go.techgeek.digital/PUAcxix
172.67.138.135301 Moved Permanently 0 B URL HTTP/1.1 go.techgeek.digital/PUAcxix
IP 172.67.138.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /PUAcxix HTTP/1.1
Host: go.techgeek.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 04 Nov 2022 02:59:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 04 Nov 2022 03:59:38 GMT
Location: https://go.techgeek.digital/PUAcxix
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LD7AIN%2F3mBD%2BHdEvbOA2%2F6l8oRg0fETfeCqIPPf%2B8uRsUpl3r7IufRdDBXKh4aHZq2yKIW7gTDXum%2BCJlUt9mo%2ByUPK%2Fr%2FlelpwtpTbhaThmFudcbOclZriFMoWjwgW63b%2Bj%2BcJo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 764a1845586fb4ed-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4663
Expires: Fri, 04 Nov 2022 04:17:21 GMT
Date: Fri, 04 Nov 2022 02:59:38 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4070
Cache-Control: max-age=113960
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:38 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 10:38:58 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18192
Expires: Fri, 04 Nov 2022 08:02:50 GMT
Date: Fri, 04 Nov 2022 02:59:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: A8E4oTJtLLgxmwOTmXXvSl865RZF+NIeX6GMW36XCc6SB6Ku3xYN25YaWdcnyelhcRLJMwgs+mU=
x-amz-request-id: HD58SBK8ZR9TBFDS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 02:46:37 GMT
age: 781
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d6c0c035d7ce06abf6761217692b8987
d0898ce4e88267cc00890c09bae4bd9ae6f4d0cd
da5aedf2db22bc58689bafeaf7a3538c95bd4dc908f576785059226af1bd55b6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "DA5AEDF2DB22BC58689BAFEAF7A3538C95BD4DC908F576785059226AF1BD55B6"
Last-Modified: Thu, 03 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12957
Expires: Fri, 04 Nov 2022 06:35:35 GMT
Date: Fri, 04 Nov 2022 02:59:38 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d6c0c035d7ce06abf6761217692b8987
d0898ce4e88267cc00890c09bae4bd9ae6f4d0cd
da5aedf2db22bc58689bafeaf7a3538c95bd4dc908f576785059226af1bd55b6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "DA5AEDF2DB22BC58689BAFEAF7A3538C95BD4DC908F576785059226AF1BD55B6"
Last-Modified: Thu, 03 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12956
Expires: Fri, 04 Nov 2022 06:35:35 GMT
Date: Fri, 04 Nov 2022 02:59:39 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670d0b2f341e8ff1e4ee9fe4fe21e210
dcd277daebf63623b985a81a96bcdc6a6f67c518
75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6459
Cache-Control: max-age=111288
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "63637698-1d7"
Expires: Sat, 05 Nov 2022 09:54:27 GMT
Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 12 kB IP 93.184.220.29:0
Hash 699fea9aa7f2e47c7e3fe7a711f2e0d6
bfb6dcabc93257a3bf44e9e90e8eb948e3cb6159
61f13d02a338c8c7a8d99333725f1b03a5b93c38d025958531098c3a36dc7777
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5151
Cache-Control: max-age=99540
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "63634dd0-117"
Expires: Sat, 05 Nov 2022 06:38:39 GMT
Last-Modified: Thu, 03 Nov 2022 05:12:48 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 1.5 kB IP 142.250.74.3:0
Hash b0eb67a9000e9e6cf0b33e9ce1442dd3
1d84049ccdd145c41cfc63fd95643de3a7573a74
d0a964356f21a96621544e73b3b3cf26742347f60c4d0e340a9b02e4170d818b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5063bcbf3315c3323b2906be832746fa
573ad8f3497f56cd0c26333a91092303f6e72dcc
1a878487d42e31dde43ab334632d84526157e68be464a39c351ce72cd6d36d7c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5151
Cache-Control: max-age=99540
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "63634dd0-117"
Expires: Sat, 05 Nov 2022 06:38:39 GMT
Last-Modified: Thu, 03 Nov 2022 05:12:48 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 12 kB IP 93.184.220.29:0
Hash c27e40435c46adf89fcc89d88cac516b
12dae2dd8237276d9edfd1be878a12a47b2ae35d
080d3dc942d64f4e417af1105ec806eb7cf01d791b1c8544b2b7e3ad19cfa676
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 564
Cache-Control: max-age=94952
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "63634dd0-117"
Expires: Sat, 05 Nov 2022 05:22:11 GMT
Last-Modified: Thu, 03 Nov 2022 05:12:48 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 581 B IP 142.250.74.3:0
Hash 397840920cafeb704f4b38cbaa7d7481
897e5fe21aab2d4713fe403a457703c474ab6aaf
ab041d939a45541ffc8a37adf485d9dae2c0d36998fa5aeb3d71495ca47f771e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.adshort.co/logo.png
104.21.52.33200 OK 11 kB URL HTTP/2 static.adshort.co/logo.png
IP 104.21.52.33:0
File type PNG image data, 215 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d281a30173f72f20199c2f8ff716193
fbd1ea9c362478e37834b808958fea22ceaec1b3
4edeb7cd021290261f7f7dc72cd26cd53ece78918bd11a23b4af3484f3a6abfa
GET /logo.png HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: image/png
content-length: 10737
last-modified: Mon, 24 Feb 2020 16:53:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3601
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nb5PCqaN4gMpR0%2F12Qgx7Hf8NqWKA8rsNx8qDfRW3Idqo3FsjcLvR9Jl3LWz7USnd%2B%2Fj4FSvhUIHbjRL9n0mTiRn%2FDlQBRx3jGMKzSdd1Q1gSs9kY5Arnv2HIQ3iM6Jaa2KG7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 764a184c28d8b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-40605702-4
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-40605702-4
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash f6a266323e20a64e5caf74709b724ff7
4de96a138c629494e6da2dbd9301088e4f73e0fb
2b54c0918f4984d71da5ededc3f2f6239b4a2eef3b6c0d1dc320c015306c4261
GET /gtag/js?id=UA-40605702-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 04 Nov 2022 02:59:39 GMT
expires: Fri, 04 Nov 2022 02:59:39 GMT
cache-control: private, max-age=900
last-modified: Fri, 04 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43661
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6a9f96421fa9be3f5ebca483f688bbc5
b33566493b66ac7bbc91f06ac46ec2498cf43776
33af3427a139a511127b05360cac26724271ac15685fc9f7c93c62af039acb60
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "33AF3427A139A511127B05360CAC26724271AC15685FC9F7C93C62AF039ACB60"
Last-Modified: Thu, 03 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5429
Expires: Fri, 04 Nov 2022 04:30:08 GMT
Date: Fri, 04 Nov 2022 02:59:39 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5063bcbf3315c3323b2906be832746fa
573ad8f3497f56cd0c26333a91092303f6e72dcc
1a878487d42e31dde43ab334632d84526157e68be464a39c351ce72cd6d36d7c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5151
Cache-Control: max-age=99540
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "63634dd0-117"
Expires: Sat, 05 Nov 2022 06:38:39 GMT
Last-Modified: Thu, 03 Nov 2022 05:12:48 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f1ec2926e63a926e5dfe7996043dda5f
b419c8aaafba305f568303f348cdafd6f250faf6
a102485c0952b52761e8c577c8c7b0b93a322fc51ffb24ab297bb3ec7ddae814
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e33f6036655a95f20aaaf2946ecfed64
6b71b3b7d50a6720eca1a2bd6aec7560642c0a47
44de800e4be875478b73fb195c7610bc7480b4b13abf9ef2ad3ad037c1fab133
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44DE800E4BE875478B73FB195C7610BC7480B4B13ABF9EF2AD3AD037C1FAB133"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15528
Expires: Fri, 04 Nov 2022 07:18:27 GMT
Date: Fri, 04 Nov 2022 02:59:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e33f6036655a95f20aaaf2946ecfed64
6b71b3b7d50a6720eca1a2bd6aec7560642c0a47
44de800e4be875478b73fb195c7610bc7480b4b13abf9ef2ad3ad037c1fab133
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44DE800E4BE875478B73FB195C7610BC7480B4B13ABF9EF2AD3AD037C1FAB133"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15528
Expires: Fri, 04 Nov 2022 07:18:27 GMT
Date: Fri, 04 Nov 2022 02:59:39 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6a9f96421fa9be3f5ebca483f688bbc5
b33566493b66ac7bbc91f06ac46ec2498cf43776
33af3427a139a511127b05360cac26724271ac15685fc9f7c93c62af039acb60
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "33AF3427A139A511127B05360CAC26724271AC15685FC9F7C93C62AF039ACB60"
Last-Modified: Thu, 03 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5429
Expires: Fri, 04 Nov 2022 04:30:08 GMT
Date: Fri, 04 Nov 2022 02:59:39 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
216.58.207.195200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19292, version 1.0\012- data
Hash 19007b17e56daa60133bce9e9b352a95
bac1384caeae5762e7a1d8c18037f69c8cd21bc4
fd88a03358ba14440b78c6329717bdf6ed1a9fe97c3ad4e0a0a39d31fb1ac546
GET /s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 20:03:33 GMT
expires: Tue, 31 Oct 2023 20:03:33 GMT
cache-control: public, max-age=31536000
age: 284166
last-modified: Wed, 27 Apr 2022 16:12:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
zunsoach.com/tag.min.js
139.45.197.248200 OK 23 kB IP 139.45.197.248:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ea188740f0270617889697edb78276bc
5080530e34a03009aaaa822eb55690d4ca9475ca
1a4089a19b833f5c690e5c2264b727b74b5e1df183c174cfa5e5a50e0bd555b1
GET /tag.min.js HTTP/1.1
Host: zunsoach.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: text/javascript; charset=utf-8
content-length: 23234
content-encoding: br
x-trace-id: 7f9018e400111c3538ff328203a42701
