13.10
Content-Type: text/html
Last-Modified: Fri, 20 May 2016 02:07:09 GMT
ETag: W/"573e714d-3e3"
Expires: Thu, 06 May 2021 05:24:22 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 15 Sep 2022 06:25:32 GMT
Age: 11408466
X-Served-By: cache-lga13623-LGA, cache-bma1661-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 445, 1027
X-Timer: S1663223132.440780,VS0,VE0
Vary: Accept-Encoding
s.pubmine.com/wl_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg
63.33.106.135200 OK 43 B URL HTTP/1.1 s.pubmine.com/wl_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /wl_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 43
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:32 GMT
Set-Cookie: tuuid=60fc2eb6-b97c-4e8f-b13c-b6ab0993ead5; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
c=1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 9.5 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18100)
Hash 5c11e730675f95ef3e09fd3d2196bf1d
9d10fe6c5980b12cc1451a49b9562a961313344e
090d3578c840853a44ad9946752a2a7d775be3adf468d128126ab6822615ff44
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Tue, 13 Sep 2022 16:52:30 GMT
Content-Encoding: gzip
Content-Length: 9452
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=53161
Expires: Thu, 15 Sep 2022 21:11:33 GMT
Date: Thu, 15 Sep 2022 06:25:32 GMT
Connection: keep-alive
Vary: Accept-Encoding
sync.teads.tv/iframe
23.195.255.234200 OK 153 B IP 23.195.255.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5dec390c30269b3d699698d2e746b1a1
05479d595419c404bbd3428da1066df7bd2472bf
716a727e47216ad28191f60fb09d59015b1bcb3df8cc32b5bb94f73d534a5732
GET /iframe HTTP/1.1
Host: sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: akka-http/10.2.8
content-length: 153
expires: Thu, 15 Sep 2022 06:25:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 15 Sep 2022 06:25:32 GMT
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58366/occ?uid=08c0c5f5-93cf-4890-a127-705ab458628d&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58366/occ?uid=08c0c5f5-93cf-4890-a127-705ab458628d&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58366/occ?uid=08c0c5f5-93cf-4890-a127-705ab458628d&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 06:25:32 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFzFImMCEOjRZPeap1M6f3ravYh_Hh4FEgEBAQEWJGMsYwAAAAAA_eMAAA&S=AQAAAhNrsBjvJe2p2eGyqbpOkSk; Expires=Fri, 15 Sep 2023 12:25:32 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D16%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%24EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ=
37.252.173.22307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D16%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%24EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ=
IP 37.252.173.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D16%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%24EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ= HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D16%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D%2526external_user_id%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ%3D
AN-X-Request-Uuid: 281a6c67-22ff-4998-819b-c20ef0613931
Set-Cookie: uuid2=5388861121569978665; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 06:25:32 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash c897db39e6c4051f733398b2755d3501
725762c85a8ba5f257767371effa2659358840eb
2a167da761c036b27b89d23e1f57b6ba6fb4ca71e5c5bb12b6fe02044f457cc2
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 14 Sep 2022 21:55:21 GMT
Expires: Thu, 15 Sep 2022 21:55:21 GMT
ETag: "725762c85a8ba5f257767371effa2659358840eb"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 399eaf94e14fa823a95512456f05a204
af1a6ad95ba54b4cd588cb5ef4ccdd8884d56321
aa87b71cd0d290c1d0569752e4ae7358c4476a120ce27198bbb2827b805316c2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 04:35:35 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Ta1B27-F-ubOrHXEXX44Elkl3wX0EIdDqNMy1d3h3PAqVnC27Vl2MA==
Age: 6597
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D10%2526external_user_id%253D%2524UID%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D
37.252.173.22302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D10%2526external_user_id%253D%2524UID%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D
IP 37.252.173.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D10%2526external_user_id%253D%2524UID%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://s.pubmine.com/match?bidder_id=10&external_user_id=0&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
AN-X-Request-Uuid: 39234db2-1c63-4b53-b955-a2fa612809ec
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 42f3801cdc82edf316b43dd9f98ac376
0b50040a1e6763560445f29991d194a621e46aef
717e9534d256fb81a083fcb0e8ec219de869848a23313144c4d489de97e8f6e1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 01:57:48 GMT
Expires: Wed, 21 Sep 2022 01:57:47 GMT
Etag: "0b50040a1e6763560445f29991d194a621e46aef"
Cache-Control: max-age=501734,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af49220d470b49-OSL
wordadsmediafiles.files.wordpress.com/2022/04/houseads-pocketcasts-set4-yournextfavoritepodcast-1x-house-ad-728x90-upload.png
192.0.72.25200 OK 22 kB URL HTTP/2 wordadsmediafiles.files.wordpress.com/2022/04/houseads-pocketcasts-set4-yournextfavoritepodcast-1x-house-ad-728x90-upload.png
IP 192.0.72.25:0
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash e36237641cc80ef48b3fb1fa5d1b99ab
2642ac426c7d51c4fb69f28baae693920b313e42
c2b3dad3b33b8d8d95c748e18511daadee1851a9f773889f7d52677cddbdbbb3
GET /2022/04/houseads-pocketcasts-set4-yournextfavoritepodcast-1x-house-ad-728x90-upload.png HTTP/1.1
Host: wordadsmediafiles.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: image/png
content-length: 21456
last-modified: Tue, 26 Apr 2022 20:08:22 GMT
expires: Fri, 07 Oct 2022 02:12:58 GMT
x-orig-src: 01_mogdir
access-control-allow-credentials: true
access-control-allow-origin: https://wordadsmediafiles.wordpress.com
vary: Origin
x-nc: HIT arn 25 np
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
eb2.3lift.com/getuid?gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D12%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
13.248.245.213302 Found 0 B URL HTTP/2 eb2.3lift.com/getuid?gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D12%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
IP 13.248.245.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D12%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:32 GMT
content-length: 0
set-cookie: tluid=329236012818276670543; Max-Age=7776000; Expires=Wed, 14 Dec 2022 06:25:32 GMT; Path=/; Domain=.3lift.com; SameSite=None; Secure
location: /getuid?ld=1&gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D12%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
cache-control: no-cache, no-store, must-revalidate
p3p: policyref="http://cdn.3lift.com/w3c/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
X-Firefox-Spdy: h2
wordadsmediafiles.files.wordpress.com/2022/04/houseads-wpapp-set4-charcoal-1x-160x600-upload.png
192.0.72.25200 OK 33 kB URL HTTP/2 wordadsmediafiles.files.wordpress.com/2022/04/houseads-wpapp-set4-charcoal-1x-160x600-upload.png
IP 192.0.72.25:0
File type PNG image data, 160 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash 7161a839b6701cf56067481dbd22657f
28b7a57d6df0b8a349886d6a3022d4b400d22117
ca20c3eb82e5534d85d3c0a938a52a0642be2d1b545b4fe99ad80dce7889b18f
GET /2022/04/houseads-wpapp-set4-charcoal-1x-160x600-upload.png HTTP/1.1
Host: wordadsmediafiles.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: image/png
content-length: 32843
last-modified: Tue, 26 Apr 2022 20:22:12 GMT
expires: Thu, 29 Sep 2022 00:28:31 GMT
x-orig-src: 01_mogdir
access-control-allow-credentials: true
access-control-allow-origin: https://wordadsmediafiles.wordpress.com
vary: Origin
x-nc: HIT arn 25 np
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e522cdbfc153a1051b9bcab6b3fd3575
1abc50db4690db4a665bc6b1fb15f4a17bf3f3b2
e5bc537c23573469ef2b7683e1edf8dd6b38dd44e5d498f5fda6ea200b7244b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2179
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 05:49:13 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D16%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D%2526external_user_id%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ%3D
37.252.173.22302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D16%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D%2526external_user_id%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ%3D
IP 37.252.173.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fs.pubmine.com%252Fmatch%253Fbidder_id%253D16%2526ssp_data%253D08c0c5f5-93cf-4890-a127-705ab458628d%2526rid%253D%2526us_privacy%253D%2526gdpr%253D0%2526gdpr_consent%253D%2526external_user_id%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ%3D HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://cs.emxdgt.com/umcheck?apnxid=0&redirect=https://s.pubmine.com/match?bidder_id=16&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=$EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ=
AN-X-Request-Uuid: 82c3c191-9aed-4c81-84dd-c08a29e6c792
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
185.64.190.78200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 185.64.190.78:0
File type ASCII text, with no line terminators
Hash 134c5be326b297b945690656578e6363
846450777614676cef5befd43d756202d142d26f
34bb5d7afe3b618c4fc56ba2c9803391742cd45cfa63fa9e3b0ce68f6922246b
