r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5366
Expires: Thu, 24 Nov 2022 01:05:07 GMT
Date: Wed, 23 Nov 2022 23:35:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5242
Cache-Control: max-age=130977
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:41 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:58:38 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7010
Expires: Thu, 24 Nov 2022 01:32:31 GMT
Date: Wed, 23 Nov 2022 23:35:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 34TwvFMGkBeo6CO65qDMOI9rXaoNi9cAdClP90V1z9yhvk+az3svkn1e/4Wf7KphiZaLgnDtRqg=
x-amz-request-id: 80JRKJMJNETN9TS9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 22:40:10 GMT
age: 3331
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 23:17:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1108
alt-svc: clear
X-Firefox-Spdy: h2
m.finanzas-vida.com/winds
172.67.166.168200 OK 8.2 kB URL HTTP/1.1 m.finanzas-vida.com/winds
IP 172.67.166.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2930), with CRLF, LF line terminators
Hash dd487760664e2d9fe7529ceb1053ab75
b1f26d31eadee961cb996b23048d2a6be29d418c
fab03180087fffb86c6293e49caee68be4c1dcd767965c17ef2bd054346e4a51
GET /winds HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
Set-Cookie: lang=en_US; expires=Sat, 18-Nov-2023 23:35:41 GMT; Max-Age=31104000; path=/
AppSession=4e04c36f5dcf8f489796402bf49336d6; path=/; HttpOnly
csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4; path=/; HttpOnly
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=01iS6t5kVRZ61gURAZRzNOV%2FsS6g%2BIHu3N647BCbS3cnQXom3kV2eZZV%2BKx%2B4LfycU%2F2FKZMLb7qJaSdlmjxVi6ly3bL%2FizJgeYk5qNWoU%2B%2FlLD04DC92mi7cQb9wr5gW6ui7FrI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76edb904fb9eb51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 23:35:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
m.finanzas-vida.com/acortaz_theme/css/bootstrap.min.css
172.67.166.168200 OK 24 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/bootstrap.min.css
IP 172.67.166.168:0
File type ASCII text, with very long lines (65324)
Hash d8b8037e618e0918d03629a24a43a355
7077dc2c260d5f0d65986a308a38f3053c290458
acbb0054514eb6bd2c1abf982c5a077e8e2b1feaf59beb0dfc4ccec937f16bef
GET /acortaz_theme/css/bootstrap.min.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:41 GMT
Content-Type: text/css
Content-Length: 23845
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36550
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2B8IzRC2RHmPwE6fSsghr8lJq8kBR2WMXp9y2erYyA6JiNHiQwSkhsefIuv3srb1iN%2FJUPa6RnMDDAHiQR13JZVr%2Bv8Yq1vjmu4kCUqL%2FPMnkwGF5sorpI6I8k8%2BqaH8kGrtOA9F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9075d95b51d-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/css/magnific-popup.css
172.67.166.168200 OK 1.9 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/magnific-popup.css
IP 172.67.166.168:0
Hash 17122c906dd1a862f96624fd2e672e7a
f14c3934989971cb348262fe16c8a846ad2ae224
fd821f975c1022810af8626972a55610a1a7bea8e05d8f3d5494fc1e8acb3c8e
GET /acortaz_theme/css/magnific-popup.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:41 GMT
Content-Type: text/css
Content-Length: 1938
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36550
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D9kcy8nnKzvyiC7TOOXcrsfAdr0MX3ObLxEJI6Q9yNTq7p1lkXCAHXfBy9%2FKHpmXjU0MkpaiAsLUag4aNcPN9h%2FuA7h5hvrVqdcsOvpcFN931lu3MLatngE%2BgN5%2BB%2F7xHAA68COx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9075bdab4ee-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/css/materialdesignicons.min.css
172.67.166.168200 OK 40 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/materialdesignicons.min.css
IP 172.67.166.168:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1c13974888b04609978ba00d6861f6f9
e86980ee488c614cf4d8b3acbc361ce00739d270
1d563a9838ae252a4de14e821cb64fee3d8e757c995c7bfae6d3a94011dc4e82
GET /acortaz_theme/css/materialdesignicons.min.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:41 GMT
Content-Type: text/css
Content-Length: 39896
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36550
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l7lzv89HgdqVDPOez0bHF3G6wpzKQsVcpEz5mzfJ5xSIf33NXfo46PriEddc10x2fczBKb0LYEadBBww68mwaGSzk%2FSZiaEYmfrN0WPiUhF8T0g86y%2F7Wtc3M34NJJEtbBWL3iz0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9075d290b06-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/css/colors/skyblue.css
172.67.166.168200 OK 1.6 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/colors/skyblue.css
IP 172.67.166.168:0
File type CSV text\012- assembler source text\012- assembler source, ASCII text
Hash 048a5c45178a2765d40e8899e7ec366d
8371c17b5c81b2e7390cf1da3175324265a55e4c
441515df9d10403ad43e63867d185ac25c99d30f1859b8b4b45dcdc9cec781ba
GET /acortaz_theme/css/colors/skyblue.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/css
Content-Length: 1559
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=luY4WeH2CwG6p7J1wNOriXdrAyw5Z%2BLHh9gEPbGpDFsnFnPWeNskIk23r0L5%2B4FMchT3rIEmW94625TcRnSuQ%2BV07%2FiI4iseX6c2E4PvTfJGEQKim%2ByKmH0JmjLbcIrECTGX1Eyi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9077bfcb4ee-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/css/owl.carousel.min.css
172.67.166.168200 OK 1.1 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/owl.carousel.min.css
IP 172.67.166.168:0
File type ASCII text, with very long lines (3184)
Hash 8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5
GET /acortaz_theme/css/owl.carousel.min.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/css
Content-Length: 1068
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2FpQ%2BpQlYCddmgQKeYvYvxdwERniYjJIUJyTyRxn0E2%2FfuLn2PZwUO7I%2B7Fx%2FJOcCKsp48%2FwaDxeJVanmd7fUUq783jm11frzvz2AEbyBSGsWVDh27H1e4DVgWFR9D4noCu4LQAb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9077d3c0b06-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/css/aos.css
172.67.166.168200 OK 2.3 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/aos.css
IP 172.67.166.168:0
File type ASCII text, with very long lines (25948)
Hash 8fc87e71c70b219e7d44152acf9a4e06
29b03c24a2abc1d40f6f2a5c3f171e511ca9cb3b
19a7b180bf5722c8541da27f3ebbf046c764830bbc5e5432798897e5f527f022
GET /acortaz_theme/css/aos.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/css
Content-Length: 2260
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nQxtndjBADf1FqXJuE9bI1YoDpHVs2p1cupGIyGbM25mUCoYhXJpHGSxQTpowrV3AvCUNWV8kbp4NhGXBI5zYeFemQdcUMXNmGGuF2TXnStLUA2nGIPrRLq36hxRHfWc3e6ioSHt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb90778bd0b41-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/css/style.css
172.67.166.168200 OK 14 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/style.css
IP 172.67.166.168:0
File type assembler source, ASCII text
Hash 93db643fda24f9ba374cd4478973609f
9a8c2528e882d0e232c17dee24b183eaa7325907
66dbcdaa3a63d9d28a99092851a71a4848fbc46313a9304fbcd0e4f09ec3aa29
GET /acortaz_theme/css/style.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/css
Content-Length: 13579
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hNg9W%2FOtqHekFGuwVffpmuWJrFEIHAGry4FxqDFt26J81MHasMdNlwKzYPZCyB01Oa28KDLKczkx2Q4oyngzgczRCrnoJWx4AXvpwYmXJW%2FIsOLpbAD3oqkMdxL1kCOCPAHf5qdp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9077fbab4f9-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/jquery.easing.min.js
172.67.166.168200 OK 817 B URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/jquery.easing.min.js
IP 172.67.166.168:0
File type ASCII text, with very long lines (2532), with no line terminators
Hash d1a8f2ab3b6408f68a4f01d31ac90bc1
42b49a5c362f0cc5ca31dab43a8b98d499cdbf78
17368cc18bda01725115cb1ea484fe4059f425c73ec69fdbc3708fb4a597d1a3
GET /acortaz_theme/js/jquery.easing.min.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 817
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0MuQ%2FFPP%2BJADDR7hzgHcwCTn8FkyV5IjtEE36tfqeB15NoKrQAYHROU7tfdKX0W%2FQZENwPwaAGhV%2BGUyel3GcnZzmxTAPQD6A8Sw6ce17l5Beu%2BAQ3rOaYwbcXOweZrfNEZB2%2Fdb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9078c10b4ee-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/scrollspy.min.js
172.67.166.168200 OK 654 B URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/scrollspy.min.js
IP 172.67.166.168:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1310), with no line terminators
Hash 52eb89a8cb5d149605707452a5b121ed
93a275664a44bc9eadc52740ba10b5b69ed153fb
b1fc99a4dd46cb4f26c6422a5f5bb57f9ba240637477a2f57dcdca96e1e39d08
GET /acortaz_theme/js/scrollspy.min.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 654