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 03 Nov 2022 15:02:17 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.210.158.59101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.158.59:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m/wSkMtOpK42xrFRLgMhwA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: x77qPgUgyH9PybCgzd5/TsB4GB0=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4b2c7d76788cbca9786f67e492a0189e
e41f8dfa1f4ebb1f1e4e5aab4acc747e244a9bad
4ce4c6a16a6b3f30d5c1835667d6859807c18e5571e820b71d1d0fdcaa9c2570
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1728
Cache-Control: max-age=103683
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "63636b5e-117"
Expires: Sat, 05 Nov 2022 07:47:42 GMT
Last-Modified: Thu, 03 Nov 2022 07:18:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4b2c7d76788cbca9786f67e492a0189e
e41f8dfa1f4ebb1f1e4e5aab4acc747e244a9bad
4ce4c6a16a6b3f30d5c1835667d6859807c18e5571e820b71d1d0fdcaa9c2570
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1728
Cache-Control: max-age=103683
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "63636b5e-117"
Expires: Sat, 05 Nov 2022 07:47:42 GMT
Last-Modified: Thu, 03 Nov 2022 07:18:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5adc2ede4968fc5eee7545d5de50357b
c8af7e8917825109ee8025b18d585604ff39f624
96452779f5f36c7ea6a58793616b9cb8452396b4d1a868d437b17023cb44a565
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96452779F5F36C7EA6A58793616B9CB8452396B4D1A868D437B17023CB44A565"
Last-Modified: Wed, 02 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1702
Expires: Fri, 04 Nov 2022 03:28:01 GMT
Date: Fri, 04 Nov 2022 02:59:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash da8c1fb636720cbf2ba7e0c2f56eb2dc
29b6601fd5be6e1c88efe31f8718fab9edfa453a
33bb071aa52bef67aa41ff174edbce925d42aff7cdc9871d3ec5856e094612d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33BB071AA52BEF67AA41FF174EDBCE925D42AFF7CDC9871D3EC5856E094612D2"
Last-Modified: Wed, 02 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6176
Expires: Fri, 04 Nov 2022 04:42:35 GMT
Date: Fri, 04 Nov 2022 02:59:39 GMT
Connection: keep-alive
player.avplayer.com/script/2/v/avcplayer.js
23.36.79.26200 OK 61 kB URL HTTP/2 player.avplayer.com/script/2/v/avcplayer.js
IP 23.36.79.26:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9dff0335699f04080269947f40c366ae
8447df4f8b168d9c506630f96ef95002c2c6eb28
157b5912ad26a879f38d0dafb1fce2def6df3168a08f991d6203463375fa32fc
GET /script/2/v/avcplayer.js HTTP/1.1
Host: player.avplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 03 Mar 2022 17:18:44 GMT
etag: "9dff0335699f04080269947f40c366ae"
x-guploader-uploadid: ADPycdtu-4lkKnewYrLZAQ6C3FYocqKyAEpTHAcTl1fhfCPCh7vxR-IJqbD_5jBst3P2Kl4LF2YOsUpbgaREFcUSdQ
server: UploadServer
x-goog-generation: 1646327924579580
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 61326
content-type: application/javascript
content-encoding: gzip
content-language: en
x-goog-hash: crc32c=DITkQg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 61326
cache-control: public, max-age=300
expires: Fri, 04 Nov 2022 03:04:39 GMT
date: Fri, 04 Nov 2022 02:59:39 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
18.165.196.18200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 18.165.196.18:0
Hash 7a1398d776a70bc771d865608a680ad6
05f9cdc7cc9a2fbf0ad007509825f1187d837a5d
cb6943e8eb449ba22c0520c19b60289d8e9d77dfb9849f6d7bfde6da37efcdb4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142273
Date: Fri, 04 Nov 2022 02:59:39 GMT
Etag: "6363f7ed-1d7"
Expires: Sat, 05 Nov 2022 18:30:52 GMT
Last-Modified: Thu, 03 Nov 2022 17:18:37 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 0f9abff0779787e38b3d83ae17ff6224.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: B7WJ8JFoNlV0URVIGNC_7Boa2ZWAG78faSpEGjO3v_XPu_cbZ-IiXQ==
Age: 4335
track1.aniview.com/track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1667530778776&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1667530778776&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1667530778776&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:40 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4410e0283900e769c122cfbcbdbed143
c5588f7f402a41c39405d7459367eadb893fafaf
c9943eb8c4b659d1f5adf76a2d36b70f4ab306c5831b469e07b0fa822056f2b5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:59:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 03 Nov 2022 18:25:20 GMT
Expires: Thu, 10 Nov 2022 18:25:19 GMT
Etag: "c5588f7f402a41c39405d7459367eadb893fafaf"
Cache-Control: max-age=573338,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 764a184e8aa70b39-OSL
player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37
23.38.201.105200 OK 138 kB URL HTTP/2 player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37
IP 23.38.201.105:0
File type Unicode text, UTF-8 text, with very long lines (46445), with LF, NEL line terminators
Size 138 kB (137962 bytes)
Hash 3ff2e024d864f42958c10b18e91b38b2
fa4e0ea926ee37351e8d85ceed2210a923570622
39a763863749834982cf5470fd3117923d7d2843473d96c94d03d0c83c2a377d
GET /script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37 HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsZ0I4jtHEFX5jABZ3u-ZWXiBo_0hx-dS1qF6a1kr2obN7vGBIHY3OWu0CwpHwOfI4-s3wrjYAW_-cpWOLzTZYfpQ
last-modified: Wed, 02 Nov 2022 06:18:01 GMT
etag: "3ff2e024d864f42958c10b18e91b38b2"
x-goog-generation: 1667369881821050
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 137962
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=D2tU1w==, md5=P/LgJNhk9ClYwQsY6Rs4sg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 137962
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=300
expires: Fri, 04 Nov 2022 03:04:40 GMT
date: Fri, 04 Nov 2022 02:59:40 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=2d2eacebfc5340539244307af34e0ef0
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=2d2eacebfc5340539244307af34e0ef0
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 6d6b4cec633e5ae2e7c522f44e5a62b4
38bf8c81bb6c5c2f7e46b7abdbbd46bbda0e2b1f
fc7f7f17637b648fa9dccafaeaed213748030d39c01a1151707b83a368860b47
GET /gid.js?userId=2d2eacebfc5340539244307af34e0ef0 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=2d2eacebfc5340539244307af34e0ef0; expires=Sat, 04 Nov 2023 02:59:40 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5758e82c22596a29631328c053dc02ca
6a92afa7368213909807f655561812c0710465df
da0f73329e6f9ec197aea95afe665d2f18443f4ad178a348a48e1c0f496e2ff7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:59:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2022 01:33:16 GMT
Expires: Tue, 08 Nov 2022 01:33:15 GMT
Etag: "6a92afa7368213909807f655561812c0710465df"
Cache-Control: max-age=339814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 764a184f5b461c02-OSL
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
37.48.68.71200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 37.48.68.71:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 898
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 04 Nov 2022 02:59:40 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://go.techgeek.digital
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
track1.aniview.com/track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.60&apppkg=&fv=3&proto=https&clsid=91ad7a6c-ac72-495b-9206-92b5034390cf&rando=27&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1667530779465
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.60&apppkg=&fv=3&proto=https&clsid=91ad7a6c-ac72-495b-9206-92b5034390cf&rando=27&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1667530779465
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.60&apppkg=&fv=3&proto=https&clsid=91ad7a6c-ac72-495b-9206-92b5034390cf&rando=27&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1667530779465 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:40 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=2d2eacebfc5340539244307af34e0ef0
139.45.197.242204 No Content 0 B URL HTTP/2 nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=2d2eacebfc5340539244307af34e0ef0
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=2d2eacebfc5340539244307af34e0ef0 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://go.techgeek.digital/
Origin: https://go.techgeek.digital
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1667530779245
54.162.165.52200 OK 0 B URL HTTP/2 track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1667530779245
IP 54.162.165.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1667530779245 HTTP/1.1
Host: track1.avplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:40 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
betotodilea.com/500/4986248?excludes=&oaid=2d2eacebfc5340539244307af34e0ef0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/500/4986248?excludes=&oaid=2d2eacebfc5340539244307af34e0ef0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/4986248?excludes=&oaid=2d2eacebfc5340539244307af34e0ef0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://go.techgeek.digital/
Origin: https://go.techgeek.digital
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