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Tue, 13 Dec 2022 22:06:17 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Thu, 15 Sep 2022 06:25:31 GMT
content-length: 60
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1f2ff0fea7939e810ad4c60fe553b6f4
16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0
9b46d70511b3a16eb5a682cd0acb13f185570ca55be11ccbcff285428e58e2e4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 17:09:30 GMT
Expires: Tue, 20 Sep 2022 17:09:29 GMT
Etag: "16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0"
Cache-Control: max-age=470036,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af49225d8a0b49-OSL
cs.emxdgt.com/umcheck?apnxid=0&redirect=https://s.pubmine.com/match?bidder_id=16&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=$EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ=
3.75.3.113200 OK 43 B URL HTTP/2 cs.emxdgt.com/umcheck?apnxid=0&redirect=https://s.pubmine.com/match?bidder_id=16&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=$EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ=
IP 3.75.3.113:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /umcheck?apnxid=0&redirect=https://s.pubmine.com/match?bidder_id=16&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=$EMXUID&b64_redirect=aHR0cHM6Ly9zLnB1Ym1pbmUuY29tL21hdGNoP2JpZGRlcl9pZD0xNiZzc3BfZGF0YT0wOGMwYzVmNS05M2NmLTQ4OTAtYTEyNy03MDVhYjQ1ODYyOGQmcmlkPSZ1c19wcml2YWN5PSZnZHByPTAmZ2Rwcl9jb25zZW50PSZleHRlcm5hbF91c2VyX2lkPSRFTVhVSUQ= HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
date: Thu, 15 Sep 2022 06:25:32 GMT
x-nosync: na;
content-length: 43
X-Firefox-Spdy: h2
eb2.3lift.com/getuid?ld=1&gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D12%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/getuid?ld=1&gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D12%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /getuid?ld=1&gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D12%26external_user_id%3D%24UID%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1f2ff0fea7939e810ad4c60fe553b6f4
16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0
9b46d70511b3a16eb5a682cd0acb13f185570ca55be11ccbcff285428e58e2e4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 17:09:30 GMT
Expires: Tue, 20 Sep 2022 17:09:29 GMT
Etag: "16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0"
Cache-Control: max-age=470036,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af492158580afe-OSL
x.bidswitch.net/sync?ssp=themediagrid&gdpr=0&gdpr_consent=&us_privacy=
3.121.59.219302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?ssp=themediagrid&gdpr=0&gdpr_consent=&us_privacy=
IP 3.121.59.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=themediagrid&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 06:25:32 GMT
Location: https://x.bidswitch.net/ul_cb/sync?ssp=themediagrid&gdpr=0&gdpr_consent=&us_privacy=
Set-Cookie: tuuid=0961aae3-ec6b-41da-a4a5-f93464d4b0af; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
x.bidswitch.net/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D18%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
3.121.59.219302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D18%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
IP 3.121.59.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D18%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 06:25:32 GMT
Location: https://x.bidswitch.net/ul_cb/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D18%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
Set-Cookie: tuuid=001b4c50-8cb2-4f89-a4b2-c57170057a8a; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
sync.go.sonobi.com/us.gif?loc=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D13%26external_user_id%3D%5BUID%5D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
69.166.1.10302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/us.gif?loc=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D13%26external_user_id%3D%5BUID%5D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
IP 69.166.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /us.gif?loc=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D13%26external_user_id%3D%5BUID%5D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-7-24
X-Xss-Protection: 0
Location: https://s.pubmine.com/match?bidder_id=13&external_user_id=9a390af2-f8f9-45da-b4de-bb438b58d055&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
Server: sonobi-go
Set-Cookie: __uis=9a390af2-f8f9-45da-b4de-bb438b58d055; expires=Sat, 15 Oct 2022 06:25:31 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s8724|YyLFT; path=/; domain=.go.sonobi.com; SameSite=None; secure
s.pubmine.com/wl_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE
63.33.106.135200 OK 43 B URL HTTP/1.1 s.pubmine.com/wl_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /wl_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 43
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:32 GMT
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
x.bidswitch.net/sync?ssp=wordpress&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&user_id=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
3.121.59.219302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?ssp=wordpress&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&user_id=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
IP 3.121.59.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=wordpress&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&user_id=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 06:25:32 GMT
Location: https://x.bidswitch.net/ul_cb/sync?ssp=wordpress&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&user_id=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
Set-Cookie: tuuid=901f00f4-ac84-4758-8382-a56d3d585efa; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663223132; path=/; expires=Fri, 15-Sep-2023 06:25:32 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
x.bidswitch.net/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D1%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D
3.121.59.219302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D1%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D
IP 3.121.59.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D1%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 06:25:32 GMT
Location: https://s.pubmine.com/match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&gdpr=0&gdpr_consent=&us_privacy=
Content-Length: 0
Connection: keep-alive
ssc-cms.33across.com/ps/?m=xch&rt=html&id=0010b00002CphGRAAZ&gdpr_consent=&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D6%26external_user_id%3D33XUSERID33X%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D
67.202.105.22204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?m=xch&rt=html&id=0010b00002CphGRAAZ&gdpr_consent=&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D6%26external_user_id%3D33XUSERID33X%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D
IP 67.202.105.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?m=xch&rt=html&id=0010b00002CphGRAAZ&gdpr_consent=&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D6%26external_user_id%3D33XUSERID33X%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP001
date: Thu, 15 Sep 2022 06:25:32 GMT
X-Firefox-Spdy: h2
sync.inmobi.com/prebid?gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D20%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%7BID5UID%7D
20.127.253.7302 Found 598 B URL HTTP/2 sync.inmobi.com/prebid?gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D20%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%7BID5UID%7D
IP 20.127.253.7:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (598), with no line terminators
Hash 7ee2b592965c2b3689f5c2038df2fe74
f3db487537a952cdd501550ce30f0f8de8e3f933
6b4e9f7fb4274cf2a138391e538c6071e0362d4173aa9cd8799895b7b576df36
GET /prebid?gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D20%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%7BID5UID%7D HTTP/1.1
Host: sync.inmobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: text/html; charset=utf-8
content-length: 598
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
location: https://id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&us_privacy=&callback=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D20%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%7BID5UID%7D
vary: Accept
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash c956f509c33710f079e75aedbe501b8b
b83e724b1baf1007150a2db48b05ebc659728804
01d1bf7ca7c5f2b9359e2c0b255028b081688ef60c5eb42995645396b82c8112
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 04:56:10 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AfnuGcSPNm7NwVriOY6BPTXJTi84bJAeoW5FrvLmMTv3CQQfNfJtPg==
Age: 5362
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a27e0f0ed817ca6e1be24ba7d1d46e66
1ec7fc3da2bfa4605bac65d62d740dbb435ca224
c8abf61930626cb22d73981209295f102c43a8a47b550ae6ad76d06940a7a499
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 13:18:34 GMT
Expires: Tue, 20 Sep 2022 13:18:33 GMT
Etag: "1ec7fc3da2bfa4605bac65d62d740dbb435ca224"
Cache-Control: max-age=456180,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af4922e9600afe-OSL
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6a591b8589dcbc2414c73ba5e75fb0a6
a5a33433c78233d74917a1656eb0ce56cb4dfc05
810ae202353f96759cff200408d2a85de0d5a9bf8f82699130f979a2a10ce045
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2718