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HJMHSnQ0J29d075fo5kmBrgZeKgI%2FdR7SJSI685xxynBxSsHXXdI7Zsq%2FGpwev5NsmHi%2BQhJKO6hy1ZzoWDDn03b1zOprsRNF3Ii76AECAUxBUx1YV21goJ%2FHRVBZVSCkzSiEdhS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9079d410b06-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/css/owl.theme.default.min.css
172.67.166.168200 OK 479 B URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/css/owl.theme.default.min.css
IP 172.67.166.168:0
File type ASCII text, with very long lines (846)
Hash ed01e339cf287cc8556f302210540fc9
4d4319bfb04d9a9939d387c7ff44dfa29b3772ef
4fdb569f083e05758aa13c7dc42c4b83c7c191ebc0c267c4afe926a81d4109fe
GET /acortaz_theme/css/owl.theme.default.min.css HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/css
Content-Length: 479
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BSXPxwaa2TXnaOeQyXB5Em5p%2FuvR%2F1jdHE2sDMW%2FmImID6B3qwubn0rMgxoxZzdMnfaB%2F59tbd1VAOVRiPFnAJxPkay3J9J%2B4JYVuH5I7N2yACI4cQP3pnEcTMLln%2Fbo8X%2F4uKm5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9077a2efac0-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/bootstrap.bundle.min.js
172.67.166.168200 OK 22 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/bootstrap.bundle.min.js
IP 172.67.166.168:0
File type ASCII text, with very long lines (65297)
Hash e0d6bd060ae45edfcf1426b1cf67930c
1a28940ee80d86a3d326239e2d9f974cac657f5b
ee7a5c9ac9eb841e8ad7ff86dc6fb9126c4cf850922618e9c7b650b327565ae0
GET /acortaz_theme/js/bootstrap.bundle.min.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 21724
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M4ebSRzXkHy%2F7xZbFDL%2F7OuvN5MstxqeJdEyLiV2ZdAXziAQXXUBaLYIIycF9xMUSdaZ2a%2B%2FCEeIH0%2BPb%2BydUhbM0k0VZFKLVrOGzYUHZCcePyVnB%2FIK7KQ4E0WwRGxcvgJd%2F5qx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9078dafb51d-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/jquery.magnific-popup.min.js
172.67.166.168200 OK 7.6 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/jquery.magnific-popup.min.js
IP 172.67.166.168:0
File type ASCII text, with very long lines (20818)
Hash d3369104b2439ab727a1e8b6cb361d2a
0c99633f0c742643a13a66aed4ad22c39cbb5d0c
52a6ae90714006abcdec4e137b978d3c846025e6ae8c20bbb05f1929dad6383f
GET /acortaz_theme/js/jquery.magnific-popup.min.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 7594
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BgS5fzCly76s64zuf95sf%2FnUCnRFVGzOmHcMm3s7oaT2KewNHUTjDly5EmCiyM7XwtluhRqM8GsPTL5OR9xdB1U6%2BQ777loXukVooN6seZwAySW612gi0i4cHIsY6yw1D5kdVLWz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb90798d10b41-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/magnific.init.js
172.67.166.168200 OK 166 B URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/magnific.init.js
IP 172.67.166.168:0
Hash 40cec554fbaaf74145b9780c26962cd7
026dd27f403947cb0aecd23240e198018aaad910
bf1ebcf850056eabbb1d9657ed32008a7e1e841efc3e20145c3d73d21aeb32d3
GET /acortaz_theme/js/magnific.init.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 166
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nquvP1tEOVLkvfl2grWe7SFq8MhMPoGX%2FOJ1yN6f%2BzS0rgr22qVvjFkHDG32%2BXaHK1C3wr4JkPSUwhaIQ6mqJM%2FzT2hnRx7nRNdt0QHATch%2FLoD%2BuMh9l0ZVY4i53G1UKq7%2FnYjM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9079fdcb4f9-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/owl.carousel.min.js
172.67.166.168200 OK 11 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/owl.carousel.min.js
IP 172.67.166.168:0
File type ASCII text, with very long lines (31997)
Hash 147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c
GET /acortaz_theme/js/owl.carousel.min.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 11412
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IFIyNXa9VuHRMnlK716hGlrFyO2h3Ee2GthWLzCRIct9su%2FTQWxPBS%2BuQbUwEluNksS3Yw6By22686TxU2EfKtej8rJGd6G8DJpiajMSdMDQztRIDSaP5ATaKsz1NPCzSrNkyg9K"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb907ac29b4ee-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/owl.init.js
172.67.166.168200 OK 249 B URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/owl.init.js
IP 172.67.166.168:0
Hash 1178357de405dc512ad0141d032d4f7f
6bfbde16bb45c61844e8203ab1cc9792b2f40e68
3e75659a73869029299e5c33792296ee0905c097347dbc92d93b6a78efb25fbc
GET /acortaz_theme/js/owl.init.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 249
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IhYW3F2W4xs3L1XJWudZdtv%2F8SR00ZorVJ%2FeT1YGPFrH92nmXCKaBO54GZGL5t5SrrG0UVq1QKiEp5Yy2k86dHHUiHcBJjKpWHOYusXyzt3bdXZ4CC0aDm9IAULxA9GMKlDP6Kuk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb907ad460b06-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/aos.js
172.67.166.168200 OK 4.3 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/aos.js
IP 172.67.166.168:0
File type ASCII text, with very long lines (12414)
Hash 9ee5eee0094f091319e52462de5aef97
a7c8daf227ad5486c29192ccb257093e0fc55072
a4901c10ad16602dd2df5ab175c58b82d1545e3f1b46dfed819c6de191e178a6
GET /acortaz_theme/js/aos.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 4296
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xiuNTYGZLGNZvY5goJj0dBospxx%2FeDYP4BrvqKVVAfemCKCdA0MWZZ9nfbHMu0rhSbcpbhBnBHNhso%2BsJdJn9BB%2B25137VolwbkWNI3eDjegX4bEvVOPGrnhjXZrN9CgFcTVahfS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb907aa42fac0-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/feather.min.js
172.67.166.168200 OK 20 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/feather.min.js
IP 172.67.166.168:0
File type Unicode text, UTF-8 text, with very long lines (61490)
Hash f9a0e93e4d3e9da3a0ff9e3c7c887e6b
5c269e6f3860110826cb284c491c3e765a8e824f
a02a93d1a33fe837780f076fa0bff00b752d29d284f3e0d3a6c49460bb00bd89
GET /acortaz_theme/js/feather.min.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 20514
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Uh67RjTVR6vqltw3hNitTl1eojuiC90z8xDxeFIWF30yIV5Q8%2BtEmbq0tl5s2oUL3%2BMOLTP2j8JRUY7YQMZMlyWxIVdAi%2For2WzFtbS4%2F0rpU519Cokz6BDqYsmjWXIpM5wZE%2Be"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb907fdefb51d-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/js/app.js
172.67.166.168200 OK 1.1 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/js/app.js
IP 172.67.166.168:0
Hash 9ffd7365aa0c1573eb16006938efd198
06cbbf384457225a04a548c808e73d5bc15edc16
730b0da7ee52474c026f73466cac9ae0c1aee5bd7e4c80235d87cf5adbb48cc9
GET /acortaz_theme/js/app.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 1059
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nd7RFvF6a77mnE8zR2iQ6RqH7RuibRdStOYa3Y6KMkv3GvOQQmcaLAecFtxHrVr%2BdGxWwzbKZ6dapQ%2BvjyzY25WY8qSK4y7lo4U51pnevkNdTH4kYTzo6wy036jjRrwC%2BNT5jQtZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb907f8f70b41-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/images/logo-dark-2.png
172.67.166.168200 OK 44 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/images/logo-dark-2.png
IP 172.67.166.168:0
File type PNG image data, 857 x 155, 8-bit/color RGBA, non-interlaced\012- data
Hash 766b8fb6060462d0974a75fe58144148
750df4880617a2ba20cd48d1e57febf30aac6754
b9fc4a0e5ad0039211a5d9f3bc891adcf2efbc821cfbfa1e56c01dd37130a072
GET /acortaz_theme/images/logo-dark-2.png HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: image/png
Content-Length: 43784
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tZQL%2B%2FFZZtPl%2BFdawAPnma8efVPJot4gwwJwe21cCTTj5shQgDtn4hjuciALzMNQbnhPg5ssgapNvGEnc6I6f%2Fij5bUrrFFGn6MptSWK%2B0vL%2F7BeArqwAwcxvWcuOTjiKw7CdLIK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9081834b4f9-OSL
alt-svc: h2=":443"; ma=60
ads.themoneytizer.com/s/gen.js?type=11
185.76.9.18200 OK 2.4 kB URL HTTP/1.1 ads.themoneytizer.com/s/gen.js?type=11
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash befbfe8e008d3a1fc9b0a2991443888c
725357c328900ef423354fb678553a0dc29d22db
58fdbded093edae1662ccf0163a2a1e807029bcbc62a820d67795d0ef4253f67
GET /s/gen.js?type=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=604800
X-Accel-Expires: @1669784593
Server: CDN77-Turbo
X-77-NZT: AblMCQ07jgL/vQQBAA
X-77-NZT-Ray: c0a4cc283dd8a8bd4eae7e6365768509
X-Cache: HIT
X-Age: 66749
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=11
185.76.9.18200 OK 20 kB URL HTTP/1.1 ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=11
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (39228)
Hash 50c5bc816f02984d25b301a06f32da55
f50829fbffdd1643d39e7beac2f8e932e9fc2df1
b477ed254a89102cb7e84c6b00f2a551d6881e2e3d1f319b582c96e9ab2726f1
GET /s/requestform.js?siteId=46583&formatId=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=604800
X-Accel-Expires: @1669830310
Server: CDN77-Turbo
X-77-NZT: AblMCQ0xlSP/KFIAAA
X-77-NZT-Ray: c0a4cc2826ccacbd4eae7e63fe278709
X-Cache: HIT
X-Age: 21032
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
iononetravoy.com/1clkn/33405