nanouwho.com/11?rnd=2089952320&z=4986256&b=15437132&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=zIJ2cGpMyvYLXBwuYMWXcv080folnz5x35E-Q6eHBarTK07coye7FEfVL_MprQ3JSGOvTV9-R1mcuMjJbR0Q5ja4eID9B4a7GrysXg1KBFL8XkkmxKqmjKHFxf1KoQE8epTdinad8egR2rPBLs2_CKHPEUnrAEcm-YqvhgOSAuRB2jOf0nsbgDge0ZDo_Saan_VGzatHo3YvKEHlgUQUtWD7JZSzGrw1paBSQaTWY_BtMR-546pBJ_PwDyxj2bwrCZlbxHhBXCGtB-tku7WwBSWhis68GWtr93f1IreeTu7UT2w9FepQUatraVjIUJfgPEXJ-LlULwPhnsZ8XPJNKm1429OXVRX-flIfVB6K2u9u2wkjlNfzL5UiZWWZFYsXz9cZp99XjzjZSCXRNzghYOhdVlBmlPPa0nJ6em1_8_a4fheN--2pnW9y-3b8AeAgj6dtnXkJGGZMe_Dulp62J1hDkksIWldSipUXGcKsukK411-7B26mpIVhWmv4xu3U2Eiihre_CNArO8B63ovWBznH8Mjla1mLlTmzpQpV-igcO_kJlik_mbS5ZHP2BH82YWC5CobMVh1MRiVkKOFmhRSIJCm6wZ6nvqtbK1i3LenJ6V95VRuMtOhMREYS17x_9CLsG6LiVHHjh78-ptpo5g==&ruid=f77b4755-1e64-476e-b2a3-d4c72b38c214&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=159
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/11?rnd=2089952320&z=4986256&b=15437132&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=zIJ2cGpMyvYLXBwuYMWXcv080folnz5x35E-Q6eHBarTK07coye7FEfVL_MprQ3JSGOvTV9-R1mcuMjJbR0Q5ja4eID9B4a7GrysXg1KBFL8XkkmxKqmjKHFxf1KoQE8epTdinad8egR2rPBLs2_CKHPEUnrAEcm-YqvhgOSAuRB2jOf0nsbgDge0ZDo_Saan_VGzatHo3YvKEHlgUQUtWD7JZSzGrw1paBSQaTWY_BtMR-546pBJ_PwDyxj2bwrCZlbxHhBXCGtB-tku7WwBSWhis68GWtr93f1IreeTu7UT2w9FepQUatraVjIUJfgPEXJ-LlULwPhnsZ8XPJNKm1429OXVRX-flIfVB6K2u9u2wkjlNfzL5UiZWWZFYsXz9cZp99XjzjZSCXRNzghYOhdVlBmlPPa0nJ6em1_8_a4fheN--2pnW9y-3b8AeAgj6dtnXkJGGZMe_Dulp62J1hDkksIWldSipUXGcKsukK411-7B26mpIVhWmv4xu3U2Eiihre_CNArO8B63ovWBznH8Mjla1mLlTmzpQpV-igcO_kJlik_mbS5ZHP2BH82YWC5CobMVh1MRiVkKOFmhRSIJCm6wZ6nvqtbK1i3LenJ6V95VRuMtOhMREYS17x_9CLsG6LiVHHjh78-ptpo5g==&ruid=f77b4755-1e64-476e-b2a3-d4c72b38c214&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=159
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=2089952320&z=4986256&b=15437132&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=zIJ2cGpMyvYLXBwuYMWXcv080folnz5x35E-Q6eHBarTK07coye7FEfVL_MprQ3JSGOvTV9-R1mcuMjJbR0Q5ja4eID9B4a7GrysXg1KBFL8XkkmxKqmjKHFxf1KoQE8epTdinad8egR2rPBLs2_CKHPEUnrAEcm-YqvhgOSAuRB2jOf0nsbgDge0ZDo_Saan_VGzatHo3YvKEHlgUQUtWD7JZSzGrw1paBSQaTWY_BtMR-546pBJ_PwDyxj2bwrCZlbxHhBXCGtB-tku7WwBSWhis68GWtr93f1IreeTu7UT2w9FepQUatraVjIUJfgPEXJ-LlULwPhnsZ8XPJNKm1429OXVRX-flIfVB6K2u9u2wkjlNfzL5UiZWWZFYsXz9cZp99XjzjZSCXRNzghYOhdVlBmlPPa0nJ6em1_8_a4fheN--2pnW9y-3b8AeAgj6dtnXkJGGZMe_Dulp62J1hDkksIWldSipUXGcKsukK411-7B26mpIVhWmv4xu3U2Eiihre_CNArO8B63ovWBznH8Mjla1mLlTmzpQpV-igcO_kJlik_mbS5ZHP2BH82YWC5CobMVh1MRiVkKOFmhRSIJCm6wZ6nvqtbK1i3LenJ6V95VRuMtOhMREYS17x_9CLsG6LiVHHjh78-ptpo5g==&ruid=f77b4755-1e64-476e-b2a3-d4c72b38c214&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=159 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=2d2eacebfc5340539244307af34e0ef0; oaidts=1667530779
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 44091fb637755c77265ea1be19114784
access-control-expose-headers: X-Sc
set-cookie: OAID=2d2eacebfc5340539244307af34e0ef0; expires=Sat, 04 Nov 2023 02:59:40 GMT; secure; SameSite=None
oaidts=1667530779; expires=Sat, 04 Nov 2023 02:59:40 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e7b3f633ef7f3099d1b66a06145b0f89
d9f18795a7c0e58495151642ad76d3b6dd24d1fb
0df7ee590b103e44dd51fec7a7c62ea335a845e950dd113435df774004025fac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0DF7EE590B103E44DD51FEC7A7C62EA335A845E950DD113435DF774004025FAC"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11881
Expires: Fri, 04 Nov 2022 06:17:41 GMT
Date: Fri, 04 Nov 2022 02:59:40 GMT
Connection: keep-alive
betotodilea.com/500/4986248?excludes=&oaid=2d2eacebfc5340539244307af34e0ef0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 14 kB URL HTTP/2 betotodilea.com/500/4986248?excludes=&oaid=2d2eacebfc5340539244307af34e0ef0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash 3f5aaed45e4a08a9abdf70213ad85599
19a2d1df2f39fe29ca4a9ef8b3f364a8540b73bb
0358112869d11f3df12658849417aabd823a5ce86c35aa5209016770f7a65be7
Analyzer Verdict Alert quad9 Sinkholed
GET /500/4986248?excludes=&oaid=2d2eacebfc5340539244307af34e0ef0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: OAID=c8d916f5f0884d40b8dfe5f6f0d4f552
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: application/javascript
x-trace-id: be4e9c270dac75fd47fdeb0545dab562
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://go.techgeek.digital
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=2d2eacebfc5340539244307af34e0ef0; expires=Sat, 04 Nov 2023 02:59:40 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adshort.media/adx/fixed_adxv2t_605.js
172.67.179.96200 OK 26 kB URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_605.js
IP 172.67.179.96:0
Hash 2844b484da59ee8d5891c2a6dbe961b6
68019d5644e31b6b9b74e5c2fa1968f6f211a7d3
6c66d1e89a815c2c7483cb14d212fbf903b7672653dc08dfcb9bc37e5628323a
GET /adx/fixed_adxv2t_605.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Mon, 07 Feb 2022 17:48:17 GMT
cache-control: max-age=2592000
expires: Sat, 03 Dec 2022 23:46:30 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 11589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2cnDjT5t5pjZ2vthEHtHRBMLKTQY8KN2SMEGlbHFEKqmN0P%2FRYx8FjsyE%2FL4N9M5WYuL0rOS9%2FUxSPab3taLjdW2si%2F1DpFWZwJAaO8DbtQWHdrbijyp5FFYynm0Hmx3OaQK8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764a184c5a3db4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 77df955a326fdfef215829ad27fd9537
d7caba3e6827d2081e2eb9c8429c2c7b853ac50f
f8d1c8b3215b6d37b0dad54d50788f4479a918b193582b81461118df2639aeb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8D1C8B3215B6D37B0DAD54D50788F4479A918B193582B81461118DF2639AEB9"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2714
Expires: Fri, 04 Nov 2022 03:44:54 GMT
Date: Fri, 04 Nov 2022 02:59:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5793
Expires: Fri, 04 Nov 2022 04:36:13 GMT
Date: Fri, 04 Nov 2022 02:59:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5793
Expires: Fri, 04 Nov 2022 04:36:13 GMT
Date: Fri, 04 Nov 2022 02:59:40 GMT
Connection: keep-alive
interstitial-07.com/contents/s/ad/18/0b/3aac326b9289a67e128b909273/0826749865589.jpeg
139.45.197.151200 OK 65 kB URL HTTP/2 interstitial-07.com/contents/s/ad/18/0b/3aac326b9289a67e128b909273/0826749865589.jpeg
IP 139.45.197.151:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash ad180b3aac326b9289a67e128b909273
ba733f261d913ab102602e449058a72d515f943b
202defc20d82c83f15257ccaac9cf945e9802406c4f8288178e46d8977920536
GET /contents/s/ad/18/0b/3aac326b9289a67e128b909273/0826749865589.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=mKw4l6aZykVwuWX&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1416376102%26z%3D4986256%26b%3D15437132%26c%3D6245787%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D726%2526key%253D90c41c1505c68f3e631c7705528eb75b%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DzIJ2cGpMyvYLXBwuYMWXcv080folnz5x35E-Q6eHBarTK07coye7FEfVL_MprQ3JSGOvTV9-R1mcuMjJbR0Q5ja4eID9B4a7GrysXg1KBFL8XkkmxKqmjKHFxf1KoQE8epTdinad8egR2rPBLs2_CKHPEUnrAEcm-YqvhgOSAuRB2jOf0nsbgDge0ZDo_Saan_VGzatHo3YvKEHlgUQUtWD7JZSzGrw1paBSQaTWY_BtMR-546pBJ_PwDyxj2bwrCZlbxHhBXCGtB-tku7WwBSWhis68GWtr93f1IreeTu7UT2w9FepQUatraVjIUJfgPEXJ-LlULwPhnsZ8XPJNKm1429OXVRX-flIfVB6K2u9u2wkjlNfzL5UiZWWZFYsXz9cZp99XjzjZSCXRNzghYOhdVlBmlPPa0nJ6em1_8_a4fheN--2pnW9y-3b8AeAgj6dtnXkJGGZMe_Dulp62J1hDkksIWldSipUXGcKsukK411-7B26mpIVhWmv4xu3U2Eiihre_CNArO8B63ovWBznH8Mjla1mLlTmzpQpV-igcO_kJlik_mbS5ZHP2BH82YWC5CobMVh1MRiVkKOFmhRSIJCm6wZ6nvqtbK1i3LenJ6V95VRuMtOhMREYS17x_9CLsG6LiVHHjh78-ptpo5g%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Df77b4755-1e64-476e-b2a3-d4c72b38c214%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252FPUAcxix%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: image/jpeg
content-length: 64787
last-modified: Tue, 12 Apr 2022 16:09:22 GMT
etag: "6255a432-fd13"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5793
Expires: Fri, 04 Nov 2022 04:36:13 GMT
Date: Fri, 04 Nov 2022 02:59:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5793
Expires: Fri, 04 Nov 2022 04:36:13 GMT
Date: Fri, 04 Nov 2022 02:59:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5793
Expires: Fri, 04 Nov 2022 04:36:13 GMT
Date: Fri, 04 Nov 2022 02:59:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c472942cb4b85610a3e83edf7527f923
8191eb019b21bed2b9f53c755e1c24d08dc70760
0dc7f9902567b0130c1c34b6e356b8239f8e6c83e1d38ac9b74588270000279c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10810
x-amzn-requestid: 85c9096f-2671-4f0e-94a3-607254d036d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC057E5yIAMFcXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364350c-3c93b6e56e6141a63d1285eb;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:39:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Rr6GO1Bb6pdxYxNFuwmG2Srs9uGM7tOTffgnyWys0zDjGCDrONRxUA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
etag: "8191eb019b21bed2b9f53c755e1c24d08dc70760"
content-type: image/jpeg
age: 18400
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c67d8f51aff77b24d8cb3fd9ec479813
ebf192d282f763c6220d8d83423b4c1cb76332a1
941bab2bc237c080c6364198d3a183e5b513f72533c98b931b4503476f92e395
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 1f8c3db7-e6e5-4503-a865-1a2407d91ada
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0XYGP_oAMFvnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342f-66953a9f6f31915c375fd6ab;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1vWc25iNyC4YygyUrZFKyk6DkYdFr2SibxZEfUzQ53ZEGp9VKgloNg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:37 GMT
age: 18483