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:32 GMT
Last-Modified: Thu, 15 Sep 2022 05:40:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ssc-cms.33across.com/ps/?ri=0010b00002CphGRAAZ&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D6%26external_user_id%3D33XUSERID33X%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
67.202.105.22204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?ri=0010b00002CphGRAAZ&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D6%26external_user_id%3D33XUSERID33X%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
IP 67.202.105.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?ri=0010b00002CphGRAAZ&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D6%26external_user_id%3D33XUSERID33X%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP003
date: Thu, 15 Sep 2022 06:25:32 GMT
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?ssp=themediagrid&gdpr=0&gdpr_consent=&us_privacy=
3.121.59.219200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?ssp=themediagrid&gdpr=0&gdpr_consent=&us_privacy=
IP 3.121.59.219:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=themediagrid&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Length: 43
Connection: keep-alive
x.bidswitch.net/ul_cb/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D18%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
3.121.59.219302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/ul_cb/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D18%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D
IP 3.121.59.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/check_uuid/https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D18%26external_user_id%3D%24%7BBSW_UUID%7D%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 06:25:32 GMT
Location: https://s.pubmine.com/match?bidder_id=18&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
Content-Length: 0
Connection: keep-alive
s.pubmine.com/match?bidder_id=23&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7949788417183121912
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=23&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7949788417183121912
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=23&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7949788417183121912 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
rum=!23,7949788417183121912,432465932; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
x.bidswitch.net/ul_cb/sync?ssp=wordpress&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&user_id=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
3.121.59.219302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?ssp=wordpress&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&user_id=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
IP 3.121.59.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?ssp=wordpress&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&user_id=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 06:25:32 GMT
Location: //s.pubmine.com/match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
Set-Cookie: ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d; path=/; expires=Thu, 15-Sep-2022 06:30:32 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
s.pubmine.com/imp_pixel?pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg&tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&rid=
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/imp_pixel?pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg&tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&rid=
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /imp_pixel?pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg&tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&rid= HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
secure.adnxs.com/async_usersync?cbfn=AN_async_load
37.252.172.123307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/async_usersync?cbfn=AN_async_load
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=AN_async_load HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://secure.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DAN_async_load
AN-X-Request-Uuid: 44a578d2-d3d6-4ab1-a30d-56d74b27cc4e
Set-Cookie: uuid2=2703333408532863953; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 06:25:32 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
s.pubmine.com/match?bidder_id=10&external_user_id=0&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=10&external_user_id=0&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=10&external_user_id=0&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent= HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
rum=!10,0,432465932!23,7949788417183121912,432465932; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
s.pubmine.com/match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&gdpr=0&gdpr_consent=&us_privacy=
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&gdpr=0&gdpr_consent=&us_privacy=
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
s.pubmine.com/imp_pixel?pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE&tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&rid=
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/imp_pixel?pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE&tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&rid=
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /imp_pixel?pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE&tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&rid= HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
s.pubmine.com/match?bidder_id=13&external_user_id=9a390af2-f8f9-45da-b4de-bb438b58d055&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=13&external_user_id=9a390af2-f8f9-45da-b4de-bb438b58d055&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=13&external_user_id=9a390af2-f8f9-45da-b4de-bb438b58d055&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent= HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
rum=!13,9a390af2-f8f9-45da-b4de-bb438b58d055,432465932!10,0,432465932!23,7949788417183121912,432465932; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
s.pubmine.com/match?bidder_id=21&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=0
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=21&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=0
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=21&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=0 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.casalemedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
rum=!21,0,432465932!13,9a390af2-f8f9-45da-b4de-bb438b58d055,432465932!10,0,432465932!23,7949788417183121912,432465932; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=148345
expires: Fri, 16 Sep 2022 23:37:57 GMT
date: Thu, 15 Sep 2022 06:25:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a27e0f0ed817ca6e1be24ba7d1d46e66
1ec7fc3da2bfa4605bac65d62d740dbb435ca224
c8abf61930626cb22d73981209295f102c43a8a47b550ae6ad76d06940a7a499
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 13:18:34 GMT
Expires: Tue, 20 Sep 2022 13:18:33 GMT
Etag: "1ec7fc3da2bfa4605bac65d62d740dbb435ca224"
Cache-Control: max-age=456180,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af4923ca160afe-OSL
s.pubmine.com/match?bidder_id=18&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=18&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=18&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent= HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
3.75.3.113302 Found 0 B URL HTTP/2 cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent= HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html
date: Thu, 15 Sep 2022 06:25:32 GMT
location: https://ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
set-cookie: euid=57491663223132823913f1; Max-Age=2592000; Expires=Sat, 15 Oct 2022 06:25:32 GMT; Domain=.emxdgt.com; Path=/; HttpOnly
content-length: 0
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=gumgum HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=gumgum
date: Thu, 15 Sep 2022 06:25:32 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d3b52f2a6f00601cc8e611af6c660786
181ae6e29a0021eb8b2aa19977bbae7ad8752ad3
6dc9e29fe6b857dd4b30485393084800b1abc9c1b5e8a117e90dd6ab678bf91e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DC9E29FE6B857DD4B30485393084800B1ABC9C1B5E8A117E90DD6AB678BF91E"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17597
Expires: Thu, 15 Sep 2022 11:18:49 GMT
Date: Thu, 15 Sep 2022 06:25:32 GMT
Connection: keep-alive
s.pubmine.com/match?bidder_id=22&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7cd10618c185f5319101f0ef6f837bf3
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=22&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7cd10618c185f5319101f0ef6f837bf3
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=22&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=7cd10618c185f5319101f0ef6f837bf3 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
rum=!22,7cd10618c185f5319101f0ef6f837bf3,432465932!21,0,432465932!13,9a390af2-f8f9-45da-b4de-bb438b58d055,432465932!10,0,432465932!23,7949788417183121912,432465932; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
s.pubmine.com/match?bidder_id=25&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=e_73996268-ee97-45ed-94c4-7bbd18a07a46
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=25&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=e_73996268-ee97-45ed-94c4-7bbd18a07a46