172.255.6.92200 OK 26 B URL HTTP/1.1 iononetravoy.com/1clkn/33405
IP 172.255.6.92:0
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
GET /1clkn/33405 HTTP/1.1
Host: iononetravoy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Thu, 24-Nov-2022 23:35:42 GMT; Max-Age=86400; path=/
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Thu, 24-Nov-2022 23:35:42 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-77394287-13
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-77394287-13
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 7a730f28e7f2e29e05ab21615fbb062a
6350938f4d1ad7fb240685a95b507ee0ff438c09
2e8a049083913420dac7b01665da37b9dbe9e39bc6a86cc4f7cd668f2c951b5f
GET /gtag/js?id=UA-77394287-13 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 23:35:42 GMT
expires: Wed, 23 Nov 2022 23:35:42 GMT
cache-control: private, max-age=900
last-modified: Wed, 23 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43595
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4dc1267b2c31e57e1fd4861b5aa8de0c
711de60925eb8b86ec66c581de006d313b575378
bc7be5b62c03b6873caaa6ef8c6f5826510ed1f7762ac52081b8c9ce89531b7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Server: ECS (amb/6B9E)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4dc1267b2c31e57e1fd4861b5aa8de0c
711de60925eb8b86ec66c581de006d313b575378
bc7be5b62c03b6873caaa6ef8c6f5826510ed1f7762ac52081b8c9ce89531b7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=138690
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e2910-117"
Expires: Fri, 25 Nov 2022 14:07:12 GMT
Last-Modified: Wed, 23 Nov 2022 14:07:12 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4dc1267b2c31e57e1fd4861b5aa8de0c
711de60925eb8b86ec66c581de006d313b575378
bc7be5b62c03b6873caaa6ef8c6f5826510ed1f7762ac52081b8c9ce89531b7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=138690
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e2910-117"
Expires: Fri, 25 Nov 2022 14:07:12 GMT
Last-Modified: Wed, 23 Nov 2022 14:07:12 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4dc1267b2c31e57e1fd4861b5aa8de0c
711de60925eb8b86ec66c581de006d313b575378
bc7be5b62c03b6873caaa6ef8c6f5826510ed1f7762ac52081b8c9ce89531b7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=138690
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e2910-117"
Expires: Fri, 25 Nov 2022 14:07:12 GMT
Last-Modified: Wed, 23 Nov 2022 14:07:12 GMT
Server: nginx
Content-Length: 279
arbourrenewal.com/b9/f8/46/b9f846ea23489def30a20b028b981bd1.js
192.243.59.13200 OK 11 kB URL HTTP/1.1 arbourrenewal.com/b9/f8/46/b9f846ea23489def30a20b028b981bd1.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (32135), with no line terminators
Hash 2fb27eb6be8695bfa3c6773acca68968
bdea3107d735198144078025d477eb315006c988
245800268566495f946b3f9db3716c26df07b9cdad7c81671f5628bf3f5440bb
GET /b9/f8/46/b9f846ea23489def30a20b028b981bd1.js HTTP/1.1
Host: arbourrenewal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 89e1d4fbd71306bc223963e93ee09f84
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ads.themoneytizer.com/s/gen.js?type=19
185.76.9.18200 OK 2.7 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=19
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash 3334b4c06b9d09a74317ffdfbbd6211f
bea1cee058e2e25ebdc677dae63dcca46e8ff771
69f0c0187419f74b185051d01886905934417297a6dfbeda38379239d156a22b
GET /s/gen.js?type=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669784595
server: CDN77-Turbo
x-77-nzt: AblMCQ1OGL//uwQBAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e632810fe1e
x-cache: HIT
x-age: 66747
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4dc1267b2c31e57e1fd4861b5aa8de0c
711de60925eb8b86ec66c581de006d313b575378
bc7be5b62c03b6873caaa6ef8c6f5826510ed1f7762ac52081b8c9ce89531b7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=138690
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e2910-117"
Expires: Fri, 25 Nov 2022 14:07:12 GMT
Last-Modified: Wed, 23 Nov 2022 14:07:12 GMT
Server: nginx
Content-Length: 279
m.finanzas-vida.com/vendor/jquery.min.js?ver=6.4.0
172.67.166.168200 OK 31 kB URL HTTP/2 m.finanzas-vida.com/vendor/jquery.min.js?ver=6.4.0
IP 172.67.166.168:0
File type ASCII text, with very long lines (32065)
Hash 97cb3af598a28ab179866c7037ea9acd
44c8c121235eb7f812d6c8f5bf6e8ce7ee16a0c5
cf51ddb822e06108d0fb817aebdb506f53feca9d1cee45d1c0f4811eaef2f5f7
GET /vendor/jquery.min.js?ver=6.4.0 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
expires: Thu, 24 Nov 2022 00:30:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=39809
x-served-by: m.finanzas-vida.com
cf-cache-status: HIT
age: 36551
last-modified: Wed, 23 Nov 2022 13:26:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JckVhtIZhaQxNOqvIQCaMamurRyh8%2FEH7umZdEeUheXNoGHq4SVemV7pWdcNHjruR4aNbwOfm2DjGrsH1gK%2FgKHg3KK0UPZRUlgNdnZm741kR6M21kiSVwobj8TtX6XxJJpZsXQx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90a9a780b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 23:08:53 GMT
cache-control: public,max-age=3600
age: 1609
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4dc1267b2c31e57e1fd4861b5aa8de0c
711de60925eb8b86ec66c581de006d313b575378
bc7be5b62c03b6873caaa6ef8c6f5826510ed1f7762ac52081b8c9ce89531b7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=138690
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e2910-117"
Expires: Fri, 25 Nov 2022 14:07:12 GMT
Last-Modified: Wed, 23 Nov 2022 14:07:12 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
m.finanzas-vida.com/img/banner300x250.png?v=2
172.67.166.168200 OK 20 kB URL HTTP/1.1 m.finanzas-vida.com/img/banner300x250.png?v=2
IP 172.67.166.168:0
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Hash 9ef4185e5b8f24c4b4c759f4d0fa141b
5b6d13c90b209ffd3261e371f2615ff616dad067
5c09ab7f4d3f9fa50f94733430066fddddb1c2e91c8e0e8d4d22cb62a722f4fe
GET /img/banner300x250.png?v=2 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: image/png
Content-Length: 20084
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5ddgKP%2BFkexCDLQcRYh4dfuHrCHMQdKLaIUXXqX%2BcaA4Jy88Jh4q0%2FUEQ9SF6SJ0EsAdwO%2FwxvkTz6BlwIXjdHMJtdvx5Bj2QY6xaoDtKspOHj6sb7qtYLcHNyvOmUv0Sdgbyt%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb90b1f570b06-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/images/illustrator/Marketing_strategy_SVG.svg
172.67.166.168200 OK 4.4 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/images/illustrator/Marketing_strategy_SVG.svg
IP 172.67.166.168:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (11474), with no line terminators
Hash b0a442730d51099bd296582a33752941
bfc11997a02571df978e1924408668b290e9177b
87d8d2fa765a20cf746844b634c4ff948fc3cf82ec6780c1a50e97714b57ccd7
GET /acortaz_theme/images/illustrator/Marketing_strategy_SVG.svg HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: image/svg+xml
Content-Length: 4373
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZzvsOG9ObRR0UFkqTm8WbLcBlJB2m1F46GousJ%2BnVc%2BQZGpAhxxZOrZMMTUkUSywhbWLU%2BYNAHzmoUQSK2XKFEk03XMkOJh9k9dVnI9GZ61Iknld2uI2XhFRCcJ%2BsMkDyxC9ypMC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb90b1abeb4f9-OSL
alt-svc: h2=":443"; ma=60
m.finanzas-vida.com/acortaz_theme/images/illustrator/Startup_SVG.svg
172.67.166.168200 OK 7.3 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/images/illustrator/Startup_SVG.svg
IP 172.67.166.168:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (19895), with no line terminators
Hash 427943d2300981717c994360d8568b72
ec958f6ab8fd3266262e778436f518611b732977
140ce571749413f2d23ec657b47e6025e3fd81b91d1b0439dbdae69cd8b4abda
GET /acortaz_theme/images/illustrator/Startup_SVG.svg HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: image/svg+xml
Content-Length: 7290
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YjoJqG2ysIv03LiT0bl%2FOvfenFRP6N%2Fe1LCkGpRjPo7lVCZwDaVHvr7D9sh1qNtNPzeLt6cOKEX8p2b1nIW9%2FzJ5F0UeZlFtVa8hJFXTRYTJX4luYuDqAFXdFU44zvU6GPUWieWD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb90b1fa1b4ee-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1857
Cache-Control: max-age=122528
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 09:37:50 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
arbourrenewal.com/c2/b6/51/c2b6518712745dcdd82cadf57ff4b44e.js
192.243.59.13200 OK 21 kB URL HTTP/1.1 arbourrenewal.com/c2/b6/51/c2b6518712745dcdd82cadf57ff4b44e.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60157), with no line terminators
Hash e4b36ddf4282c2a4d6f6a086d2647ad8
f5547dc24818cff8e9bd11f74b80c1353338e904
5a4e5904ea5849334685b1068d422833cbd3929d60038d12ab8acf7cbcb40898
GET /c2/b6/51/c2b6518712745dcdd82cadf57ff4b44e.js HTTP/1.1
Host: arbourrenewal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0fc49696a52615643c448bc02171df61