etag: "ebf192d282f763c6220d8d83423b4c1cb76332a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 04 Nov 2022 02:41:09 GMT
expires: Fri, 04 Nov 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 1111
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f85a9f321e2077c26e7f5a2fb1a558f6
aade19c2a4e95c7f3ff39f0c43c201da192be6b1
6dfff7683cfc6c876d94b2bf9d6fd135eca5ef3d23b8857940e75e4b176f1593
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd006407a4ea0fbeec2f1351a71f30bc
d1625420cdc79643e759247b0e9ac89dadfbe956
fd461665ee463fad26300630684a11e3c520485e3b001c2f08439d50589ddbb7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10527
x-amzn-requestid: 1b709c25-8424-49d8-bc0e-dac3fbc154ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNEzH5ZoAMFWdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-3fb0703f27b571cf7f85e59e;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9A2gds6rdrlTJCrN3m05Yl3azoOYGCEaCd2OBH8qq21wHR8WgqI3CA==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 00:54:07 GMT
age: 7533
etag: "d1625420cdc79643e759247b0e9ac89dadfbe956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp
34.120.237.76200 OK 3.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c51fb56e3d2ff1c96ac94fa6dc04d7ff
4b6eeba25ea9eb878f06c9fdd158baa08095816a
5007b706cd8c32431ba8d023f2c85eb3d5faa29a89e52530f66a11fa6d56a487
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3129
x-amzn-requestid: d2f79c4c-1685-495e-add4-66db55669be5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1EeF2YoAMFzwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364354f-6957babc65b33a56575d4deb;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NoRwUtjf1DSIEZ8lMSJg8UT7lUyeew3B1Fwa44BrN3Av6H4TXsdTVw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:52 GMT
age: 18468
etag: "4b6eeba25ea9eb878f06c9fdd158baa08095816a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877911e5-70a1-471d-b418-3ee8665daf00.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877911e5-70a1-471d-b418-3ee8665daf00.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f787d03ccf6f14f05b9fb00149a92f49
0d3c7535f83ced168b1efb0f849e353de31d40db
bda8d5d8dee8c1b3b9a0dd81407bc920a3a2a737dceaaebf75e8554ef1cdcec8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877911e5-70a1-471d-b418-3ee8665daf00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: 971369d4-3728-4fef-9d82-794fd184d26d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0S3FbeIAMFceg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63643412-0efd014e4b25ed9c4aed13cb;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZPGScUHAZtgr_egNkJ2bOzK_ftHSd0Yr1U_S7jYUelg56FCtTOC2TA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:05 GMT
age: 18395
etag: "0d3c7535f83ced168b1efb0f849e353de31d40db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a722edb-0fc6-4ca7-9ed5-bd6c6c645eca.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a722edb-0fc6-4ca7-9ed5-bd6c6c645eca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f0a34ff81072351418756b7a8860e50
37934e64176b86d8d6a18892e6afd64ea697e8de
483f6c7b06adb736ec4318d1878b1210c567c49629f30f244e6302434cab9f49
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a722edb-0fc6-4ca7-9ed5-bd6c6c645eca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5383
x-amzn-requestid: b0c80d59-657e-414a-ba71-1c0e928d76f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1EJHcaIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364354d-07d7fa560ed4e3c01a12f415;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HZrl00jCOuqjCaT5yMSV8DFmusINm_sUxyTiVwEpp0JwcDDiWfj6qw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
age: 18400
etag: "37934e64176b86d8d6a18892e6afd64ea697e8de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
142.250.74.131200 OK 583 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP 142.250.74.131:0
File type ASCII text, with very long lines (921), with no line terminators
Hash 7d8bc6f1c5d6a1e3804e04bf0cf5fdfa
03023ed559450007d8f9719b08ad7007a511ccf1
a97527b12a3835d80ac9620dec6a4f2805ffb80c6d668a313bed684e03c4af2b
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 04 Nov 2022 02:59:41 GMT
date: Fri, 04 Nov 2022 02:59:41 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.98200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (41598)
Hash ffc7894d055af565ab9e7118cd41257a
ff8b30d200f424de991d5a14247f67f403d50fab
d7521129a47dd9960a950feebcb3204fbccb71de2414a5bcba1236b822bdeac3
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27282
date: Fri, 04 Nov 2022 02:59:41 GMT
expires: Fri, 04 Nov 2022 02:59:41 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1383 / 825 of 1000 / last-modified: 1667513160"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f85a9f321e2077c26e7f5a2fb1a558f6
aade19c2a4e95c7f3ff39f0c43c201da192be6b1
6dfff7683cfc6c876d94b2bf9d6fd135eca5ef3d23b8857940e75e4b176f1593
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1667530780155&asid=61d828eebcd2bb5c4a7fea6a%2C61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C%2C&fpo=%2C%2C%2C&ri=1%2C1%2C1%2C1
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1667530780155&asid=61d828eebcd2bb5c4a7fea6a%2C61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C%2C&fpo=%2C%2C%2C&ri=1%2C1%2C1%2C1
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1667530780155&asid=61d828eebcd2bb5c4a7fea6a%2C61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C%2C&fpo=%2C%2C%2C&ri=1%2C1%2C1%2C1 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:41 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1667530780156&asid=61d828e3b7ec9124560ae3c7%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b&ofpr=%2C%2C&fpo=%2C%2C&ri=1%2C1%2C1
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1667530780156&asid=61d828e3b7ec9124560ae3c7%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b&ofpr=%2C%2C&fpo=%2C%2C&ri=1%2C1%2C1
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1667530780156&asid=61d828e3b7ec9124560ae3c7%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b&ofpr=%2C%2C&fpo=%2C%2C&ri=1%2C1%2C1 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:41 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=72747
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=72747
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 04 Nov 2022 02:59:41 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 5bf55889a69226ba4b70c863ebc9c07a
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
dm.hybrid.ai/match?id=407&vid=1667530780007-923783222576-008440-008-003833&gdpr=1&gdpr_consent=&burl=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1667530780007-923783222576-008440-008-003833%26biddername%3D166%26pid%3D5e7b9048180bd02ded4b0937%26key%3D%24%7BVID%7D
37.18.16.22204 No Content 0 B URL HTTP/2 dm.hybrid.ai/match?id=407&vid=1667530780007-923783222576-008440-008-003833&gdpr=1&gdpr_consent=&burl=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1667530780007-923783222576-008440-008-003833%26biddername%3D166%26pid%3D5e7b9048180bd02ded4b0937%26key%3D%24%7BVID%7D
IP 37.18.16.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /match?id=407&vid=1667530780007-923783222576-008440-008-003833&gdpr=1&gdpr_consent=&burl=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1667530780007-923783222576-008440-008-003833%26biddername%3D166%26pid%3D5e7b9048180bd02ded4b0937%26key%3D%24%7BVID%7D HTTP/1.1
Host: dm.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 04 Nov 2022 02:59:41 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 117
x-xss-protection: 1; mode=block
access-control-allow-origin: *
server: Hybrid Web Server
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/NJPGLzpIZgjszqyOymHUP0XR/recaptcha__en.js
142.250.74.163200 OK 161 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/NJPGLzpIZgjszqyOymHUP0XR/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (692)
Size 161 kB (161443 bytes)
Hash f08dc1af68358a3cfc29cc0f7ed68597
bcc7efc80663dd060d7e9e7513994439c0e59a68
01ceb7d3a7706a69ecefbc7863914626ccde29859326c51f98e236bea8242767
GET /recaptcha/releases/NJPGLzpIZgjszqyOymHUP0XR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 161443
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 06:36:17 GMT
expires: Tue, 31 Oct 2023 06:36:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Oct 2022 04:01:21 GMT
content-type: text/javascript
age: 332604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 127 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2831)
Size 127 kB (126790 bytes)
Hash 7d6a2d6be5fba669197c4859fd259d0e
7ba450888a7885a17299dee5d08ba9e83157a7ff
c6f56d44b5716b1d80eb236f855713b8f71b10649ddb2ad596e8636b947da662
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126790
date: Fri, 04 Nov 2022 02:59:41 GMT
expires: Fri, 04 Nov 2022 02:59:41 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a644ddcaf2f9fe6164915e985675d450
4725d446ea8dcd7d79d35e01f2a8a1406cc6aca3
d2806d80997c9999e65cc65b10d0efac04e0160edfe4e84376a5de166c0afe8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2cda334cbe835b7867000db3e99f2d92
9bc9a2437f984f8c92c0c3088abaec7850af3cac
7906fa2c3a8b73604aa846b04437c5b4c817932266bae78dfe06a702d86e338b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