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=25&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&rid=&us_privacy=&gdpr=0&gdpr_consent=&external_user_id=e_73996268-ee97-45ed-94c4-7bbd18a07a46 HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
tuuid_lu=1663223132; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
rum=!25,e_73996268-ee97-45ed-94c4-7bbd18a07a46,432465932!22,7cd10618c185f5319101f0ef6f837bf3,432465932!21,0,432465932!13,9a390af2-f8f9-45da-b4de-bb438b58d055,432465932!10,0,432465932!23,7949788417183121912,432465932; SameSite=None; Secure; path=/; expires=Sat, 14-Sep-2024 06:25:32 GMT
Content-Encoding: gzip
secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
37.252.172.123307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
AN-X-Request-Uuid: d762ee12-61a8-4652-bc77-97a1f14f0da8
Set-Cookie: uuid2=7969951810043893797; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 06:25:32 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
151.101.86.49503 Service Unavailable 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
IP 151.101.86.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
server: Varnish
retry-after: 0
accept-ranges: bytes
date: Thu, 15 Sep 2022 06:25:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663223133.945183,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
37.252.173.22307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
IP 37.252.173.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA== HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
AN-X-Request-Uuid: 962e0779-7181-4813-912e-b980b46e0afd
Set-Cookie: uuid2=6118874981463467610; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 06:25:32 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d1cac607f303cbde643e105639930562
8cf55530cb97ea783a8a48bdff38a3dda98a3e1d
223ddb8d6c2e421a7ad2f44ba9d4ba1ce4b2203c7e51dfa0ca5615acda4f0c1e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 00:29:49 GMT
Expires: Wed, 21 Sep 2022 00:29:48 GMT
Etag: "8cf55530cb97ea783a8a48bdff38a3dda98a3e1d"
Cache-Control: max-age=496455,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af4922ce050b49-OSL
x.bidswitch.net/sync?ssp=gumgum2&user_id=e_73996268-ee97-45ed-94c4-7bbd18a07a46&gdpr=0&gdpr_consent=&us_privacy=
3.121.59.219200 OK 43 B URL HTTP/1.1 x.bidswitch.net/sync?ssp=gumgum2&user_id=e_73996268-ee97-45ed-94c4-7bbd18a07a46&gdpr=0&gdpr_consent=&us_privacy=
IP 3.121.59.219:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?ssp=gumgum2&user_id=e_73996268-ee97-45ed-94c4-7bbd18a07a46&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Length: 43
Connection: keep-alive
id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&us_privacy=&callback=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D20%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%7BID5UID%7D
162.19.138.118200 43 B URL HTTP/1.1 id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&us_privacy=&callback=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D20%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%7BID5UID%7D
IP 162.19.138.118:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/495/0.gif?gdpr_consent=&gdpr=0&us_privacy=&callback=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D20%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D%7BID5UID%7D HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 15-Sep-2022 06:30:32 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 15-Sep-2022 06:30:32 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 15-Sep-2022 06:30:32 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 15-Sep-2022 06:30:32 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 15-Sep-2022 06:30:32 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 15-Sep-2022 06:30:32 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 15 Sep 2022 06:25:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
secure.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DAN_async_load
37.252.172.123200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DAN_async_load
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DAN_async_load HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: affad2c6-8f51-4447-b4bc-1cbdbb7739f4
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
simage4.pubmatic.com/AdServer/SPug?o=1&p=156204&sc=1&u=754A028F-7825-4313-AAAD-CFEBE6C09438&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=156204&sc=1&u=754A028F-7825-4313-AAAD-CFEBE6C09438&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/SPug?o=1&p=156204&sc=1&u=754A028F-7825-4313-AAAD-CFEBE6C09438&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:32 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ic.tynt.com/r/d?m=xch&rt=html&gdpr=0&gdpr_consent=&us_privacy=&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D24%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D33XUSERID33X&id=zzz000000000002zzz
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/r/d?m=xch&rt=html&gdpr=0&gdpr_consent=&us_privacy=&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D24%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D33XUSERID33X&id=zzz000000000002zzz
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/d?m=xch&rt=html&gdpr=0&gdpr_consent=&us_privacy=&ru=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D24%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D33XUSERID33X&id=zzz000000000002zzz HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 15 Sep 2022 06:25:33 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 792ef6336ac67eec05c802ebd9f54acd
e625884330875be6e7c0a297d50077037f3e6152
fa1033e2724e834db1f9fa5ed348cecf820d630d1fee5c6267650108e6989077
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5093
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 05:00:40 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
s.pubmine.com/match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
63.33.106.135200 OK 51 B URL HTTP/1.1 s.pubmine.com/match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent=
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash af12f180eaf09894f594c9a1a7e81358
7821845465a058c38c49f50775a57f5af383c966
750ad7f7edc53ea6d8caff0438f6ac9e2d76644b5d1a6e83fc831e639fa52f53
GET /match?bidder_id=1&external_user_id=&ssp_data=08c0c5f5-93cf-4890-a127-705ab458628d&gdpr=0&gdpr_consent= HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
eus.rubiconproject.com/usync.html?p=gumgum
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=gumgum
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=gumgum HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 15 Sep 2022 06:25:33 GMT
Connection: keep-alive
Vary: Accept-Encoding
r.casalemedia.com/usermatch?cb=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D21%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D&gdpr=0&gdpr_consent=&s=197465&us_privacy=&C=1
104.18.19.126200 OK 1.6 kB URL HTTP/2 r.casalemedia.com/usermatch?cb=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D21%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D&gdpr=0&gdpr_consent=&s=197465&us_privacy=&C=1
IP 104.18.19.126:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash f585b2394eaddfae8309905cea6d8e99
8a69abc53c8fa2d697dcc60a4423bfa68b40578a
2775421ce678febfa1bf038ae36ee79f24f524b6300d2dcaa427e1e8fac2c3a0
GET /usermatch?cb=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D21%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D&gdpr=0&gdpr_consent=&s=197465&us_privacy=&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saashika.000webhostapp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: text/html
cf-ray: 74af4922be67b4ff-OSL
cache-control: no-cache
expires: 0
vary: Is-Traffic-Usersync, Accept-Encoding
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3nCV97nc7NsfIwqjJzOEBtnkWdS85Lraiz4luYg7nsz4ISs9RkDGkSmaK5JU7Ugu51NV6kyPhZ2QpLZfq7b8Yn%2BHsdZHZOHbhyreLOx8qkEaOd%2FKBLVSoIH2gjCNKouYvmyY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 703e5cf415e3b1e970207e72ddd16f6d
48a62e1f579cd200000e8b2f3654a7bae3d15fb2
b5ca1bf129bee868bacebf676def646a0d5bc793bce1209d6d835ea3b3aada91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5239
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 04:58:14 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV83Mzk5NjI2OC1lZTk3LTQ1ZWQtOTRjNC03YmJkMThhMDdhNDY=&gdpr=0&gdpr_consent=
142.250.74.98302 Found 364 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV83Mzk5NjI2OC1lZTk3LTQ1ZWQtOTRjNC03YmJkMThhMDdhNDY=&gdpr=0&gdpr_consent=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8ad355d3bed4cd5dffcea11048c24b4b
5020b4c478251491ade46a271e4f34181760ab78
1e6ae56cfef87ac64185743e1ed62b89b635e94c011cb542f78ff5e52b8b4ec2
GET /pixel?google_nid=gumgum_dbm&google_hm=ZV83Mzk5NjI2OC1lZTk3LTQ1ZWQtOTRjNC03YmJkMThhMDdhNDY=&gdpr=0&gdpr_consent= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV83Mzk5NjI2OC1lZTk3LTQ1ZWQtOTRjNC03YmJkMThhMDdhNDY=&gdpr=0&gdpr_consent=&google_tc=
date: Thu, 15 Sep 2022 06:25:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 364
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 15-Sep-2022 06:40:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
185.29.134.248302 Moved Temporarily 0 B URL HTTP/1.1 sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
IP 185.29.134.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d HTTP/1.1
Host: sync.mathtag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Access-Control-Allow-Origin: *