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.googleapis.com/css?family=Nunito:300,400,600,700&display=swap
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito:300,400,600,700&display=swap
IP 142.250.74.10:0
Hash f76fa28c9960cdaa15a2c545ba981dcb
b1ef9d86bf329bec58da2dc193c2df2f7a7e2434
55d378389c5a09c6fc8363056bffcf0e97fe0f395b4c2928114222a4757d6bff
GET /css?family=Nunito:300,400,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 23:35:42 GMT
date: Wed, 23 Nov 2022 23:35:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
m.finanzas-vida.com/acortaz_theme/images/marketing/marketing-shape.png
172.67.166.168200 OK 25 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/images/marketing/marketing-shape.png
IP 172.67.166.168:0
File type PNG image data, 2000 x 1333, 8-bit/color RGBA, non-interlaced\012- data
Hash 5eed74255fa67e5173ba6228cbbd9526
ef9724a6d2dbbb351754e00d9eff520a9577b8d2
bfd1e4251879dbb016cdc9efe9c85b21759d4d49d05c469f2dd0b556215402af
GET /acortaz_theme/images/marketing/marketing-shape.png HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/winds
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: image/png
Content-Length: 24960
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Thu, 24 Nov 2022 00:30:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: max-age=39809
X-Served-By: m.finanzas-vida.com
CF-Cache-Status: HIT
Age: 36551
Last-Modified: Wed, 23 Nov 2022 13:26:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qbjRFyRSH27EndIOO4WR%2BuSZMhuxrvYw9ZSNYiTtlSge%2Fqw3DRx4SpiBQX5uMange%2FAfaGbi6aOf9b%2BtKUJoqJJp8Rf1%2FUZ2LtXj0U2%2BJXsms%2BnJMxZFl3%2FEOKIXIVSginSI79RK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb90bbb0eb4f9-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5bb686e874a7d341bbb4952208853cd1
4378455c4a38f9ee341f69de997f097e6cc28477
4e92e521e25748324c34de712bb781b7c17e8bb6f323f5533bd9f8260ca87826
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3731
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Last-Modified: Wed, 23 Nov 2022 22:33:31 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5cd6a7eacc7a4598a3cf3f0071532357
d9d0c222662c93d174010635322913695390b934
aef67396bc54f0a0bf95fc436d953f344422cbd809c5e5fe78d7b4d7c3a44f69
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129706
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e05f8-116"
Expires: Fri, 25 Nov 2022 11:37:28 GMT
Last-Modified: Wed, 23 Nov 2022 11:37:28 GMT
Server: nginx
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.themoneytizer.com/moneybid7_22/build/dist/prebid.js
185.76.9.18200 OK 154 kB URL HTTP/2 ads.themoneytizer.com/moneybid7_22/build/dist/prebid.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (64219)
Size 154 kB (154365 bytes)
Hash 795aaca066f960f7fa4a1f91aef93c02
8f4db7110b98b30a82bf5ce4e4c50ea339f241d0
44e56a1ef0eeab667a5a9458c7113d419f41d5ccc1278b88ce2527eeb45e6e6a
GET /moneybid7_22/build/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 17:12:05 GMT
expires: Thu, 24 Nov 2022 05:03:14 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1669266194
server: CDN77-Turbo
x-77-nzt: AblMCQ3mYdn/vAQBAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e63cc9d6b28
x-cache: HIT
x-age: 66748
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=6
185.76.9.18200 OK 2.7 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=6
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash 234cfc7df0a12f2757a231b28991fea5
2500232b152174df1ca932fd27bd97a4856eab61
7b6d3269fc5b3b5a8ce95feb7501e8d8da6b980f1f1ac964f732197733854fe3
GET /s/gen.js?type=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669784593
server: CDN77-Turbo
x-77-nzt: AblMCQ2Ls1T/vQQBAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e632f39131f
x-cache: HIT
x-age: 66749
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
216.58.207.195200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 21:11:06 GMT
expires: Tue, 21 Nov 2023 21:11:06 GMT
cache-control: public, max-age=31536000
age: 181476
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1669246542505
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1669246542505
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=2a897e3f18e6769&cb=1669246542505 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
34.160.73.230429 Too Many Requests 298 B URL HTTP/1.1 addresseepaper.com/sfp.js
IP 34.160.73.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2d276fc22806d34e2355196fe7bea1f3
0f2c85ecd7a43e866345fd0eafe5e0fdd4aa7acf
9e522902dee04e1345219cee056a1a291ba4eca674870853ab05f3579875ff38
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 429 Too Many Requests
Server: openresty
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/html
Content-Length: 298
ETag: "6324a86d-12a"
Via: 1.1 google
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 24c07f9d9209f20f241335472eb7b13e
5890c8049460f555246f5a9e22751ff43fb9b005
1638df7ade7a5c4c85acea72abf421b03b55b947a35b76114e15c824eaaa3e38
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 00:12:01 GMT
Expires: Tue, 29 Nov 2022 00:12:00 GMT
Etag: "5890c8049460f555246f5a9e22751ff43fb9b005"
Cache-Control: max-age=433577,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76edb90ca8feb4ee-OSL
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5cd6a7eacc7a4598a3cf3f0071532357
d9d0c222662c93d174010635322913695390b934
aef67396bc54f0a0bf95fc436d953f344422cbd809c5e5fe78d7b4d7c3a44f69
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=129706
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e05f8-116"
Expires: Fri, 25 Nov 2022 11:37:28 GMT
Last-Modified: Wed, 23 Nov 2022 11:37:28 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.vidoomy.com/finanzas-vida_14872.js
3.19.54.139200 OK 2.8 kB URL HTTP/1.1 ads.vidoomy.com/finanzas-vida_14872.js
IP 3.19.54.139:0
File type ASCII text, with very long lines (1682)
Hash c6348ce06135ff4dba0ea47d2aa61754
31bffc39a18464581d5a62058626a9983c5f2623
3d10153c751698fe938bd9a9e08d8edb3db8929dfaf87f568b4b5541f183750a
GET /finanzas-vida_14872.js HTTP/1.1
Host: ads.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Server: Apache/2.4.54 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 2822
Keep-Alive: timeout=2, max=300
Connection: Keep-Alive
Content-Type: application/javascript
ads.themoneytizer.com/moneybile.js
185.76.9.18200 OK 18 kB URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (33237)
Hash 7d415b7620345840e210a4ed5da9750d
15b7b7f10905347a595f877463e811d86bd75124
815b2bb19ae190f4dcec41c865e82931ddebec79896da1d48b90e07556e9983c
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Thu, 24 Nov 2022 05:03:13 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1669266193
server: CDN77-Turbo
x-77-nzt: AblMCQ0BCon/vQQBAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e632f6d7226
x-cache: HIT
x-age: 66749
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
104.22.25.87308 Permanent Redirect 104 B URL HTTP/1.1 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.25.87:0
File type HTML document, ASCII text
Hash f6374de2b16ca49a4b7f2c19227141a2
9a63b26916d675ec764c2d6fdf991052c3fdcd4f
f5042dc89e970724b5778beea2fa613e4ca930c45dfa1dfb510bbba968c2cdbe
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 308 Permanent Redirect
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Location: https://spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
Vary: Origin
Via: 1.1 google
CF-Cache-Status: DYNAMIC
Server-Timing: cf-q-config;dur=3.9999995351536e-06
Server: cloudflare
CF-RAY: 76edb90cffa61c16-OSL
tag.leadplace.fr/libJsLP.js
145.239.192.166200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.192.166:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Thu, 07 Oct 2021 11:26:48 GMT
ETag: "615ed978-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:71B2_91EFC0A6:01BB_637EAE4E_331DDF61:603E
X-IPLB-Instance: 30196
friendshipmale.com/sfp.js
104.21.234.93200 OK 28 kB URL HTTP/1.1 friendshipmale.com/sfp.js
IP 104.21.234.93:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: b0ac70a1695cfa98f45012039d6e835d
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Wed, 23 Nov 2022 23:35:42 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xOsNhjRfyzx7PpiKFD%2B1K5n6JvPuZPRh3nKGTBOF1AxHKaSZhbbg1jlBlmlLZ2Ew%2BB8CqGbdnCcQjFiJ6ofbqZsLRUSU19D51rWqPX1Djpu8p3jEC3T%2BiDNl5B8PvPQDAKfD0fs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb90cbbba7773-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 78a5e8567c816ea5adeff1e60bd63461
bee92246cea1db6fb25a8f4e431060e349dc73a2
5312c83674cb2dc648d3e67a484bcd02cb44fd535ef277c54eb45f4990381243
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 23 Nov 2022 23:35:42 GMT
Last-Modified: Wed, 23 Nov 2022 22:03:59 GMT
Server: ECS (dcb/7F18)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r92YwntHDIrbhpnnc_f6ajToJ-WY7nhpPebNsx1-mZiNfQ-2o_39Fw==