interstitial-07.com/?l=mKw4l6aZykVwuWX&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1416376102%26z%3D4986256%26b%3D15437132%26c%3D6245787%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D726%2526key%253D90c41c1505c68f3e631c7705528eb75b%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DzIJ2cGpMyvYLXBwuYMWXcv080folnz5x35E-Q6eHBarTK07coye7FEfVL_MprQ3JSGOvTV9-R1mcuMjJbR0Q5ja4eID9B4a7GrysXg1KBFL8XkkmxKqmjKHFxf1KoQE8epTdinad8egR2rPBLs2_CKHPEUnrAEcm-YqvhgOSAuRB2jOf0nsbgDge0ZDo_Saan_VGzatHo3YvKEHlgUQUtWD7JZSzGrw1paBSQaTWY_BtMR-546pBJ_PwDyxj2bwrCZlbxHhBXCGtB-tku7WwBSWhis68GWtr93f1IreeTu7UT2w9FepQUatraVjIUJfgPEXJ-LlULwPhnsZ8XPJNKm1429OXVRX-flIfVB6K2u9u2wkjlNfzL5UiZWWZFYsXz9cZp99XjzjZSCXRNzghYOhdVlBmlPPa0nJ6em1_8_a4fheN--2pnW9y-3b8AeAgj6dtnXkJGGZMe_Dulp62J1hDkksIWldSipUXGcKsukK411-7B26mpIVhWmv4xu3U2Eiihre_CNArO8B63ovWBznH8Mjla1mLlTmzpQpV-igcO_kJlik_mbS5ZHP2BH82YWC5CobMVh1MRiVkKOFmhRSIJCm6wZ6nvqtbK1i3LenJ6V95VRuMtOhMREYS17x_9CLsG6LiVHHjh78-ptpo5g%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Df77b4755-1e64-476e-b2a3-d4c72b38c214%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252FPUAcxix%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
139.45.197.151200 OK 11 kB URL HTTP/2 interstitial-07.com/?l=mKw4l6aZykVwuWX&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1416376102%26z%3D4986256%26b%3D15437132%26c%3D6245787%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D726%2526key%253D90c41c1505c68f3e631c7705528eb75b%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DzIJ2cGpMyvYLXBwuYMWXcv080folnz5x35E-Q6eHBarTK07coye7FEfVL_MprQ3JSGOvTV9-R1mcuMjJbR0Q5ja4eID9B4a7GrysXg1KBFL8XkkmxKqmjKHFxf1KoQE8epTdinad8egR2rPBLs2_CKHPEUnrAEcm-YqvhgOSAuRB2jOf0nsbgDge0ZDo_Saan_VGzatHo3YvKEHlgUQUtWD7JZSzGrw1paBSQaTWY_BtMR-546pBJ_PwDyxj2bwrCZlbxHhBXCGtB-tku7WwBSWhis68GWtr93f1IreeTu7UT2w9FepQUatraVjIUJfgPEXJ-LlULwPhnsZ8XPJNKm1429OXVRX-flIfVB6K2u9u2wkjlNfzL5UiZWWZFYsXz9cZp99XjzjZSCXRNzghYOhdVlBmlPPa0nJ6em1_8_a4fheN--2pnW9y-3b8AeAgj6dtnXkJGGZMe_Dulp62J1hDkksIWldSipUXGcKsukK411-7B26mpIVhWmv4xu3U2Eiihre_CNArO8B63ovWBznH8Mjla1mLlTmzpQpV-igcO_kJlik_mbS5ZHP2BH82YWC5CobMVh1MRiVkKOFmhRSIJCm6wZ6nvqtbK1i3LenJ6V95VRuMtOhMREYS17x_9CLsG6LiVHHjh78-ptpo5g%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Df77b4755-1e64-476e-b2a3-d4c72b38c214%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252FPUAcxix%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
IP 139.45.197.151:0
Hash 5a960982689507fae5e181d12433e59a
acb2e4b321a3cd13c01e3d5a868fb95164fb1498
9c3c3cfca12b0ec8b553cadb409ff37445129d142ca165fc1b77a60602adf2e9
GET /?l=mKw4l6aZykVwuWX&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1416376102%26z%3D4986256%26b%3D15437132%26c%3D6245787%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D726%2526key%253D90c41c1505c68f3e631c7705528eb75b%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DzIJ2cGpMyvYLXBwuYMWXcv080folnz5x35E-Q6eHBarTK07coye7FEfVL_MprQ3JSGOvTV9-R1mcuMjJbR0Q5ja4eID9B4a7GrysXg1KBFL8XkkmxKqmjKHFxf1KoQE8epTdinad8egR2rPBLs2_CKHPEUnrAEcm-YqvhgOSAuRB2jOf0nsbgDge0ZDo_Saan_VGzatHo3YvKEHlgUQUtWD7JZSzGrw1paBSQaTWY_BtMR-546pBJ_PwDyxj2bwrCZlbxHhBXCGtB-tku7WwBSWhis68GWtr93f1IreeTu7UT2w9FepQUatraVjIUJfgPEXJ-LlULwPhnsZ8XPJNKm1429OXVRX-flIfVB6K2u9u2wkjlNfzL5UiZWWZFYsXz9cZp99XjzjZSCXRNzghYOhdVlBmlPPa0nJ6em1_8_a4fheN--2pnW9y-3b8AeAgj6dtnXkJGGZMe_Dulp62J1hDkksIWldSipUXGcKsukK411-7B26mpIVhWmv4xu3U2Eiihre_CNArO8B63ovWBznH8Mjla1mLlTmzpQpV-igcO_kJlik_mbS5ZHP2BH82YWC5CobMVh1MRiVkKOFmhRSIJCm6wZ6nvqtbK1i3LenJ6V95VRuMtOhMREYS17x_9CLsG6LiVHHjh78-ptpo5g%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Df77b4755-1e64-476e-b2a3-d4c72b38c214%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252FPUAcxix%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
set-cookie: reverse=IKjIfyiw--KCFBO7b-4cgcu1b1RsodlRnvbaoGZEgpc; expires=Fri, 04-Nov-2022 03:59:40 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2cda334cbe835b7867000db3e99f2d92
9bc9a2437f984f8c92c0c3088abaec7850af3cac
7906fa2c3a8b73604aa846b04437c5b4c817932266bae78dfe06a702d86e338b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
142.250.74.70200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Fri, 04 Nov 2022 02:59:41 GMT
expires: Fri, 04 Nov 2022 02:59:41 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 667755b7a91dcaf6e0742e6dadbca816
19c3ab166e7a4c47eb95c928e852e7bef6fac5d0
accb77411cf4ebd4338954ccbe530aa549200a9fc2fa454c647e0906108b3718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=go.techgeek.digital
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=go.techgeek.digital
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=go.techgeek.digital HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 04 Nov 2022 02:59:41 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2cda334cbe835b7867000db3e99f2d92
9bc9a2437f984f8c92c0c3088abaec7850af3cac
7906fa2c3a8b73604aa846b04437c5b4c817932266bae78dfe06a702d86e338b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 667755b7a91dcaf6e0742e6dadbca816
19c3ab166e7a4c47eb95c928e852e7bef6fac5d0
accb77411cf4ebd4338954ccbe530aa549200a9fc2fa454c647e0906108b3718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 04 Nov 2022 02:59:42 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 50a1cb0f2dce2ec4af09fe986c9ed24d
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 131c7090b83892c62eb57cfbddad9082
9e295e5490562d657fd0d35a1b8f4e4e2eaf8471
e72c487fa6f0ec7920830ef7c8e19fccd140c738474db96919610ea11f4111ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=go.techgeek.digital
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=go.techgeek.digital
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=go.techgeek.digital HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 04 Nov 2022 02:59:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0e939ec3a78e19c59e6295801cbd39e7
368b2454444f11d9079cb77c0f41f5f734562523
d24788aa7c2330dee96ae20babb352233912036d05edaf2f3918873a0805561b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=471085046.1667530780&jid=260448180&gjid=1759772219&_gid=53544248.1667530780&_u=YEBAAUAAAAAAACAAI~&z=1890836118
64.233.165.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=471085046.1667530780&jid=260448180&gjid=1759772219&_gid=53544248.1667530780&_u=YEBAAUAAAAAAACAAI~&z=1890836118
IP 64.233.165.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=471085046.1667530780&jid=260448180&gjid=1759772219&_gid=53544248.1667530780&_u=YEBAAUAAAAAAACAAI~&z=1890836118 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://go.techgeek.digital
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 04 Nov 2022 02:59:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e35aed0e0ae0b84be86c18fd69f8e5c4.safeframe.googlesyndication.com/safeframe/1-0-39/html/container.html
172.217.21.161200 OK 3.0 kB URL HTTP/2 e35aed0e0ae0b84be86c18fd69f8e5c4.safeframe.googlesyndication.com/safeframe/1-0-39/html/container.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash 0193525c83a04aba8fa3caf53d9aac05
ec27db82404e05017dd9b66206d03c2f623ca8d6
1f57111c09ecc489613040fb1f8ec3e9458f6d58bdacfd3669a10ba338a4c9d0
GET /safeframe/1-0-39/html/container.html HTTP/1.1
Host: e35aed0e0ae0b84be86c18fd69f8e5c4.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2988
date: Fri, 04 Nov 2022 02:59:42 GMT
expires: Sat, 04 Nov 2023 02:59:42 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 25 Oct 2022 18:59:17 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 61bfcf4bbfd5a8e1729bc77ea2571334
379f61267339dc0b8f840400dfd9c1578e1a20ca
bf2f1db8c1163c1e7181281447738e736131108a5b98e34babf1257105b51f53
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.65200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.65:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 04 Nov 2022 02:59:42 GMT
expires: Fri, 04 Nov 2022 02:59:42 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.7_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2846386872560848&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=820149805&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781693&cookie_enabled=1&scor=3580216574057842&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.7_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2846386872560848&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=820149805&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781693&cookie_enabled=1&scor=3580216574057842&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.7_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2846386872560848&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=820149805&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781693&cookie_enabled=1&scor=3580216574057842&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Fri, 04 Nov 2022 02:59:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 04-Nov-2022 03:14:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.75_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1690632243730308&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3562875322&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781714&cookie_enabled=1&scor=1822118567675900&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.75_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1690632243730308&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3562875322&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781714&cookie_enabled=1&scor=1822118567675900&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.75_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1690632243730308&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3562875322&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781714&cookie_enabled=1&scor=1822118567675900&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Fri, 04 Nov 2022 02:59:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 04-Nov-2022 03:14:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.9_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4177580742186287&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2505613463&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781670&cookie_enabled=1&scor=1193569463985127&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.9_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4177580742186287&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2505613463&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781670&cookie_enabled=1&scor=1193569463985127&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.9_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4177580742186287&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2505613463&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781670&cookie_enabled=1&scor=1193569463985127&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Fri, 04 Nov 2022 02:59:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 04-Nov-2022 03:14:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_TGT_MCM_0.5_17.02.