Server: MT3 4505 5b23575 master cdg-pixel-x9 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: uuid=70c96322-c55d-4e00-9c62-a88329d3599e; domain=.mathtag.com; path=/; expires=Fri, 13-Oct-2023 06:25:33 GMT; SameSite=None; Secure
location: https://usersync.gumgum.com/usersync?b=mmh&i=70c96322-c55d-4e00-9c62-a88329d3599e&gdpr=0&gdpr_consent=
Expires: Thu, 15 Sep 2022 06:25:32 GMT
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c203e97b0212cf14f7c7614874717959
db4ae2bafd08aad113ffc7fbbc2bbef38352f939
508d5c759f11e8084475d5dd026da95c3fc0f95579bce71c22a2af3c1ccbc4db
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3628
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 05:25:05 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83efff2f586bc0a2df4f157ec26e6bb2
2499cb056f6d45a2c8516e7bb830b73174108243
d825fc8e8625b9771681fbd974d42b7f408014bdc0b70010b3298570d15477d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2658
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 05:41:15 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV83Mzk5NjI2OC1lZTk3LTQ1ZWQtOTRjNC03YmJkMThhMDdhNDY=&gdpr=0&gdpr_consent=&google_tc=
142.250.74.98200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV83Mzk5NjI2OC1lZTk3LTQ1ZWQtOTRjNC03YmJkMThhMDdhNDY=&gdpr=0&gdpr_consent=&google_tc=
IP 142.250.74.98:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=gumgum_dbm&google_hm=ZV83Mzk5NjI2OC1lZTk3LTQ1ZWQtOTRjNC03YmJkMThhMDdhNDY=&gdpr=0&gdpr_consent=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Thu, 15 Sep 2022 06:25:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:33 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
37.252.173.22302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
IP 37.252.173.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
AN-X-Request-Uuid: 07ada8e2-0d8c-4f82-8f12-dc2d9bbb986b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
63.32.131.244200 OK 43 B URL HTTP/2 pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
IP 63.32.131.244:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 13e1c7a2184e36d7ae519e99b1aa226f
355ccad4eac39838e1cc76fd0b670fd2ea1e5aa3
48a33ca9f42b91902d57ad8ac52e1ce32b92c8c10c732f2dbb6fe960ebfd9438
GET /sync/gumgum?gdpr=0&gdpr_consent= HTTP/1.1
Host: pr-bh.ybp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:33 GMT
content-type: image/gif
content-length: 43
age: 0
strict-transport-security: max-age=31536000
server: ATS
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
X-Firefox-Spdy: h2
creativecdn.com/cm-notify?pi=gumgum
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm-notify?pi=gumgum HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:33 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=mufA0QOdNrF3YdXjMBuH;Path=/;Domain=.creativecdn.com;Expires=Fri, 15-Sep-2023 06:25:33 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1663223133;Path=/;Domain=.creativecdn.com;Expires=Fri, 15-Sep-2023 06:25:33 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/cm-notify?pi=gumgum&tc=1
content-length: 0
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
37.252.172.123302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://usersync.gumgum.com/usersync?b=apn&i=0
AN-X-Request-Uuid: c3c0da19-f53f-4dd7-bf51-24808a9c062e
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
3.75.3.113200 OK 43 B URL HTTP/2 cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
IP 3.75.3.113:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA== HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
date: Thu, 15 Sep 2022 06:25:33 GMT
x-nosync: na;
content-length: 43
X-Firefox-Spdy: h2
creativecdn.com/cm-notify?pi=gumgum&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=gumgum&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:33 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
70.42.32.127302 Found 0 B URL HTTP/1.1 sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
IP 70.42.32.127:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Length: 0
Connection: close
set-cookie: obuid=a0e9a599-ce56-45c1-ace2-e1e1932b9af3; Max-Age=7776000; Expires=Wed, 14 Dec 2022 06:25:33 GMT; Path=/; Domain=.outbrain.com
location: https://usersync.gumgum.com/usersync?b=obn&i=ENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29
X-TraceId: 8755862ec2aafdeb6796092fba397c78
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 37811e9a96dfe3b29103af5ed614ec2e
53d9e242a420177bfc7cb202cf4e093121a2a5f1
2daac21bd9f882a8d6ab58d49ad1a5aa36cc7261931a8dd0ffbe43180155667a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 01:55:53 GMT
Expires: Wed, 21 Sep 2022 01:55:52 GMT
Etag: "53d9e242a420177bfc7cb202cf4e093121a2a5f1"
Cache-Control: max-age=501618,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74af4926dc700afe-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash ed2f81310fc165227216239733c209ed
6ca2582abd7217e69c33c951423d3a897bc4c2d5
1ef558601afbbaaabf54bf74323779e9516db1393988ddcb366537f134491833
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 05:46:52 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: moCnyf9Fs6yTHrLP_uH-QeUohElRgFI9R_8VnYH21OObF8bNldSGvw==
Age: 2321
sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
132.226.41.106204 No Content 0 B URL HTTP/2 sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
IP 132.226.41.106:0
ASN #31898 ORACLE-BMC-31898
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /services?srv=cs&pid=65&us_privacy=&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D HTTP/1.1
Host: sync.technoratimedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 15 Sep 2022 06:25:33 GMT
set-cookie: tads_uid=GDPR; Max-Age=157680000; Expires=Tue, 14 Sep 2027 06:25:33 GMT; Path=/; Domain=.technoratimedia.com; Secure; SameSite=None
access-control-allow-origin: https://rtb.gumgum.com/
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,HEAD,OPTIONS
x-varnish: 601316438
age: 0
via: 1.1 varnish
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash d67516e829b343c87d6e244bc8928e15
0e2200b749eb0615fe93f85b3f5752b258239985
21ed6751e3aead39b92fb632acc375e9e44f3eb2363de83b3e76bb375624c939
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 05:24:01 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: npekNgxZdss0BKOnD75pkOxkR6MZDsw5lKDty6sth4FB6t9vxacMWQ==
Age: 3692
ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
18.195.17.239302 Found 0 B URL HTTP/2 ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
IP 18.195.17.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:33 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
set-cookie: tuuid=80dbf3bf-7eeb-4758-a92b-a822e2959123; Expires=Wed, 14 Dec 2022 06:25:33 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1663223133; Expires=Wed, 14 Dec 2022 06:25:33 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
185.86.137.121302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
IP 185.86.137.121:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Thu, 15 Sep 2022 06:25:32 GMT
location: https://usersync.gumgum.com/usersync?b=sad&i=8729359165051830754
set-cookie: pid=8729359165051830754; expires=Mon, 16 Oct 2023 06:24:33 GMT; domain=smartadserver.com; path=/; secure; samesite=none
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash d67516e829b343c87d6e244bc8928e15
0e2200b749eb0615fe93f85b3f5752b258239985
21ed6751e3aead39b92fb632acc375e9e44f3eb2363de83b3e76bb375624c939
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101923
Date: Thu, 15 Sep 2022 06:25:33 GMT
Etag: "6321a0b9-1d7"
Expires: Fri, 16 Sep 2022 10:44:16 GMT
Last-Modified: Wed, 14 Sep 2022 09:36:57 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I-GOz9iWK5jkA-qdSQ9hv9bFgNstVqKmqgGvJGSBPB2uZaHrRUS2wQ==
Age: 4040
usersync.gumgum.com/usersync?b=apn&i=0
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=apn&i=0
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=apn&i=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
18.195.17.239200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
IP 18.195.17.239:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:33 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash fb91de58066ecd495797169353d7466b
7996272467fecdc8ba08339626d41b9c30bfd00e
034cb361beeb35749d60642aeb2887fc88e5be5aefdb5f799afc9f2abab23b52
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 14 Sep 2022 21:58:12 GMT
Expires: Thu, 15 Sep 2022 21:58:12 GMT
ETag: "7996272467fecdc8ba08339626d41b9c30bfd00e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
usersync.gumgum.com/usersync?b=mmh&i=70c96322-c55d-4e00-9c62-a88329d3599e&gdpr=0&gdpr_consent=
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=mmh&i=70c96322-c55d-4e00-9c62-a88329d3599e&gdpr=0&gdpr_consent=
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=mmh&i=70c96322-c55d-4e00-9c62-a88329d3599e&gdpr=0&gdpr_consent= HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=obn&i=ENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=obn&i=ENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=obn&i=ENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28Kk3duyxi3FwGJF0VZiwzasDEp8t9lMQVXAffsc4ITC7U4RbyZN8RT3ydUsp27BUV%29 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f2134af1e0e88b9f4e12aee8ef89f148
4586affbb6d279d17a01da455e045ea3ab92a7df
d6197b989eae03c3b6c5f2e65c782bf428132effda1028f67c7640033a9d11c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1855
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 05:54:38 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=rhy&i=OPTOUT HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=sad&i=8729359165051830754
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=sad&i=8729359165051830754