Age: 5503
push.services.mozilla.com/
35.162.142.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.142.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aLd3MNAC8Np4oiNRbzH18g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JiQpWpAAHNM6uht1HKszFdWD1kE=
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 78a5e8567c816ea5adeff1e60bd63461
bee92246cea1db6fb25a8f4e431060e349dc73a2
5312c83674cb2dc648d3e67a484bcd02cb44fd535ef277c54eb45f4990381243
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139618
Date: Wed, 23 Nov 2022 23:35:42 GMT
Etag: "637e2096-1d7"
Expires: Fri, 25 Nov 2022 14:22:40 GMT
Last-Modified: Wed, 23 Nov 2022 13:31:02 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 33tLH1HCHlyzoExYWZLQZJPauruNkuQXAoDIxpgPEAe0RWcAjnN7wg==
Age: 3098
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash a964bd03ab8d59fcaee1b992558fee28
ecd6549d65ec6dfa25d5f227522052372cedc313
76bc9512e2ba9fa4d100ab971c86ff2f4c24b67c6a016c6057c0f42b4beb5e91
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://m.finanzas-vida.com
access-control-allow-credentials: true
set-cookie: uid_id2=be8b4282-9c2b-4312-89b3-e8d25620f437:2:1; expires=Sat, 20 Nov 2032 23:35:42 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 7d7d71de9a0ecf6c1326011e854b08f7
032d65c2fd147c0ffbf7309e591c54b64065671c
7486f3f6d0e26d253d4f4baa419c41b53314097f607ac6bab85890aad8a8945f
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:43 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://m.finanzas-vida.com
access-control-allow-credentials: true
set-cookie: uid_id2=ea91bf2a-657a-4804-857a-edadec45fa05:1:1; expires=Sat, 20 Nov 2032 23:35:43 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2ec373e0edfe49b7221fac2162fd47e1
7a8cac4e30d06427108f549fd0d0fc2cbfd4d9a7
2a35725d2bdf0f4d08527c738bd1f1fbb3780cc72217314b7f28f398951dac2b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "2A35725D2BDF0F4D08527C738BD1F1FBB3780CC72217314B7F28F398951DAC2B"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9420
Expires: Thu, 24 Nov 2022 02:12:43 GMT
Date: Wed, 23 Nov 2022 23:35:43 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2ec373e0edfe49b7221fac2162fd47e1
7a8cac4e30d06427108f549fd0d0fc2cbfd4d9a7
2a35725d2bdf0f4d08527c738bd1f1fbb3780cc72217314b7f28f398951dac2b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "2A35725D2BDF0F4D08527C738BD1F1FBB3780CC72217314B7F28F398951DAC2B"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9420
Expires: Thu, 24 Nov 2022 02:12:43 GMT
Date: Wed, 23 Nov 2022 23:35:43 GMT
Connection: keep-alive
cdn.confiant-integrations.net/6JazTGIJh-hokZ3Hzq9-29PxCyY/gpt_and_prebid/config.js
104.18.17.107200 OK 90 kB URL HTTP/2 cdn.confiant-integrations.net/6JazTGIJh-hokZ3Hzq9-29PxCyY/gpt_and_prebid/config.js
IP 104.18.17.107:0
File type ASCII text, with very long lines (64137)
Hash 815f9e7809aca409889926760e6aefe3
844425d9c11ab6b3652a092ff8c11b7c5935e5b5
d6ca9298ea3ec2a415b8ebbe1eea9aba5b04fb5ccedb64ed7c0f9b509680af3f
GET /6JazTGIJh-hokZ3Hzq9-29PxCyY/gpt_and_prebid/config.js HTTP/1.1
Host: cdn.confiant-integrations.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:43 GMT
content-type: text/javascript
x-amz-id-2: w78sItKUGQxroSynDrUFNuNG6ShgCFnbOm+rFhahXmwb5N5A1K7XlC4oOyNOblLW/COWyKjuo6c=
x-amz-request-id: 95F94XJTYM9PH6MG
last-modified: Wed, 23 Nov 2022 22:39:38 GMT
etag: W/"c6663979a87b61eecd82628455aadcf2"
cache-control: public, max-age=900, stale-while-revalidate=3600
cf-cache-status: HIT
age: 267
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90e3dd40b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.finanzas-vida.com/acortaz_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45
172.67.166.168200 OK 290 kB URL HTTP/1.1 m.finanzas-vida.com/acortaz_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45
IP 172.67.166.168:0
File type Web Open Font Format (Version 2), TrueType, length 290164, version 1.0\012- data
Size 290 kB (290164 bytes)
Hash dc85ceeb0daba687e36d8dde4ed4d352
07b7375770ca6989fdf9872a960727743bd9da5d
f94a9bc93d318bc1bc5d07ca5aad4eb651553ef7a0e6a3b06f6f5abbc72fea75
GET /acortaz_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://m.finanzas-vida.com/acortaz_theme/css/materialdesignicons.min.css
Cookie: lang=en_US; AppSession=4e04c36f5dcf8f489796402bf49336d6; csrfToken=cf67e395d5bea130ee438fbd9e45e9ae0a8c2630a4df67c2f227c8b82b52690db6b15de9405fd707516c323045498d1276bfad42badafc6071314c36bf1dbea4
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: font/woff2
Content-Length: 290164
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 14 Sep 2020 12:48:57 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
X-Served-By: m.finanzas-vida.com
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ACIIcvSxEJMjdk%2BiJfH6qvhjWOdFzxHAAaf56yh9fA5uBgB4Jid85DLOkvREWLC8DgR1SQdwRoTU4dCRRF93fHQRs16%2BgMtPHGwrwmpvI2wgO5ER560X0VqcEunGF%2BUaE%2BKE7uP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76edb90d0c07b4f9-OSL
alt-svc: h2=":443"; ma=60
relativelyweptcurls.com/pixel/purst?dl=0&th=0&sc=0&rs=1094&rd=1094&fd=729&bv=22.10.v.9&tmpl=70
192.243.61.227200 OK 0 B URL HTTP/1.1 relativelyweptcurls.com/pixel/purst?dl=0&th=0&sc=0&rs=1094&rd=1094&fd=729&bv=22.10.v.9&tmpl=70
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1094&rd=1094&fd=729&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a2cc21e2248758db1a942dfe612c2d2a
07bf7a6aa73ce334fc5facbc9eba1d1d2939a661
db9f71ca2516f25200ee836da69116ff01da443664375ff3c794d0a61e945edf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 20 Nov 2022 12:04:30 GMT
Expires: Sun, 27 Nov 2022 12:04:29 GMT
Etag: "07bf7a6aa73ce334fc5facbc9eba1d1d2939a661"
Cache-Control: max-age=303525,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76edb90eeab5b4ee-OSL
c.adsco.re/
104.17.167.186200 OK 25 kB IP 104.17.167.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 36059768ffeef2436de9908309b48678
7f6b251d5d12a4588967011403d56a9bf4e75e4e
7a93419c45656abe8cf0b9195b612156ff904eb9ffa975050d0c4f1b2325f5c6
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:43 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sat, 24 Dec 2022 23:35:43 GMT
etag: W/"n/ARilLrRVDeZNVpaPOsXg=="
cf-cache-status: HIT
age: 371793
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb9104817b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.adsco.re/
104.17.167.186200 OK 28 kB IP 104.17.167.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 10a01aa4b1b98eaf84bbf379ae1e8a37
8fa47a75106dda08d76725d882fc80a4787a89e0
e7a5d2a6be0bdeed7f340c5da1d39049f8c6aab19ec273a016b4347a43106cf3
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Sat, 24 Dec 2022 23:35:43 GMT
ETag: W/"n/ARilLrRVDeZNVpaPOsXg=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 371793
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9110c7a0af6-OSL
alt-svc: h2=":443"; ma=60
6.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb9110d280b4d-OSL
alt-svc: h2=":443"; ma=60
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
6.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://c.adsco.re/
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76edb911edf2b51b-OSL
alt-svc: h2=":443"; ma=60
banquetunarmedgrater.com/advertisers.js
173.233.137.60200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d54f6cb9f3456606f11d70efdc21845e
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18346d36c86817ce0fe441697e701477
e9ceac2e4afc3739ab8480d59e6e3a98bf09a30b
744b1fa362cf6bc2d2e687b3f77a35016ea5cdd7ddafd7e437026c4a32f0e22f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "744B1FA362CF6BC2D2E687B3F77A35016EA5CDD7DDAFD7E437026C4A32F0E22F"
Last-Modified: Tue, 22 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10971
Expires: Thu, 24 Nov 2022 02:38:34 GMT
Date: Wed, 23 Nov 2022 23:35:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc6f115d8a52093a9ea79b4a521bfabd
709518d818bb47271fc70aac22a5bb12f54e1429
2dd086344c880a83a4d40f359edce224cabddc664b0a3bafd4ec36ec1d4166e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DD086344C880A83A4D40F359EDCE224CABDDC664B0A3BAFD4EC36EC1D4166E6"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12523
Expires: Thu, 24 Nov 2022 03:04:26 GMT
Date: Wed, 23 Nov 2022 23:35:43 GMT
Connection: keep-alive
yswpl6uzx4t3.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 yswpl6uzx4t3.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: yswpl6uzx4t3.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:43 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6251
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:35:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6251
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:35:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6251