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1865870082553960&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3978061497&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781645&cookie_enabled=1&scor=2443463927995074&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_TGT_MCM_0.5_17.02.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1865870082553960&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3978061497&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781645&cookie_enabled=1&scor=2443463927995074&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_TGT_MCM_0.5_17.02.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1865870082553960&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3978061497&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781645&cookie_enabled=1&scor=2443463927995074&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Fri, 04 Nov 2022 02:59:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 04-Nov-2022 03:14:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.6_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=321094319190473&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2628732354&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781771&cookie_enabled=1&scor=2853137824235448&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.6_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=321094319190473&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2628732354&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781771&cookie_enabled=1&scor=2853137824235448&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.6_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=321094319190473&sdkv=h.3.542.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2628732354&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.542.0&sid=B8531978-7471-4106-8D60-07A8609DE883&nel=0&eid=44748969%2C44750823%2C44752711%2C44765701%2C44773378&url=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&dt=1667530781771&cookie_enabled=1&scor=2853137824235448&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Fri, 04 Nov 2022 02:59:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 04-Nov-2022 03:14:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4e07861c1447376729f17ea09b72ca90
dd3f1d68fd87b4ba20c03e2f31ddc6a294b38cd3
d8953ad7676624da5b08bc21e4e68a647a636709f5fc9c4b0a4e8914f37adfc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:59:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash ed1a7b945b7e7478748d708566063bcc
df2a878eee9798d241680ea38440e38419f3c4b9
64109e7f2eb5ae13b370bfc8d8dd886569eb09701a14d4043e30737d54da5b02
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 04 Nov 2022 02:59:42 GMT
date: Fri, 04 Nov 2022 02:59:42 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-M4hjlbQlT-FHpnVzLDvfwA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.34200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.34:0
File type ASCII text, with very long lines (3502)
Hash 34d3b821ba6200423b5b3b9eeeb58c5c
2874323851bd8a80f3031b5f02c82e0bcbfde01d
c1a0244001eb2a09e6aaa79eff28a57f85e174fa00ab2a3e57a4426b7a1a8515
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47848
date: Fri, 04 Nov 2022 02:59:42 GMT
expires: Fri, 04 Nov 2022 02:59:42 GMT
cache-control: private, max-age=3000
etag: "1667389194171289"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3406
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:42 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstfJAWd0GuW5jDQcQzqKiZwNiLWLO1cN2TXckjEXEd6Za1tfJG61QabNFEFsqVBRRnoOmEudoNwZwKI8V81IevEzmsqbeVx95FmbD6UISCiOaDrVU1kj-PWKtR7TXSxq0fqYRzAkA5vTjL-UnnGu3faj6sJZgbDZIS1ApNoWLqTU1pPs97ZUk-bNXN8AVJFONL2FwvMyInjqkyaDJVMQTP5RveSY4f_E6s0o5elIENXdny_K8B_UcUItoLa62RNEI32-f_KDf2y0YLumbBoxt9ZZicvWqOtYJPc_sAm4WV3Xtw-O13fEWzoOCUJaTgEENk21I0Vc6IXMHVUObPOu5eKx9FGYej2wo0bcUaeXfjEYujOvITTfVbrHBVuRYwW4u3_UH5VeORoxjBGRb0KesdI0KkMzdcRHfDqmip4nuBos__uKWfonJBENc_rWcO3L9jEGTwPrXfelBFRNHG_ziplYOh5w643FOVO9P6kL9iS9cKGCh7ei0CN3S__bQktLcpSdr2CqVIuxuLuQ4oxnoeysuclz4pUV8g4lQj5kDKGj6lsfotEyFEmVNLKZk-BU6aQpxjdiyogQk5DH1D0wr1hcCrZc2E4G9Sc-xaIj_RVrZWhrtdjmMPWAFDPpc6aboN9aUd3OtX6fEd2v8IPr6nqp_MiA7hXKPDNvXF7msRhRjnrTjHH_sR-jlIh5khy2iqh5vvcVloNNx17lhbQLKQpo-wQ_u0BvwHzgyeCGG9gsmKarY9VP0EEJkPSwiDk8jGVg1ohzxWLPbm75_-qR-uulQPeL1mNCMJNMn4rnHbrPKKBQmvy-QsYfVfG4ZliiCN-nz8QV2Bm7yf9cqXVQxN93-SMclnirqMLCbEWRni9C8EFELeCdiB_rJ9kV2DF0alBn-YXHhdYJDP_AtUCvOvRJf8naFUtYZV8YsoWXBczp1Iiu087qTJkPnRVdeRNVjbKtJM8_ecsCR8Az2lvVZz1EYzkq8HIx2FmpprWO6fwKf3uisIEcC__5-wtTeiYCvX43YbWhyiifXRBJ9eFubi5pJsWesJ9RN3mmq0--D5FDqE6pJ0G_Xefg7rKD8uXA9DUNGnfVAczjilMd8WbaOhTr-eLDH9Ypo_Vw0Vss-pwARV8WtWGFzfId_NVsXAJRR_lA4Leh4qFFA0sj9xyS0er8jFfOsSzpBYYVN0kBMohsnTfct5MTvlvaS0x7xQFQX0zMA-7Eub2yxnACLXVgfAPndLHnUXrexQ55_331vZZZ2w56m4ZAmK-xNHvVLNFDu5_qi1ORAhQf4crscqLXh8&sai=AMfl-YTYu1DECSYhQEOQ0wd52vcSOJUOnEf4tor0ktraoe23WoB1vLUJFmWLHnwL832fiwFFX6Q6bXeiORDLilXUrbmI2R6gv7gWZvZjwksQ_YPrleTwcLX2qrtpQ-2E067Vc_c-YnHMnfMq99NdLX00YcgyuWxZWOmV1lIiQqsX_5UDDxl7GDwedjRC3vddtunoRsDLbxVC8rzg8VLpD9al3kN5miAGOx-jkcUgTwvS6bUxDFH1L5DCjjnyqudCNLmnSUjbfIBgI-QiipyjkyDt&sig=Cg0ArKJSzI_eAU7GUhdsEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=163&cbvp=1&cstd=159&cisv=r20221027.18229&arae=0&ftch=1&adurl=
216.58.211.2200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstfJAWd0GuW5jDQcQzqKiZwNiLWLO1cN2TXckjEXEd6Za1tfJG61QabNFEFsqVBRRnoOmEudoNwZwKI8V81IevEzmsqbeVx95FmbD6UISCiOaDrVU1kj-PWKtR7TXSxq0fqYRzAkA5vTjL-UnnGu3faj6sJZgbDZIS1ApNoWLqTU1pPs97ZUk-bNXN8AVJFONL2FwvMyInjqkyaDJVMQTP5RveSY4f_E6s0o5elIENXdny_K8B_UcUItoLa62RNEI32-f_KDf2y0YLumbBoxt9ZZicvWqOtYJPc_sAm4WV3Xtw-O13fEWzoOCUJaTgEENk21I0Vc6IXMHVUObPOu5eKx9FGYej2wo0bcUaeXfjEYujOvITTfVbrHBVuRYwW4u3_UH5VeORoxjBGRb0KesdI0KkMzdcRHfDqmip4nuBos__uKWfonJBENc_rWcO3L9jEGTwPrXfelBFRNHG_ziplYOh5w643FOVO9P6kL9iS9cKGCh7ei0CN3S__bQktLcpSdr2CqVIuxuLuQ4oxnoeysuclz4pUV8g4lQj5kDKGj6lsfotEyFEmVNLKZk-BU6aQpxjdiyogQk5DH1D0wr1hcCrZc2E4G9Sc-xaIj_RVrZWhrtdjmMPWAFDPpc6aboN9aUd3OtX6fEd2v8IPr6nqp_MiA7hXKPDNvXF7msRhRjnrTjHH_sR-jlIh5khy2iqh5vvcVloNNx17lhbQLKQpo-wQ_u0BvwHzgyeCGG9gsmKarY9VP0EEJkPSwiDk8jGVg1ohzxWLPbm75_-qR-uulQPeL1mNCMJNMn4rnHbrPKKBQmvy-QsYfVfG4ZliiCN-nz8QV2Bm7yf9cqXVQxN93-SMclnirqMLCbEWRni9C8EFELeCdiB_rJ9kV2DF0alBn-YXHhdYJDP_AtUCvOvRJf8naFUtYZV8YsoWXBczp1Iiu087qTJkPnRVdeRNVjbKtJM8_ecsCR8Az2lvVZz1EYzkq8HIx2FmpprWO6fwKf3uisIEcC__5-wtTeiYCvX43YbWhyiifXRBJ9eFubi5pJsWesJ9RN3mmq0--D5FDqE6pJ0G_Xefg7rKD8uXA9DUNGnfVAczjilMd8WbaOhTr-eLDH9Ypo_Vw0Vss-pwARV8WtWGFzfId_NVsXAJRR_lA4Leh4qFFA0sj9xyS0er8jFfOsSzpBYYVN0kBMohsnTfct5MTvlvaS0x7xQFQX0zMA-7Eub2yxnACLXVgfAPndLHnUXrexQ55_331vZZZ2w56m4ZAmK-xNHvVLNFDu5_qi1ORAhQf4crscqLXh8&sai=AMfl-YTYu1DECSYhQEOQ0wd52vcSOJUOnEf4tor0ktraoe23WoB1vLUJFmWLHnwL832fiwFFX6Q6bXeiORDLilXUrbmI2R6gv7gWZvZjwksQ_YPrleTwcLX2qrtpQ-2E067Vc_c-YnHMnfMq99NdLX00YcgyuWxZWOmV1lIiQqsX_5UDDxl7GDwedjRC3vddtunoRsDLbxVC8rzg8VLpD9al3kN5miAGOx-jkcUgTwvS6bUxDFH1L5DCjjnyqudCNLmnSUjbfIBgI-QiipyjkyDt&sig=Cg0ArKJSzI_eAU7GUhdsEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=163&cbvp=1&cstd=159&cisv=r20221027.18229&arae=0&ftch=1&adurl=