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=sad&i=8729359165051830754 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6101
Expires: Thu, 15 Sep 2022 08:07:14 GMT
Date: Thu, 15 Sep 2022 06:25:33 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 11109096fd224180f5db52dd46201a9f
50b3f3f452339bc76bf97cd4b9a447a2fcd5186f
684b5126ce546af2d69ce93ae175224b790e25337790333efb356e5c3e612c6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 231
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 06:21:42 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
usersync.gumgum.com/usersync?b=opx&i=4dcd1be3-02e5-4f64-9765-894768831d73
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=opx&i=4dcd1be3-02e5-4f64-9765-894768831d73
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=opx&i=4dcd1be3-02e5-4f64-9765-894768831d73 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6101
Expires: Thu, 15 Sep 2022 08:07:14 GMT
Date: Thu, 15 Sep 2022 06:25:33 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 5096143842ccc19eca470897decce9f0
38d55d4d7c6cb5f037c6e0f8ec529ee3ae5f40fc
358f90a77e0cee51621f6adaf3a06169d5e5f4aed1976275ea2fed5d6a74d5c7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 04:37:40 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Amt5nCK4JMxXM8zSH-cRJ9cTOVzJ5Rpu-Tus8onj2ZLDsjxpxBQYhQ==
Age: 6474
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b68b0a4-3ef2-47f6-b961-eb36f3ed8dc8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b68b0a4-3ef2-47f6-b961-eb36f3ed8dc8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c3e495b1e7dfdfbbe17f2bb41a038e9
765d006daafb904930cf3484390b2876c2c590e8
585756b5f5c9b3244857e18a8f162fa25a710e13eb8266d875dc9f8027a484cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b68b0a4-3ef2-47f6-b961-eb36f3ed8dc8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9989
x-amzn-requestid: 2cc5f037-cdcb-43ac-a613-67e68d93340f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeDF6E2XoAMFs6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63224bbf-1ff5541d74c3665e50613df7;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:46:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XA3SbeUsblm91EW_yakass2HV7vgTrvux_HFwEnmmwzST2lR0jP6Jg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:56:29 GMT
age: 30544
etag: "765d006daafb904930cf3484390b2876c2c590e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
usersync.gumgum.com/usersync?b=iex&i=0
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=iex&i=0
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=iex&i=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f42b72c3fd66a6758ebcf0ca8cc1a046
13d42d455f5131b7b861b97eb3f0e91236d4d222
4a07fcacde77dc890164fda9f295b61af6947b2d7f3f84f64749d93e3a1e5b99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10633
x-amzn-requestid: 8dbc7f5f-1cb9-4b45-913d-2d4db71449fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FSvG98IAMFeLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144f44-3094163533977c6d1ee90274;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:09:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5Gx5Pfp0fH7GtvITXwV1CVZlM6wbfIXmyk_4xZtIVf8qkmg0AyxBPQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:01 GMT
age: 36272
etag: "13d42d455f5131b7b861b97eb3f0e91236d4d222"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 40a6c8fe9d9db53b2610d4a2eea95cc2
bd8e6de57aa9d665077182875fb507211835d618
d24233a412f88ee16d7f13f2ea6b4592f727e263242988e79e360212016353ef
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 19 Sep 2022 03:16:55 GMT
ETag: "bd8e6de57aa9d665077182875fb507211835d618"
Last-Modified: Thu, 15 Sep 2022 03:16:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1263
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74af49286e36b4eb-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 44fd759db2d188d5800e35367d848bf7
53cc7a99e6c8cf46388cb50aa29295f8cfb11767
b0c9a28b107f1c599ee179ca0f7a0c67584328a4f5b1924995b24989cdb05efa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 06:25:33 GMT
Last-Modified: Thu, 15 Sep 2022 05:33:26 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RysmwDxlRqzuMbQ45zFoONoqZ1xlMwSxxSORH0e8ZYEcPBJvL_o3oQ==
Age: 3127
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb933dee6-def3-47b6-bfe3-39eee412da4d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb933dee6-def3-47b6-bfe3-39eee412da4d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e99a57f5113a2333e7152e73d9dc14a
a38f84502cc64fa3f621c85d330cfa20ba80b7a6
8ab3f12a13a1f8616b7c80a17855380f13a61484c6e889287af0943c4fe20833
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb933dee6-def3-47b6-bfe3-39eee412da4d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12802
x-amzn-requestid: dcbf418f-92a2-4aaf-9187-b4d27d7d2fdc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yds7DGdTIAMFueg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63222846-56b639e26cdc87247f6abc54;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 19:15:18 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: m8UtuQvEW0vj6z3-oXGJq8_qiTdiI08cPd28Z0mydFuJYI9bDfP27Q==
via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:34:15 GMT
etag: "a38f84502cc64fa3f621c85d330cfa20ba80b7a6"
content-type: image/jpeg
age: 35478
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f50c34bc30a732593e8fe465055a44ff
af100925cba1be716fd2200715d6136bd7f0c5bc
703049736ccc8815945d69634059c4cd39533417e0969107d460c36a6787c761
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5078
x-amzn-requestid: b6177371-a8ba-4541-a48d-21bd806e866e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erUHT-IAMFWKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab15-157ed5b700e0aad5481f5c0f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MYJf90B8rX8_nPUl4stpbZcQeQDaZ2Hgyu6GmsfdqUh-0Nx5OJJThw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:54 GMT
age: 36219
etag: "af100925cba1be716fd2200715d6136bd7f0c5bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
match.deepintent.com/usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D
38.91.45.7200 OK 0 B URL HTTP/2 match.deepintent.com/usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D
IP 38.91.45.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Thu, 15 Sep 2022 06:25:33 GMT
server: b
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0becc25a-4375-42b3-9121-290b0edc8240.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0becc25a-4375-42b3-9121-290b0edc8240.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4ef4e58a54fc502b6b9609e1ba1656e
67c7a034b8adc33d5b90bf9612aae4a16a127e3e
22dc59ae01364815c13b1f936cc8b6b60425319aee0ce561d4ee9d156dc86af7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0becc25a-4375-42b3-9121-290b0edc8240.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8574
x-amzn-requestid: e7466c90-8083-4503-997c-2e866e22c4fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB2LE6ToAMFTsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249c0-0be07d541676dd92489462f4;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eNXzmmLPUlU-TZ7Mdsb1mk1pI9uO492hYD56Z3INX69D-IjQOQblzg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:48:18 GMT
age: 31035
etag: "67c7a034b8adc33d5b90bf9612aae4a16a127e3e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6fcd0641757ecb9061e0272fc9377b8a
96afd6daa0d13f8a05ceb77880f967d539f37702
8af5e3c3e524a5e3661e50a36403a5cc6c95521e77984ce954ceefd5a542abfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5097
x-amzn-requestid: 7d0072f1-0832-4b01-9f5a-081c7d193420
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YaGbEGDiIAMFqGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320b779-2ee57a3e5641f70c00116156;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 17:01:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5TMIu7RzFcpyWKH_HSAd4LDal3PFMAa37n0SVEVDFGyz5RJeqJq5Rw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:45 GMT
age: 31128
etag: "96afd6daa0d13f8a05ceb77880f967d539f37702"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
b1sync.zemanta.com/usersync/gumgum/?puid=e_73996268-ee97-45ed-94c4-7bbd18a07a46&gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
64.202.112.127302 Found 83 B URL HTTP/1.1 b1sync.zemanta.com/usersync/gumgum/?puid=e_73996268-ee97-45ed-94c4-7bbd18a07a46&gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
IP 64.202.112.127:0
File type HTML document, ASCII text
Hash cd26bd9a1a2954a9507335f4b3dcd697
68ec467621f2ca941b8dede1dc410b4b16d16d9b
97b45cdfccbdf3096d0daefc6d043b34ecd293767076b14bb7dbe1e642fd3dd8
GET /usersync/gumgum/?puid=e_73996268-ee97-45ed-94c4-7bbd18a07a46&gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 83
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://usersync.gumgum.com/usersync?b=zem&i=&gdpr=0
Pragma: no-cache
Date: Thu, 15 Sep 2022 06:25:33 GMT
usersync.gumgum.com/usersync?b=pln&i=eRcMGUIQUfeq&ev=1&pid=558355
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=pln&i=eRcMGUIQUfeq&ev=1&pid=558355
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=pln&i=eRcMGUIQUfeq&ev=1&pid=558355 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
sync.srv.stackadapt.com/sync?nid=1&gdpr=0&gdpr_consent=
54.225.153.167302 Found 126 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=1&gdpr=0&gdpr_consent=
IP 54.225.153.167:0
File type HTML document, ASCII text
Hash b6d261bad7450be298c7b15a1eb7a8a6
13bbd39de15e3937df120b33db3cc08c0ee4a9e9
aa7e1d3684e0cd5bfbd3cdca35e434460e9802961e5459bf94532c2ff7a2c4c0
GET /sync?nid=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 15 Sep 2022 06:25:33 GMT