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:35:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6251
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:35:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 6397
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ngJvyUydpRDSiYy9kfeh8JmydmR_K8mjfZtGLgT0qeE2JaABbDMSaQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:06:51 GMT
age: 5333
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc118bae963b381ce5450890130ecf15
9355a16a81b11e024dd2c5c0024aba1121fff925
cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:15:49 GMT
age: 4795
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 28381329eca6c426a8b05fcdef4aafcc
a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a
4fc8414d39bbaacb1e6575924bd0bbb9373d78b177022f7d3c6457829abffd06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8748
x-amzn-requestid: 864da50a-44bb-4d20-b499-08c2a140871e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtENmoAMFqKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-2705cc956f2c2aa5535533b0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xT0IorkRpXysoYMnugcrV40YaAxoRPjLmkPcv1ElteP_-rNZ1c6fog==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:48:57 GMT
age: 6407
etag: "a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 6472
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 5248
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
adsco.re/p
162.252.214.5200 OK 168 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash 627b22b1bc7beda6350215c353d66bbf
b200646cced949d819e41396f2cf4da2eebdc65a
7d450290282168012be4c230d9f85f1d082d7bf5a8be406194cceaeec6525194
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 1863
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
player.vidoomy.com/player-nv/v0.0.37/vidoomy-sdk-mol.js
185.76.9.24200 OK 48 kB URL HTTP/2 player.vidoomy.com/player-nv/v0.0.37/vidoomy-sdk-mol.js
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash c72fe6fd0aa1fdf919ef8cdc5159e39e
1eacc6e612d314480bdad8b6bd006541895e7f50
d963ff3b4b396cb2524a80a460ec50b9130f560de8bb501b8bc29b4f6353d3b2
GET /player-nv/v0.0.37/vidoomy-sdk-mol.js HTTP/1.1
Host: player.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:43 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 14 Oct 2022 12:56:56 GMT
etag: W/"63495c98-226f7"
access-control-allow-origin: *
x-accel-expires: @1669900251
server: CDN77-Turbo
x-77-nzt: AblMCRR8NFb/dNgFAA
x-77-nzt-ray: af585630c8a6fdbe4fae7e639a4ff008
x-cache: HIT
x-age: 383092
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a2f2404e1a2caf586155a962b7fe4ec
c6ca53150de9ce525562fb524e4742f5dd0fae9f
6f01b0ebc8013fcfe27f48228de066791c1c6b0189a4add8ef4a1f980385d382
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F01B0EBC8013FCFE27F48228DE066791C1C6B0189A4ADD8EF4A1F980385D382"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18292
Expires: Thu, 24 Nov 2022 04:40:36 GMT
Date: Wed, 23 Nov 2022 23:35:44 GMT
Connection: keep-alive
a.teads.tv/analytics/tag.js
23.38.201.50200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP 23.38.201.50:0
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Wed, 23 Nov 2022 23:35:44 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
ced.sascdn.com/tag/1097/smart.js
23.36.77.48200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4686ea4ceef48bf4d7b06bf70fe2a6ef
6a1348d13eca8b7882c4679c53019a51f48a94fd
685fc19fe5c57ebff672b1a9c03ea8b85f78d37558cc6743a39baa034f852d0d
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32836
Cache-Control: public, max-age=7200
Expires: Thu, 24 Nov 2022 01:35:44 GMT
Date: Wed, 23 Nov 2022 23:35:44 GMT
Connection: keep-alive
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
143.204.42.129200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 143.204.42.129:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Wed, 23 Nov 2022 02:56:37 GMT
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n4cLjyrZQnaXk6UN4aVeGnFUCWYi_q9Ftb9vJPJpn5lskLJ2L3u6NA==
Age: 74352
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 23 Nov 2022 22:41:08 GMT
expires: Thu, 24 Nov 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 3276
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b4f75fc66be5fef9103fc505badd8679
7ae0a3050eb993a321d05ab1f0dfe8e62ea4dac3
dfe4750074e57f17e66e79e149f4cde1b07d069abdd17c7865e9bc7619993db8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 30b93830c5f8003d39d3702fc4f896c6
c91d8a65f328f004278fa2504c9647ea8ec8c272
e2f5440341522c1ab3acfbcf0f8ef8391ea515bec8c08fdf95352ba0b6b95abf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 183
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:44 GMT
Etag: "637e385f-1d7"
Last-Modified: Wed, 23 Nov 2022 23:32:41 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f07c78d469c92836851fac9ba1c51db
a93d0e7a2019170603c42bad200faa903a39f960
cd99642459866f53d342deaf8029492936ba8c176baede02265ba7108efd1b29
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5013
Cache-Control: max-age=158078
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:44 GMT
Etag: "637e6139-1d7"
Expires: Fri, 25 Nov 2022 19:30:22 GMT
Last-Modified: Wed, 23 Nov 2022 18:06:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
142.250.74.131200 OK 583 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP 142.250.74.131:0
File type ASCII text, with very long lines (921), with no line terminators
Hash 6c064532ae9b3b8278a9d00701c75021
65cd4fbe613e8805d867dffa12cb29569419254d
ee4a48e1244ff8836f0b808d40bab0dc14b4702a3195920c6c600dcae3302bfa
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 23 Nov 2022 23:35:44 GMT
date: Wed, 23 Nov 2022 23:35:44 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 86776344fc6dd826ff48ca2f315dec8a
23054ddd051e653c90cc3232bbe1ecb88820b29a
7a6a778b4a383d8385e3843a7fd1ad88a5e7182d5627740511dd2c83a6f264c1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 13:56:48 GMT
Expires: Tue, 29 Nov 2022 13:56:47 GMT
Etag: "23054ddd051e653c90cc3232bbe1ecb88820b29a"
Cache-Control: max-age=483062,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76edb918ecc7b4ee-OSL
ups.analytics.yahoo.com/ups/58610/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 23 Nov 2022 23:35:44 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58610/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFCufmMCEHdpEfDEVkpMXFX6PL6HTRUFEgEBAQH_f2OIYwAAAAAA_eMAAA&S=AQAAAvPBRgRKSf4rRHC58fGmek4; Expires=Fri, 24 Nov 2023 05:35:44 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
x.bidswitch.net/sync?ssp=vidoomy&user_id=159622408.96447831425576685.20648074
3.122.202.119302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=vidoomy&user_id=159622408.96447831425576685.20648074
IP 3.122.202.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=vidoomy&user_id=159622408.96447831425576685.20648074 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 23 Nov 2022 23:35:44 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=159622408.96447831425576685.20648074
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=552f685f-4ff8-44c0-929d-96bcbfeaf77e; path=/; expires=Thu, 23-Nov-2023 23:35:44 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669246544; path=/; expires=Thu, 23-Nov-2023 23:35:44 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1669246544; path=/; expires=Thu, 23-Nov-2023 23:35:44 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669246544; path=/; expires=Thu, 23-Nov-2023 23:35:44 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b4f75fc66be5fef9103fc505badd8679
7ae0a3050eb993a321d05ab1f0dfe8e62ea4dac3
dfe4750074e57f17e66e79e149f4cde1b07d069abdd17c7865e9bc7619993db8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yswpl6uzx4t3.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 yswpl6uzx4t3.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: yswpl6uzx4t3.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 23:35:44 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.16301 Moved Permanently 4.2 kB URL HTTP/1.1 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.16:0
Hash 713347262eed9d0c192fb4660b292127
6ce0092592299428b771592b52704826b987dacd
d0955f2b6d03563ecdd26e7a6208c8d4e2f3055ffe162edc9164a15f06497950
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 23 Nov 2022 23:35:45 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
X-Cache: Redirect from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xiqVX6QEpnJKUByVSZzxajSTFQnpUWC36zfeAjNLyxLjD8vMpwe8tQ==
x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=159622408.96447831425576685.20648074
3.122.202.119200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=159622408.96447831425576685.20648074