IP 216.58.211.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjstfJAWd0GuW5jDQcQzqKiZwNiLWLO1cN2TXckjEXEd6Za1tfJG61QabNFEFsqVBRRnoOmEudoNwZwKI8V81IevEzmsqbeVx95FmbD6UISCiOaDrVU1kj-PWKtR7TXSxq0fqYRzAkA5vTjL-UnnGu3faj6sJZgbDZIS1ApNoWLqTU1pPs97ZUk-bNXN8AVJFONL2FwvMyInjqkyaDJVMQTP5RveSY4f_E6s0o5elIENXdny_K8B_UcUItoLa62RNEI32-f_KDf2y0YLumbBoxt9ZZicvWqOtYJPc_sAm4WV3Xtw-O13fEWzoOCUJaTgEENk21I0Vc6IXMHVUObPOu5eKx9FGYej2wo0bcUaeXfjEYujOvITTfVbrHBVuRYwW4u3_UH5VeORoxjBGRb0KesdI0KkMzdcRHfDqmip4nuBos__uKWfonJBENc_rWcO3L9jEGTwPrXfelBFRNHG_ziplYOh5w643FOVO9P6kL9iS9cKGCh7ei0CN3S__bQktLcpSdr2CqVIuxuLuQ4oxnoeysuclz4pUV8g4lQj5kDKGj6lsfotEyFEmVNLKZk-BU6aQpxjdiyogQk5DH1D0wr1hcCrZc2E4G9Sc-xaIj_RVrZWhrtdjmMPWAFDPpc6aboN9aUd3OtX6fEd2v8IPr6nqp_MiA7hXKPDNvXF7msRhRjnrTjHH_sR-jlIh5khy2iqh5vvcVloNNx17lhbQLKQpo-wQ_u0BvwHzgyeCGG9gsmKarY9VP0EEJkPSwiDk8jGVg1ohzxWLPbm75_-qR-uulQPeL1mNCMJNMn4rnHbrPKKBQmvy-QsYfVfG4ZliiCN-nz8QV2Bm7yf9cqXVQxN93-SMclnirqMLCbEWRni9C8EFELeCdiB_rJ9kV2DF0alBn-YXHhdYJDP_AtUCvOvRJf8naFUtYZV8YsoWXBczp1Iiu087qTJkPnRVdeRNVjbKtJM8_ecsCR8Az2lvVZz1EYzkq8HIx2FmpprWO6fwKf3uisIEcC__5-wtTeiYCvX43YbWhyiifXRBJ9eFubi5pJsWesJ9RN3mmq0--D5FDqE6pJ0G_Xefg7rKD8uXA9DUNGnfVAczjilMd8WbaOhTr-eLDH9Ypo_Vw0Vss-pwARV8WtWGFzfId_NVsXAJRR_lA4Leh4qFFA0sj9xyS0er8jFfOsSzpBYYVN0kBMohsnTfct5MTvlvaS0x7xQFQX0zMA-7Eub2yxnACLXVgfAPndLHnUXrexQ55_331vZZZ2w56m4ZAmK-xNHvVLNFDu5_qi1ORAhQf4crscqLXh8&sai=AMfl-YTYu1DECSYhQEOQ0wd52vcSOJUOnEf4tor0ktraoe23WoB1vLUJFmWLHnwL832fiwFFX6Q6bXeiORDLilXUrbmI2R6gv7gWZvZjwksQ_YPrleTwcLX2qrtpQ-2E067Vc_c-YnHMnfMq99NdLX00YcgyuWxZWOmV1lIiQqsX_5UDDxl7GDwedjRC3vddtunoRsDLbxVC8rzg8VLpD9al3kN5miAGOx-jkcUgTwvS6bUxDFH1L5DCjjnyqudCNLmnSUjbfIBgI-QiipyjkyDt&sig=Cg0ArKJSzI_eAU7GUhdsEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=163&cbvp=1&cstd=159&cisv=r20221027.18229&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://e35aed0e0ae0b84be86c18fd69f8e5c4.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 04 Nov 2022 02:59:44 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 04-Nov-2022 03:14:44 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 04 Nov 2022 02:59:44 GMT
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1667530783299&asid=621608fa964cdd04dc3e2f6b%2C61d828e3b7ec9124560ae3c7%2C620e1d517f4f540812237178&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1667530783299&asid=621608fa964cdd04dc3e2f6b%2C61d828e3b7ec9124560ae3c7%2C620e1d517f4f540812237178&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1667530783299&asid=621608fa964cdd04dc3e2f6b%2C61d828e3b7ec9124560ae3c7%2C620e1d517f4f540812237178&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:44 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssO26Nn2BR2_JnahVqwySty47wDtSHzUa_l9nlt0mPmpUgeDSK97fEe2zW5pWDvlw5EDZ2YnavaM7qtFKi6qgk1FMhs2Hj2kVkaeEz2uVsE3HaDKpHOfKgN8-qas_wpUqCvSN6VmwCjjfRLSZGz3ER3hGjqYYVDaGF6EWk6Hzio4wX4zw0u_FLtw7T35TiNu_yO6mslGS-zv-HTFppW4X82HeAQzGmBrZpMgj_PwY_wAVu3OmMyMIseSkDvGeyvASyOSJnw9s8rqh-cz0u8ytVsu-ipDnwJUjO4vgcJKSsQlZw7wzCOlx6TVJm38uTq6hgwGEkhakBvTMV4yNlgw7O-46x3wfJix3w0KJsLh9wKYaxLvVGYb-H1ZYfzlDFKz14gZ21uxQOBVB5PSEUkN29QquY8135KlXzplUIjwFSfy-ZhKrPdmqYztk64zMduNOZMGeZPOwFpZkROarVCsauFU3XqPcmdzkas2dGD6qGYQD0-PdN-h2Ir-3oke7V-bTIduJ0Z69iQY50BKHN8Rmo11GIXCm-uXlAmtrutYtWoqdwRYkKW544sbomfFi7e8dWBjy65d8CXC0r9en1uN7nj2Arurrsy0Ocqy3fqQS4XTlsBKVNUF9K4N_yKKW1ORFKs8gVGWZYAi0O9GyyNpvIWnRPoNZHqt818Dn2GuQTm9DWke65nUyd3V0h-524VrqtsOcueamDPHamV_wO6y3CAAaEX5jP6OU0yDaS1213XRNhtXs4ljVIQxA1uBqkH11HQPzlzA4rtnWA62TuolYgysadDNln2aNkW5lR1_Pi1YE7_S6K_df2Sd-lhb_C_YAfc97n5Bep7Wn2GXbmA23MDeh_8KwMaXgBQHfzPfbaWcR2Xw_QnMpKG0-olF20mxEWTcNyQmfl0BpE6H9oM59P7IgVzzcjihScKocn25rIeb5jdHiwwfTt34U2ZJyOfeJyBPRPvNSZ9Rq8gKUDa25K8g3uljZc0jUsavsCZima_hskDVpWb2q-ll5h3Vt_V7pvTMan-ySTZxD6cXw7EPqtjmNk2HmJHbgY5_zHX-hz9R0Uqsmbqc1ReIA1lz0FHKvQ14ZzduSoxuKMNEshyKPfuoHHd3KLv5YN55uG0MJUvcCCj_khLTjAwKKw34p1D9hreXHXJCAo0Q7N7qsootWj8sgl-eLfOv6d0VWdXz5LQ1_Rgizg92hwG14XCABb-aXyqQyQoKAHgsfwMnCHMERZb5atNXuxXDP50ABo&sai=AMfl-YQRqZ66HsyCqUBq-g6nenOVcdwEKqqS96Z1pKQkb4g1ISjMYXtfm_0hExBHQ9uR2BulnbS4D_2QOEFFx0NuTYfv40qEB20g0SVrvkFHzryoLUsVpptdBxZ6rQoTs7lDUYIlm3OGL94xcFnLHKyRoMdfqXygmD1RTpq0nPP0eGzU92pCaxSWasSk-w9F7sLfAvmQ5qceOQ0oGZQrJR8Qtg2D-sAtSKVZtSwtomZiAbJJxPu07g20iRjAE2V0jYGe-qXB04uLlFCsc9yb_Ffp&sig=Cg0ArKJSzNLQlEnw4ZT8EAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=105&cbvp=1&cstd=102&cisv=r20221027.89828&arae=0&ftch=1&adurl=
216.58.211.2200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssO26Nn2BR2_JnahVqwySty47wDtSHzUa_l9nlt0mPmpUgeDSK97fEe2zW5pWDvlw5EDZ2YnavaM7qtFKi6qgk1FMhs2Hj2kVkaeEz2uVsE3HaDKpHOfKgN8-qas_wpUqCvSN6VmwCjjfRLSZGz3ER3hGjqYYVDaGF6EWk6Hzio4wX4zw0u_FLtw7T35TiNu_yO6mslGS-zv-HTFppW4X82HeAQzGmBrZpMgj_PwY_wAVu3OmMyMIseSkDvGeyvASyOSJnw9s8rqh-cz0u8ytVsu-ipDnwJUjO4vgcJKSsQlZw7wzCOlx6TVJm38uTq6hgwGEkhakBvTMV4yNlgw7O-46x3wfJix3w0KJsLh9wKYaxLvVGYb-H1ZYfzlDFKz14gZ21uxQOBVB5PSEUkN29QquY8135KlXzplUIjwFSfy-ZhKrPdmqYztk64zMduNOZMGeZPOwFpZkROarVCsauFU3XqPcmdzkas2dGD6qGYQD0-PdN-h2Ir-3oke7V-bTIduJ0Z69iQY50BKHN8Rmo11GIXCm-uXlAmtrutYtWoqdwRYkKW544sbomfFi7e8dWBjy65d8CXC0r9en1uN7nj2Arurrsy0Ocqy3fqQS4XTlsBKVNUF9K4N_yKKW1ORFKs8gVGWZYAi0O9GyyNpvIWnRPoNZHqt818Dn2GuQTm9DWke65nUyd3V0h-524VrqtsOcueamDPHamV_wO6y3CAAaEX5jP6OU0yDaS1213XRNhtXs4ljVIQxA1uBqkH11HQPzlzA4rtnWA62TuolYgysadDNln2aNkW5lR1_Pi1YE7_S6K_df2Sd-lhb_C_YAfc97n5Bep7Wn2GXbmA23MDeh_8KwMaXgBQHfzPfbaWcR2Xw_QnMpKG0-olF20mxEWTcNyQmfl0BpE6H9oM59P7IgVzzcjihScKocn25rIeb5jdHiwwfTt34U2ZJyOfeJyBPRPvNSZ9Rq8gKUDa25K8g3uljZc0jUsavsCZima_hskDVpWb2q-ll5h3Vt_V7pvTMan-ySTZxD6cXw7EPqtjmNk2HmJHbgY5_zHX-hz9R0Uqsmbqc1ReIA1lz0FHKvQ14ZzduSoxuKMNEshyKPfuoHHd3KLv5YN55uG0MJUvcCCj_khLTjAwKKw34p1D9hreXHXJCAo0Q7N7qsootWj8sgl-eLfOv6d0VWdXz5LQ1_Rgizg92hwG14XCABb-aXyqQyQoKAHgsfwMnCHMERZb5atNXuxXDP50ABo&sai=AMfl-YQRqZ66HsyCqUBq-g6nenOVcdwEKqqS96Z1pKQkb4g1ISjMYXtfm_0hExBHQ9uR2BulnbS4D_2QOEFFx0NuTYfv40qEB20g0SVrvkFHzryoLUsVpptdBxZ6rQoTs7lDUYIlm3OGL94xcFnLHKyRoMdfqXygmD1RTpq0nPP0eGzU92pCaxSWasSk-w9F7sLfAvmQ5qceOQ0oGZQrJR8Qtg2D-sAtSKVZtSwtomZiAbJJxPu07g20iRjAE2V0jYGe-qXB04uLlFCsc9yb_Ffp&sig=Cg0ArKJSzNLQlEnw4ZT8EAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=105&cbvp=1&cstd=102&cisv=r20221027.89828&arae=0&ftch=1&adurl=
IP 216.58.211.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjssO26Nn2BR2_JnahVqwySty47wDtSHzUa_l9nlt0mPmpUgeDSK97fEe2zW5pWDvlw5EDZ2YnavaM7qtFKi6qgk1FMhs2Hj2kVkaeEz2uVsE3HaDKpHOfKgN8-qas_wpUqCvSN6VmwCjjfRLSZGz3ER3hGjqYYVDaGF6EWk6Hzio4wX4zw0u_FLtw7T35TiNu_yO6mslGS-zv-HTFppW4X82HeAQzGmBrZpMgj_PwY_wAVu3OmMyMIseSkDvGeyvASyOSJnw9s8rqh-cz0u8ytVsu-ipDnwJUjO4vgcJKSsQlZw7wzCOlx6TVJm38uTq6hgwGEkhakBvTMV4yNlgw7O-46x3wfJix3w0KJsLh9wKYaxLvVGYb-H1ZYfzlDFKz14gZ21uxQOBVB5PSEUkN29QquY8135KlXzplUIjwFSfy-ZhKrPdmqYztk64zMduNOZMGeZPOwFpZkROarVCsauFU3XqPcmdzkas2dGD6qGYQD0-PdN-h2Ir-3oke7V-bTIduJ0Z69iQY50BKHN8Rmo11GIXCm-uXlAmtrutYtWoqdwRYkKW544sbomfFi7e8dWBjy65d8CXC0r9en1uN7nj2Arurrsy0Ocqy3fqQS4XTlsBKVNUF9K4N_yKKW1ORFKs8gVGWZYAi0O9GyyNpvIWnRPoNZHqt818Dn2GuQTm9DWke65nUyd3V0h-524VrqtsOcueamDPHamV_wO6y3CAAaEX5jP6OU0yDaS1213XRNhtXs4ljVIQxA1uBqkH11HQPzlzA4rtnWA62TuolYgysadDNln2aNkW5lR1_Pi1YE7_S6K_df2Sd-lhb_C_YAfc97n5Bep7Wn2GXbmA23MDeh_8KwMaXgBQHfzPfbaWcR2Xw_QnMpKG0-olF20mxEWTcNyQmfl0BpE6H9oM59P7IgVzzcjihScKocn25rIeb5jdHiwwfTt34U2ZJyOfeJyBPRPvNSZ9Rq8gKUDa25K8g3uljZc0jUsavsCZima_hskDVpWb2q-ll5h3Vt_V7pvTMan-ySTZxD6cXw7EPqtjmNk2HmJHbgY5_zHX-hz9R0Uqsmbqc1ReIA1lz0FHKvQ14ZzduSoxuKMNEshyKPfuoHHd3KLv5YN55uG0MJUvcCCj_khLTjAwKKw34p1D9hreXHXJCAo0Q7N7qsootWj8sgl-eLfOv6d0VWdXz5LQ1_Rgizg92hwG14XCABb-aXyqQyQoKAHgsfwMnCHMERZb5atNXuxXDP50ABo&sai=AMfl-YQRqZ66HsyCqUBq-g6nenOVcdwEKqqS96Z1pKQkb4g1ISjMYXtfm_0hExBHQ9uR2BulnbS4D_2QOEFFx0NuTYfv40qEB20g0SVrvkFHzryoLUsVpptdBxZ6rQoTs7lDUYIlm3OGL94xcFnLHKyRoMdfqXygmD1RTpq0nPP0eGzU92pCaxSWasSk-w9F7sLfAvmQ5qceOQ0oGZQrJR8Qtg2D-sAtSKVZtSwtomZiAbJJxPu07g20iRjAE2V0jYGe-qXB04uLlFCsc9yb_Ffp&sig=Cg0ArKJSzNLQlEnw4ZT8EAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=105&cbvp=1&cstd=102&cisv=r20221027.89828&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://e35aed0e0ae0b84be86c18fd69f8e5c4.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 04 Nov 2022 02:59:44 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 04-Nov-2022 03:14:44 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 04 Nov 2022 02:59:44 GMT
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1667530783297&asid=61d828eebcd2bb5c4a7fea6a%2C61dd6f1d8590325cc5677477%2C61dd704e41d86f5d5f7a0f44%2C61d829ec9153372ff344f254&ofpr=%2C%2C%2C&fpo=%2C%2C%2C&ri=%2C%2C%2C
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1667530783297&asid=61d828eebcd2bb5c4a7fea6a%2C61dd6f1d8590325cc5677477%2C61dd704e41d86f5d5f7a0f44%2C61d829ec9153372ff344f254&ofpr=%2C%2C%2C&fpo=%2C%2C%2C&ri=%2C%2C%2C
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1667530783297&asid=61d828eebcd2bb5c4a7fea6a%2C61dd6f1d8590325cc5677477%2C61dd704e41d86f5d5f7a0f44%2C61d829ec9153372ff344f254&ofpr=%2C%2C%2C&fpo=%2C%2C%2C&ri=%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:44 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
fonts.gstatic.com/s/almarai/v12/tssoApxBaigK_hnnS-agtnqWow.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/almarai/v12/tssoApxBaigK_hnnS-agtnqWow.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 48004, version 1.0\012- data
Hash 4241ff0c841b534008efe4dfec1d8c41
087cdebdde11b5563124f1604ac71cbca4c23ccf
6b5a1116fedf74e888369da43f27b4ea6e21a7c5b3e3dde3227da6c21a2ef67c
GET /s/almarai/v12/tssoApxBaigK_hnnS-agtnqWow.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://s0.2mdn.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 20:05:57 GMT
expires: Tue, 31 Oct 2023 20:05:57 GMT
cache-control: public, max-age=31536000
age: 284027
last-modified: Tue, 19 Apr 2022 18:29:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ade.googlesyndication.com/ddm/activity/dc_oe=ChMI8qGGoMST-wIVGQiiAx1cSQwWEAAYACC4tYBWQhMIxf_Qn8ST-wIVBtSaCh3Gbgpn;met=1;×tamp=1667530785263;eid1=871060;ecn1=1;etm1=0;eid2=2;ecn2=1;etm2=1;eid3=3;ecn3=1;etm3=1;eid4=4;ecn4=1;etm4=0;
142.250.74.130200 OK 42 B URL HTTP/2 ade.googlesyndication.com/ddm/activity/dc_oe=ChMI8qGGoMST-wIVGQiiAx1cSQwWEAAYACC4tYBWQhMIxf_Qn8ST-wIVBtSaCh3Gbgpn;met=1;×tamp=1667530785263;eid1=871060;ecn1=1;etm1=0;eid2=2;ecn2=1;etm2=1;eid3=3;ecn3=1;etm3=1;eid4=4;ecn4=1;etm4=0;
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/activity/dc_oe=ChMI8qGGoMST-wIVGQiiAx1cSQwWEAAYACC4tYBWQhMIxf_Qn8ST-wIVBtSaCh3Gbgpn;met=1;×tamp=1667530785263;eid1=871060;ecn1=1;etm1=0;eid2=2;ecn2=1;etm2=1;eid3=3;ecn3=1;etm3=1;eid4=4;ecn4=1;etm4=0; HTTP/1.1