Location: https://usersync.gumgum.com/usersync?b=sta&i=0-5c4c7ee0-b7c3-4e9c-6e48-b11190455e4f$ip$91.90.42.154
Set-Cookie: sa-user-id=s%3A0-5c4c7ee0-b7c3-4e9c-6e48-b11190455e4f.WjMiJwC%2Buou%2Fd8NVjuxT1OJUbCqdzBoQUpqI%2BE3uLX8; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AXEx-4LfDTpxuSLERkEVeT1taKpo.VQp%2FtJ%2FnBXUz1ZqgngXk1BfuLKY668SAyeE6R53o57s; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 126
Connection: keep-alive
usersync.gumgum.com/usersync?b=zem&i=&gdpr=0
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=zem&i=&gdpr=0
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=zem&i=&gdpr=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
sync.ipredictive.com/d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D
54.209.15.148302 Found 108 B URL HTTP/1.1 sync.ipredictive.com/d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D
IP 54.209.15.148:0
File type HTML document, ASCII text
Hash 6f353aa8cbfa29a4b15feb796022d54b
d4406652ead45e3c3c1f91a4dff38f285d177ad4
5964832fc9082b7e99729c348664f0149f061b1812914001f08bf12c04d669f4
GET /d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D HTTP/1.1
Host: sync.ipredictive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 15 Sep 2022 06:25:33 GMT
Location: https://usersync.gumgum.com/usersync?b=vnt&i=9da89558-1346-44bc-b6a0-5f4d2ed04343
Set-Cookie: cu=9da89558-1346-44bc-b6a0-5f4d2ed04343|1663223133598; Path=/; Domain=ipredictive.com; Expires=Fri, 15 Sep 2023 06:25:33 GMT; Max-Age=31536000; SameSite=None; Secure
X-CI-RTID: c08ee0fd-b11d-49da-8542-b0e0c0b8bdc0
Content-Length: 108
Connection: keep-alive
s.pubmine.com/imp_view_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE
63.33.106.135200 OK 43 B URL HTTP/1.1 s.pubmine.com/imp_view_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /imp_view_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=gb9tx-RU1JYYdcarOrLUT90bmffstgKLYVeBpkmEVLUXGQ0oPS4NfSX1pDes3SsCp6bCc0OIu1WyD4VK1TTM5NiybOSbRSeN46tCcT2m3j7BKgX3IpvRYw6j5gUTLq0o1mj8EtDTC6cioX6HdkSfA9QFjmGE8NZAfe_5Xm-zR8NkSZ2fM2mOLAUVzPMR0bE HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 43
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:33 GMT
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:33 GMT
tuuid_lu=1663223133; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:33 GMT
s.pubmine.com/imp_view_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg
63.33.106.135200 OK 43 B URL HTTP/1.1 s.pubmine.com/imp_view_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg
IP 63.33.106.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /imp_view_pixel?tuuid=08c0c5f5-93cf-4890-a127-705ab458628d&pc=IR-k2cDsbpyEEeoLdAl3-zsDyUWD09CSXNJsNiKIgvAXVwKlwL8J_F_EN5rBLvzLg2Gv58mTN2JMUE-vOzCyJRTENF_hO-MlY7rfcFO0fp-Ltar2iU8GCL951qcLnwEAdRD9DH_aD73bQ7YJBL-2bPRGgpcy2HpsWGs8-3sEYnu-nzZ7dtd4q6eSJaZNo0_JNHgMYg HTTP/1.1
Host: s.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 43
Content-Type: image/gif
Date: Thu, 15 Sep 2022 06:25:33 GMT
Set-Cookie: tuuid=08c0c5f5-93cf-4890-a127-705ab458628d; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:33 GMT
tuuid_lu=1663223133; SameSite=None; path=/; expires=Sat, 14-Sep-2024 06:25:33 GMT
usersync.gumgum.com/usersync?b=sta&i=0-5c4c7ee0-b7c3-4e9c-6e48-b11190455e4f$ip$91.90.42.154
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=sta&i=0-5c4c7ee0-b7c3-4e9c-6e48-b11190455e4f$ip$91.90.42.154
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=sta&i=0-5c4c7ee0-b7c3-4e9c-6e48-b11190455e4f$ip$91.90.42.154 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=vnt&i=9da89558-1346-44bc-b6a0-5f4d2ed04343
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=vnt&i=9da89558-1346-44bc-b6a0-5f4d2ed04343
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=vnt&i=9da89558-1346-44bc-b6a0-5f4d2ed04343 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
pixel.rubiconproject.com/exchange/sync.php?p=gumgum
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=gumgum
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=gumgum HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 0163a7456b0a5605e8b1fb1d4fba3e4d
Content-Type: image/gif
tg.socdm.com/aux/idsync?proto=gumgum
124.146.215.51302 Found 0 B URL HTTP/1.1 tg.socdm.com/aux/idsync?proto=gumgum
IP 124.146.215.51:0
ASN #2514 NTT PC Communications, Inc.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aux/idsync?proto=gumgum HTTP/1.1
Host: tg.socdm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 15 Sep 2022 06:25:33 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: private
Location: https://usersync.gumgum.com/usersync?b=sus&i=YyLFXcCo8YsAAFdaWy0AAAAA
P3P: CP="See also http://www.scaleout.jp/privacy/"
X-SO-Ads-Time: 93
X-SO-HostName: m-ad112.dc4p.scaleout.jp
X-SO-LB-Hostname: m-tgng39.dc4p.scaleout.jp
X-SO-LB-Data: {"ban":false,"clean_query":"\/aux\/idsync?proto=gumgum","cluster_id":62,"gdpr":true,"ipv4":"0.0.0.0","key":"YyLFXcCo8YsAAFdaWy0AAAAA","privacy_sensitive":true,"uid":"","upstream_id":"m-ad112"}
X-SO-Key: YyLFXcCo8YsAAFdaWy0AAAAA
X-SO-IP: 91.90.42.154
X-SO-Cluster-ID: 62
X-SO-Upstream-ID: m-ad112
usersync.gumgum.com/usersync?b=sus&i=YyLFXcCo8YsAAFdaWy0AAAAA
52.210.15.1200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=sus&i=YyLFXcCo8YsAAFdaWy0AAAAA
IP 52.210.15.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=sus&i=YyLFXcCo8YsAAFdaWy0AAAAA HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 06:25:34 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
s.skimresources.com/js/725X1342.skimlinks.js
151.139.128.11200 OK 19 kB URL HTTP/2 s.skimresources.com/js/725X1342.skimlinks.js
IP 151.139.128.11:0
File type ASCII text, with very long lines (555)
Hash 99072d6e38191960c774055e6b324d6c
fe8d81b9d8bcad42e709420506fdaef4948d4fa2
8be337dc3addf9f3e9bc4ad0d016e1db40e59fb2d0a3165adcbc01f04c30842c
GET /js/725X1342.skimlinks.js HTTP/1.1
Host: s.skimresources.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:34 GMT
cache-control: max-age=3600
content-encoding: gzip
content-length: 18867
content-type: application/octet-stream
last-modified: Tue, 30 Aug 2022 08:41:20 GMT
accept-ranges: bytes
x-amz-id-2: X2YwRZvDnPpseW1RJ9p2B/tkyU2vQJa1auvTrQb39L95FtuGpDWd3+sBQ/pRniaErxu51j54hiM=
x-amz-request-id: CATDQG5FRJDDA4EE
etag: "a6ab96afc9945e02421a6ef7774c0e79"
server: AmazonS3
x-hw: 1663223134.cds022.sk1.hn,1663223134.cds246.sk1.c
X-Firefox-Spdy: h2
p.skimresources.com/px.gif?ch=2&rn=5.183681594868575
35.190.91.160200 OK 43 B URL HTTP/1.1 p.skimresources.com/px.gif?ch=2&rn=5.183681594868575
IP 35.190.91.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /px.gif?ch=2&rn=5.183681594868575 HTTP/1.1
Host: p.skimresources.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Content-Length: 43
Content-Type: image/gif
P3p: policyref="http://skimlinks.com/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Server: Skimlinks Pixel 1.0
Date: Thu, 15 Sep 2022 06:25:34 GMT
Via: 1.1 google
p.skimresources.com/px.gif?ch=1&rn=5.183681594868575
35.190.91.160200 OK 43 B URL HTTP/1.1 p.skimresources.com/px.gif?ch=1&rn=5.183681594868575
IP 35.190.91.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /px.gif?ch=1&rn=5.183681594868575 HTTP/1.1
Host: p.skimresources.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
HTTP/1.1 200 OK
Content-Length: 43
Content-Type: image/gif
P3p: policyref="http://skimlinks.com/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Server: Skimlinks Pixel 1.0
Date: Thu, 15 Sep 2022 06:25:34 GMT
Via: 1.1 google
r.skimresources.com/api/
35.190.59.101200 OK 602 B IP 35.190.59.101:0
Hash 83bbf964d81beef9f27efaf629f8e1c1
5f335bdbdbd6266a8026c472a01de0ba1bc7aed8
52a1b65a188e801d4243960e9955ac1aa2dfe415431475d1d572e09b4a9bd1d0
POST /api/ HTTP/1.1
Host: r.skimresources.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 332
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.11.2.5
date: Thu, 15 Sep 2022 06:25:34 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: http://saashika.000webhostapp.com
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.css?v=20210915
192.0.77.32200 OK 3.1 kB URL HTTP/2 s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.css?v=20210915
IP 192.0.77.32:0
File type ASCII text, with very long lines (5325)
Hash 25db28feeee1e9d07aedc1a1a3f87eb3
35321f9bbc8c20b7407d83f63dd37cbc4a2f6838
a306f3dc40ae5864616290818111a9c20a972527b04e5a9cfee091162076b6e3
GET /wp-content/mu-plugins/actionbar/actionbar.css?v=20210915 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:34 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"61439ab3-4620"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:53 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash c897db39e6c4051f733398b2755d3501
725762c85a8ba5f257767371effa2659358840eb
2a167da761c036b27b89d23e1f57b6ba6fb4ca71e5c5bb12b6fe02044f457cc2
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 06:25:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 14 Sep 2022 21:55:21 GMT
Expires: Thu, 15 Sep 2022 21:55:21 GMT
ETag: "725762c85a8ba5f257767371effa2659358840eb"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
saashikadecor.files.wordpress.com/2022/05/image-6.png?w=1024
192.0.72.18200 OK 0 B URL HTTP/2 saashikadecor.files.wordpress.com/2022/05/image-6.png?w=1024
IP 192.0.72.18:0
GET /2022/05/image-6.png?w=1024 HTTP/1.1
Host: saashikadecor.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:31 GMT
content-type: image/webp
content-length: 416692
last-modified: Sat, 07 May 2022 12:24:10 GMT
expires: Fri, 14 Oct 2022 01:06:38 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://saashikadecor.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
sync.go.sonobi.com/uc.html?