IP 3.122.202.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=vidoomy&user_id=159622408.96447831425576685.20648074 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.finanzas-vida.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:45 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32034)
Hash c54aac7ef64c39b4f384e0d5771d3b46
d3e059104378a3844862a5ed12a13f5d423e86b6
3e1b5002dd64d185f806edeefd333348f423584d876cfc966b5c13884c8fe3da
GET /ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30186
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 18 Nov 2022 23:12:50 GMT
Expires: Sat, 18 Nov 2023 23:12:50 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 433375
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ups.analytics.yahoo.com/ups/58610/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.finanzas-vida.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 23 Nov 2022 23:35:45 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFGufmMCEC5AQwYbj4a_N3IvTMSUYKYFEgEBAQH_f2OIYwAAAAAA_eMAAA&S=AQAAAsHiv62pLz2CDCxa8bUvxpU; Expires=Fri, 24 Nov 2023 05:35:45 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:58:48 GMT
expires: Thu, 23 Nov 2023 14:58:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 31017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash ee88f75244294b978e02d4f2df2d554e
850232c97d4739b824d2243e661c4115754c3cba
18bbcfc6e970f6b3013ef207a0fe442b8326972d474e439ea4a6fc06c392d5b9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 23 Nov 2022 23:35:45 GMT
Last-Modified: Wed, 23 Nov 2022 21:45:47 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: l2gQsFHhNDctcPqlEHlfX_alTf7TdexMGAbfNY3FsdVUSdBMdintsQ==
Age: 6598
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.recaptcha.net
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 385427
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.16200 OK 661 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (510)
Hash 20fe73c21279498f480ecf57afbac675
95bb91bb9cadf092af6004fe18836016add1b092
e5709a341fd1214a254991335811f4f57a1e53f9e981d68f36f7a9c652db05b2
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.finanzas-vida.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Wed, 23 Nov 2022 23:10:28 GMT
cache-control: max-age=3600
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2Xmb_wFdnQyzUOsbgXtFxKPBLOiulgvvWUfbOHyd6E8W1Hi7Ds2h3A==
age: 1518
X-Firefox-Spdy: h2
at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3&
23.195.255.234200 OK 0 B URL HTTP/1.1 at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3&
IP 23.195.255.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3& HTTP/1.1
Host: at.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Expires: Wed, 23 Nov 2022 23:35:45 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 23 Nov 2022 23:35:45 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 28d04006a3e449b28e65369f3a70f4ea
20a461f8c035e118ba0bc6a8bc00d4b0913286bf
82c5a1a32ab313cd38b37983b758e02b1d0c95900a92b16e860e1b3ccb5d7d4d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6047
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:46 GMT
Last-Modified: Wed, 23 Nov 2022 21:54:59 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
reproductiontape.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjomCnhQRVJRBclAws9Uz3TvT5rAYYySYnyWJ5CbUX%2B%2BWW9PVVHVPTxaR1YDk4GGCF2%2F2vtlk1YRgDuLJH2a9hAUh40H2kD0KHsSAmLPM7MLiB1XfV%2FXe4b1X9el6uUsoSrazeNauamPYXNykjVcv60zayjfOXWqEtEmPNy7rbD463hhMN9d%2FI6Rxk77WeEeJFTvXoiGlIQ0bp7RTqR3MzVDo%2FHYSNhPajFrNMI4wcP8%2F%2BzKAZwFkf5c8Ay0nR5bv3YUWY2S9b08qv1LY%2FPW3e6VhhXXoy833spXMVhl6B2PqAqTZ5j4b1k8I%2BeIQbLa57wC2vzF1AK4nJPg9BM8292WC92%2FsKeUGKgOXT6Hqj6HMGJqNIexVaHmfAELi3HlkvZvnrKvYlT2UTdEJOfzoH%2BhqQg4%2FeBZZ784JoweNi9aUhbaZxyCtoQdj6KUx8nILxWoAXW1BFJ9Ay1%2FJ3KMzyHob572x0HLnqGJJyNMWOzYfd9ixqEujY93ppCSTSkRxymg8i0jrMXQ6hlFDMB%2BgnC4doEwDlHmAntxpsDhJKe2kPG23u5EQot0WIu7Oy1i2o25KUYqphyGKfAhhhhBuDblbw4oewpU%2Fwy%2FX8DKALwj6skalCCpPUDGCShNUBUHVr29I41u%2BvimNL3m431v7vV2PbLG0zm7YYkllZD3fJU%2FPgvv33p9YUTsNnqTdaF6xVjvqJlKlbcpalNNWlyfdkMsQXtfQ%2FtDM5qqekOe%2B%2Fwq5nhDy9xo424I3WxD6FbDyJbBq1GlRsOVR1KVYzW4xYV3BVpuZKiBtjbw4guJKsG52yfMzGYnoQInthYfvxwsf%2FnUdwtXIXY0P9C8ES%2Bba6IKtyMYFW3ly93xe6J5eZdO3vViwQh3%2B5l11pbJOnj7ph1%2B%2FKabAdLx9SfniDMukzpY8uXVCS6ncKeuEIj%2Bc9pcVXyz98onSZWV%2BZvGtU6d7uVPea5uNwfT9zucQekKePLs2%2B7Uvf3YP2o3hyhq9cpvsF7TdgsjX4PPthT%2BOPph74csf4S2BMwccngeoynrkWvzg0ugJiQZPwKjthe8%2Bfvzog7kXwXgNrw5i4Gr7p4d7%2FHV%2FDUsuACuuIuvV6LsafVODmSF8%2BdioyN32wm%2FtWYGbYMSNCza4ceb6Xrxe7zRUnNJU0ZbiacLTDqMySaOEsyRUHR6zEIWfiI%2FuLP4HAAD%2F%2FwEAAP%2F%2FchGYSZEEAAA%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 reproductiontape.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjomCnhQRVJRBclAws9Uz3TvT5rAYYySYnyWJ5CbUX%2B%2BWW9PVVHVPTxaR1YDk4GGCF2%2F2vtlk1YRgDuLJH2a9hAUh40H2kD0KHsSAmLPM7MLiB1XfV%2FXe4b1X9el6uUsoSrazeNauamPYXNykjVcv60zayjfOXWqEtEmPNy7rbD463hhMN9d%2FI6Rxk77WeEeJFTvXoiGlIQ0bp7RTqR3MzVDo%2FHYSNhPajFrNMI4wcP8%2F%2BzKAZwFkf5c8Ay0nR5bv3YUWY2S9b08qv1LY%2FPW3e6VhhXXoy833spXMVhl6B2PqAqTZ5j4b1k8I%2BeIQbLa57wC2vzF1AK4nJPg9BM8292WC92%2FsKeUGKgOXT6Hqj6HMGJqNIexVaHmfAELi3HlkvZvnrKvYlT2UTdEJOfzoH%2BhqQg4%2FeBZZ784JoweNi9aUhbaZxyCtoQdj6KUx8nILxWoAXW1BFJ9Ay1%2FJ3KMzyHob572x0HLnqGJJyNMWOzYfd9ixqEujY93ppCSTSkRxymg8i0jrMXQ6hlFDMB%2BgnC4doEwDlHmAntxpsDhJKe2kPG23u5EQot0WIu7Oy1i2o25KUYqphyGKfAhhhhBuDblbw4oewpU%2Fwy%2FX8DKALwj6skalCCpPUDGCShNUBUHVr29I41u%2BvimNL3m431v7vV2PbLG0zm7YYkllZD3fJU%2FPgvv33p9YUTsNnqTdaF6xVjvqJlKlbcpalNNWlyfdkMsQXtfQ%2FtDM5qqekOe%2B%2Fwq5nhDy9xo424I3WxD6FbDyJbBq1GlRsOVR1KVYzW4xYV3BVpuZKiBtjbw4guJKsG52yfMzGYnoQInthYfvxwsf%2FnUdwtXIXY0P9C8ES%2Bba6IKtyMYFW3ly93xe6J5eZdO3vViwQh3%2B5l11pbJOnj7ph1%2B%2FKabAdLx9SfniDMukzpY8uXVCS6ncKeuEIj%2Bc9pcVXyz98onSZWV%2BZvGtU6d7uVPea5uNwfT9zucQekKePLs2%2B7Uvf3YP2o3hyhq9cpvsF7TdgsjX4PPthT%2BOPph74csf4S2BMwccngeoynrkWvzg0ugJiQZPwKjthe8%2Bfvzog7kXwXgNrw5i4Gr7p4d7%2FHV%2FDUsuACuuIuvV6LsafVODmSF8%2BdioyN32wm%2FtWYGbYMSNCza4ceb6Xrxe7zRUnNJU0ZbiacLTDqMySaOEsyRUHR6zEIWfiI%2FuLP4HAAD%2F%2FwEAAP%2F%2FchGYSZEEAAA%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Malware
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjomCnhQRVJRBclAws9Uz3TvT5rAYYySYnyWJ5CbUX%2B%2BWW9PVVHVPTxaR1YDk4GGCF2%2F2vtlk1YRgDuLJH2a9hAUh40H2kD0KHsSAmLPM7MLiB1XfV%2FXe4b1X9el6uUsoSrazeNauamPYXNykjVcv60zayjfOXWqEtEmPNy7rbD463hhMN9d%2FI6Rxk77WeEeJFTvXoiGlIQ0bp7RTqR3MzVDo%2FHYSNhPajFrNMI4wcP8%2F%2BzKAZwFkf5c8Ay0nR5bv3YUWY2S9b08qv1LY%2FPW3e6VhhXXoy833spXMVhl6B2PqAqTZ5j4b1k8I%2BeIQbLa57wC2vzF1AK4nJPg9BM8292WC92%2FsKeUGKgOXT6Hqj6HMGJqNIexVaHmfAELi3HlkvZvnrKvYlT2UTdEJOfzoH%2BhqQg4%2FeBZZ784JoweNi9aUhbaZxyCtoQdj6KUx8nILxWoAXW1BFJ9Ay1%2FJ3KMzyHob572x0HLnqGJJyNMWOzYfd9ixqEujY93ppCSTSkRxymg8i0jrMXQ6hlFDMB%2BgnC4doEwDlHmAntxpsDhJKe2kPG23u5EQot0WIu7Oy1i2o25KUYqphyGKfAhhhhBuDblbw4oewpU%2Fwy%2FX8DKALwj6skalCCpPUDGCShNUBUHVr29I41u%2BvimNL3m431v7vV2PbLG0zm7YYkllZD3fJU%2FPgvv33p9YUTsNnqTdaF6xVjvqJlKlbcpalNNWlyfdkMsQXtfQ%2FtDM5qqekOe%2B%2Fwq5nhDy9xo424I3WxD6FbDyJbBq1GlRsOVR1KVYzW4xYV3BVpuZKiBtjbw4guJKsG52yfMzGYnoQInthYfvxwsf%2FnUdwtXIXY0P9C8ES%2Bba6IKtyMYFW3ly93xe6J5eZdO3vViwQh3%2B5l11pbJOnj7ph1%2B%2FKabAdLx9SfniDMukzpY8uXVCS6ncKeuEIj%2Bc9pcVXyz98onSZWV%2BZvGtU6d7uVPea5uNwfT9zucQekKePLs2%2B7Uvf3YP2o3hyhq9cpvsF7TdgsjX4PPthT%2BOPph74csf4S2BMwccngeoynrkWvzg0ugJiQZPwKjthe8%2Bfvzog7kXwXgNrw5i4Gr7p4d7%2FHV%2FDUsuACuuIuvV6LsafVODmSF8%2BdioyN32wm%2FtWYGbYMSNCza4ceb6Xrxe7zRUnNJU0ZbiacLTDqMySaOEsyRUHR6zEIWfiI%2FuLP4HAAD%2F%2FwEAAP%2F%2FchGYSZEEAAA%3D HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Cookie: u_pl=16108009; uid_id2=ea91bf2a-657a-4804-857a-edadec45fa05:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecb9f846ea23489def30a20b028b981bd1=[3760951]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 23 Nov 2022 23:35:46 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 76e2bc814f850480537e9ef7e4e734a4
Strict-Transport-Security: max-age=0; includeSubdomains
cdn4ads.com/qR.asp?_=BAYAY36uUAFjfq5QgAGBAsAAINqfAGeKeEHyyD9UyPGJrwCYIGJaasxywFO1Zg0iw4A6wQBGMEQCIEOWKsVcbrwhvF9sMz2DZVgBnJhgSM2ZqvNI8FHS6QPJAiARpPpk6y2oIczU8ORjrPfDuMFNaujaXNqA2hfiOHnD2w&v=4&IvoQUyYw=4293779&minBid=&kheTyqEN=0,0&SyvVdlWE=&XcFTOtzR=&s=1280,1024,1,1280,1024,0
216.59.63.128200 OK 44 B URL HTTP/1.1 cdn4ads.com/qR.asp?_=BAYAY36uUAFjfq5QgAGBAsAAINqfAGeKeEHyyD9UyPGJrwCYIGJaasxywFO1Zg0iw4A6wQBGMEQCIEOWKsVcbrwhvF9sMz2DZVgBnJhgSM2ZqvNI8FHS6QPJAiARpPpk6y2oIczU8ORjrPfDuMFNaujaXNqA2hfiOHnD2w&v=4&IvoQUyYw=4293779&minBid=&kheTyqEN=0,0&SyvVdlWE=&XcFTOtzR=&s=1280,1024,1,1280,1024,0
IP 216.59.63.128:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /qR.asp?_=BAYAY36uUAFjfq5QgAGBAsAAINqfAGeKeEHyyD9UyPGJrwCYIGJaasxywFO1Zg0iw4A6wQBGMEQCIEOWKsVcbrwhvF9sMz2DZVgBnJhgSM2ZqvNI8FHS6QPJAiARpPpk6y2oIczU8ORjrPfDuMFNaujaXNqA2hfiOHnD2w&v=4&IvoQUyYw=4293779&minBid=&kheTyqEN=0,0&SyvVdlWE=&XcFTOtzR=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Wed, 23 Nov 2022 23:35:46 GMT
ads.stickyadstv.com/vast/vpaid-adapter/26004274?