Host: ade.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e35aed0e0ae0b84be86c18fd69f8e5c4.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 04 Nov 2022 02:59:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=77414&t=1667530780&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1667530780007-923783222576-008440-008-003833&cha=0.1&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.60&cb=1170239939&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3504
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:46 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
static.adshort.co/link/css/bootstrap.css
104.21.52.33200 OK 0 B URL HTTP/2 static.adshort.co/link/css/bootstrap.css
IP 104.21.52.33:0
GET /link/css/bootstrap.css HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: text/css
cf-bgj: minify
last-modified: Mon, 24 Feb 2020 16:45:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3601
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vke56myexD2e2Jcf8%2F%2BIDiGRtb8ggzHJE1maHdZ9jtHKR9KVom3BTWjHa0UjIfZ4W2YbB0GiTEAygZIBsjGKiBFeyZehaZEXSmfXO5wKwOjA5uVTKlt1UnJCXPTnRfqIyvsrqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 764a184c28d7b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.adshort.co/link/css/link.css
104.21.52.33200 OK 0 B URL HTTP/2 static.adshort.co/link/css/link.css
IP 104.21.52.33:0
GET /link/css/link.css HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: text/css
cf-bgj: minify
cf-polished: status=cannot_optimize
last-modified: Mon, 24 Feb 2020 16:45:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3601
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GEVOqO3%2BH6E76XtxnU3WUDjxgL2mc2%2FRxz4mJR6tlmdz48TedgNxfL6GowG5c2Ywy3XLI8PF%2BRvmPfIJLCsKywEMCKdpx00sXxWmE0c8eN%2FAJ5k5mikrs5byFjfe0XFQohwV%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 764a184c38ddb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.adshort.media/adx/fixed_adxv2t_607.js
172.67.179.96200 OK 0 B URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_607.js
IP 172.67.179.96:0
GET /adx/fixed_adxv2t_607.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Wed, 09 Feb 2022 09:40:28 GMT
cache-control: max-age=2592000
expires: Sat, 03 Dec 2022 23:46:30 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 11589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sDHJAUfasRyUHSUMELpClk6aq%2FNSp%2B2vH5uqBfSmpGXKFwyf2dsvh%2BW6RKBaziUYAMDspdPzoa6%2FMcg%2BB6Wxhsfh69O2Gg%2BJ9eRrR%2BqEwRe6jNsTANnczadywCo0MKAvzKwvBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764a184c5a3bb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go.techgeek.digital/PUAcxix
104.21.54.123200 OK 0 B URL HTTP/2 go.techgeek.digital/PUAcxix
IP 104.21.54.123:0
GET /PUAcxix HTTP/1.1
Host: go.techgeek.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
set-cookie: AppSession=1e2d3859d61acf4c2e0bff9a3b9b19ad; path=/; HttpOnly
refPUAcxix=N2Y2NmEwMmEyNzM4MGZlMjYxNWVmZWIxMTdiZTQ3ZGQ1ZjdmNDczZGZlNGVjY2MzNjg4NGU2ZWU5ZWYxMTM5MpedurpOgPCYQ2fMXTfNGXY6f0fVBuN5%2BDx3XL2aR1iU; expires=Fri, 04-Nov-2022 03:04:39 GMT; Max-Age=300; path=/; HttpOnly
csrfToken=db76fb2af845ce41d9ba47ca05010beb6975c6db8b3b10e14423dc960ff5c0af9beb412c04eb8582bc54eb993ee572dab74eb8a753f4d0945b3ce1c7e9fe18e4; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X6e0LuNstbh84312tACWbyIpnmVjFN1wAWKNMvpUtuD%2BJa76kwa5QReoNiFyvZ7gfYTYjmiwBP%2F90hxtGsWz6U85CwbZLruntymcLo80bnuvS8prR62FyUg4g8XuQ1tcPOwIbEjL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764a1847bfb2b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adshort.space/script_ad.js
172.67.131.51200 OK 0 B URL HTTP/2 adshort.space/script_ad.js
IP 172.67.131.51:0
GET /script_ad.js HTTP/1.1
Host: adshort.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: application/javascript
last-modified: Mon, 25 Jan 2021 10:26:17 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1949
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IVVO7VvXJjO8P%2Buxaos%2FqpENrXfp24ktea3ZYSnncPFDe7uxTfCRdQi5%2BPoiP2FLJT0FclJHUCqLievVScMOBHFqmAwAaVrBMmHNTzJ9a0LkWK3mCLdUuScjlwIyBmTJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 764a184c7b16b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nanouwho.com/1?z=4986256
139.45.197.242200 OK 0 B IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
GET /1?z=4986256 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 1f58b8c84e002331c437c87c0095bcc2
access-control-expose-headers: X-Sc
x-sc: 4WEdXXPlJlBg3VPcEa5soaZRbZDzLuVjiDzA7EdeJZ3BoWw83oXBWtOoO6UglJZZ0COQp-PSr6u2ABLUfuC-iayS_m4=
set-cookie: scm=1; expires=Sat, 04 Nov 2023 02:59:39 GMT; secure; SameSite=None
OAID=6e52b1e9d28e45eb87313dc6ce472b3d; expires=Sat, 04 Nov 2023 02:59:39 GMT; secure; SameSite=None
oaidts=1667530779; expires=Sat, 04 Nov 2023 02:59:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
betotodilea.com/400/4986248
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/400/4986248
IP 139.45.197.237:0
Analyzer Verdict Alert quad9 Sinkholed
GET /400/4986248 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: application/javascript
x-trace-id: fc5a2effa45ba158287658d755191620
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=c8d916f5f0884d40b8dfe5f6f0d4f552; expires=Sat, 04 Nov 2023 02:59:39 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=2d2eacebfc5340539244307af34e0ef0
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=2d2eacebfc5340539244307af34e0ef0
IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
POST /9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=2d2eacebfc5340539244307af34e0ef0 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 43
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=6e52b1e9d28e45eb87313dc6ce472b3d; oaidts=1667530779
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: abc70322050292c6d887338faafa8c86
access-control-expose-headers: X-Sc
set-cookie: OAID=2d2eacebfc5340539244307af34e0ef0; expires=Sat, 04 Nov 2023 02:59:40 GMT; secure; SameSite=None
oaidts=1667530779; expires=Sat, 04 Nov 2023 02:59:40 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
go1.aniview.com/api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.60&responsive=1&sver=3&avtoken=779464&omv=1.0.1&clsid=91ad7a6c-ac72-495b-9206-92b5034390cf&rando=27&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1667530779486&wfc=1
50.17.121.98200 OK 0 B URL HTTP/2 go1.aniview.com/api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.60&responsive=1&sver=3&avtoken=779464&omv=1.0.1&clsid=91ad7a6c-ac72-495b-9206-92b5034390cf&rando=27&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1667530779486&wfc=1
IP 50.17.121.98:0
GET /api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2FPUAcxix&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.60&responsive=1&sver=3&avtoken=779464&omv=1.0.1&clsid=91ad7a6c-ac72-495b-9206-92b5034390cf&rando=27&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1667530779486&wfc=1 HTTP/1.1
Host: go1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1667530780007-923783222576-008440-008-003833; Expires=Thu, 24-Nov-22 02:59:40 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
aniC=; Expires=Thu, 24-Nov-22 02:59:40 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
expires: Sun, 23 Oct 2022 13:13:00 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
nanouwho.com/27/b10314e887d309db18535b2593bd9514
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/27/b10314e887d309db18535b2593bd9514
IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
GET /27/b10314e887d309db18535b2593bd9514 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=6e52b1e9d28e45eb87313dc6ce472b3d; oaidts=1667530779
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:40 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 20 Oct 2022 04:50:21 GMT
expires: Thu, 19 Nov 2082 04:50:21 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adshort.media/adx/video_adx_f096.js
172.67.179.96200 OK 0 B URL HTTP/2 ads.adshort.media/adx/video_adx_f096.js
IP 172.67.179.96:0
GET /adx/video_adx_f096.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Mon, 10 Jan 2022 15:53:00 GMT
cache-control: max-age=2592000
expires: Sun, 06 Nov 2022 18:48:48 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2362251
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5GoRPnUX1YO7Qa0esQrNQfwAVr9ADwyH%2FKdrikpJXiNCRnpBC3MrYPdli3Lbt1qpNWG0axNB1gnJUvp8hFcN6MnUFT9izHJuATwFpoFq2Vf0l0DEQ5rvrRQgJUUWbAcldbpDOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764a184c4a3ab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Questrial
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Questrial
IP 142.250.74.10:0
GET /css?family=Questrial HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 02:59:39 GMT
date: Fri, 04 Nov 2022 02:59:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
zunsoach.com/5/4503973/?oo=1&aab=1
139.45.197.248200 OK 0 B URL HTTP/2 zunsoach.com/5/4503973/?oo=1&aab=1
IP 139.45.197.248:0
GET /5/4503973/?oo=1&aab=1 HTTP/1.1
Host: zunsoach.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:59:39 GMT
content-type: application/json
x-trace-id: dfeed0fd9b2074c1ba3d61b32dd32257
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=2d2eacebfc5340539244307af34e0ef0; expires=Sat, 04 Nov 2023 02:59:39 GMT; path=/; secure; SameSite=None
oaidts=1667530779; expires=Sat, 04 Nov 2023 02:59:39 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2