69.166.1.10408 Request Time-out 0 B URL HTTP/1.0 sync.go.sonobi.com/uc.html?
IP 69.166.1.10:0
GET /uc.html? HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
Connection: close
Content-Type: text/html
s0.wp.com/_static/??-eJx9jsEKwjAQRH/IdSlE1IP4LWnYxkiSDd0NoX/f2EuRQm/zZngw2Ao4zkpZUT+USLDUEb1VanbBqU+CTmRLYBsJJ7r24oLnZsgORZdI0IrjdFBShRKrD1nQE0NkZzVw/gOYog3zmTrTGNn36LeTO/6kd3oN5vY05nEfzHcFqVZW9Q==?cssminify=yes
192.0.77.32200 OK 0 B URL HTTP/2 s0.wp.com/_static/??-eJx9jsEKwjAQRH/IdSlE1IP4LWnYxkiSDd0NoX/f2EuRQm/zZngw2Ao4zkpZUT+USLDUEb1VanbBqU+CTmRLYBsJJ7r24oLnZsgORZdI0IrjdFBShRKrD1nQE0NkZzVw/gOYog3zmTrTGNn36LeTO/6kd3oN5vY05nEfzHcFqVZW9Q==?cssminify=yes
IP 192.0.77.32:0
GET /_static/??-eJx9jsEKwjAQRH/IdSlE1IP4LWnYxkiSDd0NoX/f2EuRQm/zZngw2Ao4zkpZUT+USLDUEb1VanbBqU+CTmRLYBsJJ7r24oLnZsgORZdI0IrjdFBShRKrD1nQE0NkZzVw/gOYog3zmTrTGNn36LeTO/6kd3oN5vY05nEfzHcFqVZW9Q==?cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Thu, 29 Nov 2018 13:53:56 GMT
etag: W/"5bffef74-66ee"
content-encoding: br
expires: Thu, 10 Nov 2022 15:14:34 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
198.148.27.140302 Found 0 B URL HTTP/2 bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
IP 198.148.27.140:0
GET /bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25 HTTP/1.1
Host: bh.contextweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
cw-server: bh-deployment-75d8c985f8-9z7xv
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: V=eRcMGUIQUfeq;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Sun, 10-Sep-2023 06:25:33 GMT;Max-Age=31104000;SameSite=None
pb_rtb_ev=3-1g41|7bq.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 15-Sep-2023 06:25:33 GMT;Max-Age=31536000;SameSite=None
INGRESSCOOKIE=daef0edb5374fc54; path=/; HttpOnly; Secure; SameSite=None
location: https://usersync.gumgum.com/usersync?b=pln&i=eRcMGUIQUfeq&ev=1&pid=558355
server: Jetty(9.4.14.v20181114)
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663223133318
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663223133318
IP 213.19.147.44:0
GET /usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663223133318 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtb.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:33 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
r.skimresources.com/api/
35.190.59.101200 OK 0 B IP 35.190.59.101:0
POST /api/ HTTP/1.1
Host: r.skimresources.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 176
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.11.2.5
date: Thu, 15 Sep 2022 06:25:34 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: http://saashika.000webhostapp.com
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rtb.gumgum.com/usync/prbds2s?gdpr=0&gdpr_consent=&us_privacy=&r=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D25%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
52.31.8.115200 OK 0 B URL HTTP/2 rtb.gumgum.com/usync/prbds2s?gdpr=0&gdpr_consent=&us_privacy=&r=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D25%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
IP 52.31.8.115:0
GET /usync/prbds2s?gdpr=0&gdpr_consent=&us_privacy=&r=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D25%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D HTTP/1.1
Host: rtb.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: text/html;charset=UTF-8
server: nginx
set-cookie: vst=e_73996268-ee97-45ed-94c4-7bbd18a07a46; Domain=.gumgum.com; Expires=Fri, 15-Sep-2023 06:25:32 GMT; Path=/; Secure; SameSite=None
etag: W/"0e5e334bea8d87f9da7fea9c4c0d49a1a"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
s0.wp.com/_static/??-eJyNkMtuwkAMRX8IY1Kk7Kp+i5mY1PNWxsPA39ddVEKphNjZ1/f4haOCK1k5K/qGC9/Ecb0ffTvgUyl1qLGvkhsOWVbWhtytWoIwRBqonGok5Z3+oo8rKZkEUYJRfifsQf3mZLbaL7jamEGPXyTTTSyVkt/ztyDV+ucA1+J6g6u8upSWJBkutGGiprxZBLqRC/+2ez6LttIbR/Ss1bzwJ7zBwKj2hF1q3Ff6nOZ5mubz6fThfwCVP6KW
192.0.77.32404 Not Found 0 B URL HTTP/2 s0.wp.com/_static/??-eJyNkMtuwkAMRX8IY1Kk7Kp+i5mY1PNWxsPA39ddVEKphNjZ1/f4haOCK1k5K/qGC9/Ecb0ffTvgUyl1qLGvkhsOWVbWhtytWoIwRBqonGok5Z3+oo8rKZkEUYJRfifsQf3mZLbaL7jamEGPXyTTTSyVkt/ztyDV+ucA1+J6g6u8upSWJBkutGGiprxZBLqRC/+2ez6LttIbR/Ss1bzwJ7zBwKj2hF1q3Ff6nOZ5mubz6fThfwCVP6KW
IP 192.0.77.32:0
GET /_static/??-eJyNkMtuwkAMRX8IY1Kk7Kp+i5mY1PNWxsPA39ddVEKphNjZ1/f4haOCK1k5K/qGC9/Ecb0ffTvgUyl1qLGvkhsOWVbWhtytWoIwRBqonGok5Z3+oo8rKZkEUYJRfifsQf3mZLbaL7jamEGPXyTTTSyVkt/ztyDV+ucA1+J6g6u8upSWJBkutGGiprxZBLqRC/+2ez6LttIbR/Ss1bzwJ7zBwKj2hF1q3Ff6nOZ5mubz6fThfwCVP6KW HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: br
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: MISS arn 1
X-Firefox-Spdy: h2
s0.wp.com/wp-content/mu-plugins/global-print/global-print.css?m=1465851035h&cssminify=yes
192.0.77.32200 OK 0 B URL HTTP/2 s0.wp.com/wp-content/mu-plugins/global-print/global-print.css?m=1465851035h&cssminify=yes
IP 192.0.77.32:0
GET /wp-content/mu-plugins/global-print/global-print.css?m=1465851035h&cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://saashika.000webhostapp.com
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"5bfee31f-1f6c"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:52 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cabin:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Raleway:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Cabin:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Raleway:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|
IP 142.250.74.10:0
GET /css?family=Cabin:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Raleway:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black| HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 06:25:30 GMT
date: Thu, 15 Sep 2022 06:25:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329
192.0.77.32200 OK 0 B URL HTTP/2 s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329
IP 192.0.77.32:0
GET /wp-content/mu-plugins/actionbar/actionbar.js?v=20220329 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:34 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"624b18ae-346d"
content-encoding: br
expires: Tue, 04 Apr 2023 16:11:34 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Quattrocento%3A400%2C700%7CFanwood+Text%3A400%2C400italic&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Quattrocento%3A400%2C700%7CFanwood+Text%3A400%2C400italic&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Quattrocento%3A400%2C700%7CFanwood+Text%3A400%2C400italic&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 06:25:30 GMT
date: Thu, 15 Sep 2022 06:25:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.wp.com/wp-content/blog-plugins/marketing-bar/images/wpcom-mark.svg
192.0.77.32200 OK 0 B URL HTTP/2 s0.wp.com/wp-content/blog-plugins/marketing-bar/images/wpcom-mark.svg
IP 192.0.77.32:0
GET /wp-content/blog-plugins/marketing-bar/images/wpcom-mark.svg HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s0.wp.com/_static/??-eJyFUtlqxDAM/KE6zlKa0ofSb5Ft4XojH/ho8N9XCbRkN2T3RTCSRhodcklCx1AxVOmbSNSsC0UuSUcvineE/Q4NupQXuaMpivaf6CHPWF2wQkGWnHrrOZD3PZ2xWIvExtE4OxQEi6zoE0HFIkvthI+7LzEbMEVaigrokPuXZhtDhdlyJKP8ubwOH8MoVXNk1oJ6FuRUhtzvmrqgqRnWcuW50DhAQr+NsQMst2MWhBZ0H7wLz+kc2+Mb0rn4TSkXw5pglQw9tipsduZkV09LZFgPdbbq3a3WvbHfJziKf3Ti7ZGUShlLEWy9a17UbyZuf/XlPy/TNL6/TZdxvP4C6GP70w==?cssminify=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:30 GMT
content-type: image/svg+xml
last-modified: Thu, 03 Sep 2020 12:18:21 GMT
vary: Accept-Encoding
etag: W/"5f50df0d-4d5"
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
content-encoding: br
expires: Thu, 10 Nov 2022 15:11:00 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
c0.pubmine.com/2.36.71660581586862/ata.js
192.0.77.38200 OK 0 B URL HTTP/2 c0.pubmine.com/2.36.71660581586862/ata.js
IP 192.0.77.38:0
GET /2.36.71660581586862/ata.js HTTP/1.1
Host: c0.pubmine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 06:25:31 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 16:43:43 GMT
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding, Origin
x-amz-cf-pop: ARN54-C1
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?s=197465&gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D21%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
104.18.19.126302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?s=197465&gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D21%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D
IP 104.18.19.126:0
GET /usermatch?s=197465&gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D21%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://saashika.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:32 GMT
content-type: text/html; charset=iso-8859-1
location: https://r.casalemedia.com/usermatch?cb=https%3A%2F%2Fs.pubmine.com%2Fmatch%3Fbidder_id%3D21%26ssp_data%3D08c0c5f5-93cf-4890-a127-705ab458628d%26rid%3D%26us_privacy%3D%26gdpr%3D0%26gdpr_consent%3D%26external_user_id%3D&gdpr=0&gdpr_consent=&s=197465&us_privacy=&C=1
cf-ray: 74af491fbeaf0af6-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YyLFXMuZTvtfZIXXVFR04QAA;domain=casalemedia.com;path=/;expires=Fri, 15 Sep 2023 06:25:32 GMT
CMPS=4433;domain=casalemedia.com;path=/;expires=Wed, 14 Dec 2022 06:25:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C8SzkR7Zkyo7uqv6SSUIh1pioYchF%2BCKR0oz7MetMno4LYNRBp09DCCH10LXT7FLrfN61G4hCjYLDEQlXtBPy8Y%2FW1fYjs3kj8KQkl9UPlyIcfZksZO7ybXgf%2Bk2HFfsPeFGNGJAy8J2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
IP 213.19.147.44:0
GET /usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtb.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 06:25:33 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-0ce7b602-08d4-4c67-ae92-67eb98f05525-003%22%2C%22zdxidn%22%3A%221506%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D%22%7D; path=/; expires=Fri, 15 Sep 2023 06:25:33 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663223133318
etag: RX0ce7b60208d44c67ae9267eb98f05525003
X-Firefox-Spdy: h2