23.36.77.41200 OK 709 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/26004274?
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text
Hash 99560ef9f97d52e3ece6c673f1842102
1add2a816587cf2379024855601e52de6d02e054
b3b557cd04812adfc44b7e466e38fe4c76e1eb72bd6e6c93349dd1aa55e9048f
GET /vast/vpaid-adapter/26004274? HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1669246546381026-589
Expires: Wed, 23 Nov 2022 23:35:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 23 Nov 2022 23:35:46 GMT
Content-Length: 709
Connection: keep-alive
Set-Cookie: UID=afb3eab335295addd5a9c8ae51524232; Domain=ads.stickyadstv.com; Expires=Fri, 23-Dec-2022 23:35:46 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/9246177?supportsJavascript=true&supportsFlash=true&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
23.36.77.41200 OK 778 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/9246177?supportsJavascript=true&supportsFlash=true&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (358)
Hash 0e1bc566756d9672dd911979d789114e
afd427c37c9c8bed37f92bf6b3c9a34b0f1df09d
df7f0233db2eaa625e955286588ec4efc5b6c764f6d55b05b8f1b8369b878bcf
GET /vast/vpaid-adapter/9246177?supportsJavascript=true&supportsFlash=true&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,, HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1669246546445004-396
Content-Length: 778
Expires: Wed, 23 Nov 2022 23:35:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 23 Nov 2022 23:35:46 GMT
Connection: keep-alive
Set-Cookie: UID=fee5ba81a11ab443d6691955019df94; Domain=ads.stickyadstv.com; Expires=Fri, 23-Dec-2022 23:35:46 GMT; Path=/
secure.quantserve.com/quant.js
91.228.74.244200 OK 10 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.244:0
File type ASCII text, with very long lines (26770)
Hash adff5b5a7e20fbf106a848b52ee4b97d
56936923d649b7315409f9758230e240144954a4
d4ac76a8aa7ca361f9ae730b8a235f3fb8d846701b37b103694dc091312303d9
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:44 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "nAbmxtqHqaYrwBiADJAeFg=="
expires: Wed, 30 Nov 2022 23:35:44 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=be8b4282-9c2b-4312-89b3-e8d25620f437&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c2b6518712745dcdd82cadf57ff4b44e&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
192.243.61.227200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=be8b4282-9c2b-4312-89b3-e8d25620f437&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c2b6518712745dcdd82cadf57ff4b44e&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=be8b4282-9c2b-4312-89b3-e8d25620f437&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c2b6518712745dcdd82cadf57ff4b44e&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 23 Nov 2022 23:35:46 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b1d492c4db0c3d455fc7bffc5d802798
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=be8b4282-9c2b-4312-89b3-e8d25620f437&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=b9f846ea23489def30a20b028b981bd1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
192.243.61.227200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=be8b4282-9c2b-4312-89b3-e8d25620f437&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=b9f846ea23489def30a20b028b981bd1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=be8b4282-9c2b-4312-89b3-e8d25620f437&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=b9f846ea23489def30a20b028b981bd1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 23 Nov 2022 23:35:46 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9d7b5d71900a19a3340c7103945334d0
Strict-Transport-Security: max-age=0; includeSubdomains
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9fadf4b8c2681d805d90ef9d5b780d31
4752775edc52abf2cb20724a1967588450ededc4
6d7c69a0ad6ac388ce674d1bd0453f7f4a97de8e1eab71e2c537812341f6b0d9
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3015
Cache-Control: max-age=93106
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:46 GMT
Etag: "637d6b3d-1d7"
Expires: Fri, 25 Nov 2022 01:27:32 GMT
Last-Modified: Wed, 23 Nov 2022 00:37:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 728c65aea6468f52bb2a3835fa1635c4
feb1c66d16deb3d9072f5ff2127c0929181f6114
cb29d4329e12f15646d133aa370baf90c08a2bf834db7cc07173787e51884983
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5517
Cache-Control: max-age=147059
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:46 GMT
Etag: "637e3438-1d7"
Expires: Fri, 25 Nov 2022 16:26:45 GMT
Last-Modified: Wed, 23 Nov 2022 14:54:48 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
104.22.25.87200 OK 22 kB URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.25.87:0
File type Unicode text, UTF-8 text, with very long lines (50946), with LF, NEL line terminators
Hash 6cec96ec83ac482c31f8d6b04bf88cf5
bd918f8db66f63917fc81b610395680c50ca16d4
10551b373a7bef6a0ea6f27d5bc5e5586a1387a6705585891b0cba63066125ee
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: http://m.finanzas-vida.com
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76edb90bd8dab527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=7439281&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
23.36.77.41200 OK 67 B URL HTTP/1.1 ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=7439281&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text
Hash b753854b354a90a85ac6ff282b64b05d
1da3eb0c1b574c639024a54a679db90e403fc1b7
291437ea71e62b1c35d4ec5d3c5ad02cfa930343b41b1472fba70243089c8bbe
GET /www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=7439281&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,, HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=UTF-8
Access-Control-Allow-Origin: http://m.finanzas-vida.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1669246546240089-552
Expires: Wed, 23 Nov 2022 23:35:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 23 Nov 2022 23:35:46 GMT
Content-Length: 67
Connection: keep-alive
Set-Cookie: UID=5e7c3346c6104ebfa4d8e94821c47ecd; Domain=ads.stickyadstv.com; Expires=Fri, 23-Dec-2022 23:35:46 GMT; Path=/
a.vidoomy.com/api/adserver/ad/get?country=NO&domain=finanzas-vida.com&format=1&unique=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&loop=0&player=molsdk&callType=round&vid=9e4947f35751465411fd1a4f5c358c78
3.66.130.242200 OK 3.0 kB URL HTTP/2 a.vidoomy.com/api/adserver/ad/get?country=NO&domain=finanzas-vida.com&format=1&unique=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&loop=0&player=molsdk&callType=round&vid=9e4947f35751465411fd1a4f5c358c78
IP 3.66.130.242:0
Hash 4c90599e01c272176e6891b99bb6ef4b
1129702bd63c249d20d5ad8983808fb2af70cb89
b4a4b38d80180dca83947bce76f2eadd24c132aa275cc214f1f7300e162ecbd4
GET /api/adserver/ad/get?country=NO&domain=finanzas-vida.com&format=1&unique=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&loop=0&player=molsdk&callType=round&vid=9e4947f35751465411fd1a4f5c358c78 HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:46 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: http://m.finanzas-vida.com
access-control-expose-headers: X-Vd-C
vary: Origin
x-vd-c: 0
X-Firefox-Spdy: h2
m.finanzas-vida.com/vendor/clipboard.min.js?ver=6.4.0
172.67.166.168200 OK 3.5 kB URL HTTP/2 m.finanzas-vida.com/vendor/clipboard.min.js?ver=6.4.0
IP 172.67.166.168:0
File type Unicode text, UTF-8 text, with very long lines (10645)
Hash baf69df44404d0fdb55c601b350bd637
82dd4b2908b154ec2d2c8730415f99a00c0349a4
383aa2f766bd1e8bc90e0c79d0cf6410f668dffa153b7cbe2ec92106cd65e1f5
GET /vendor/clipboard.min.js?ver=6.4.0 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
expires: Thu, 24 Nov 2022 00:30:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=39809
x-served-by: m.finanzas-vida.com
cf-cache-status: HIT
age: 36551
last-modified: Wed, 23 Nov 2022 13:26:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AuFxYcuDWo7YTLqoG%2BI8byBiEhvu4THaSUKExjqTXNCsxTeCLM4aHVd8XfW6JSsAsHllfaFYdX3FKKF3Q%2BgZj3v2745%2BiDTgQ1R4QsWszpH3YWQ0LwHS8OwEIdXv%2Bddvi4xTnttE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90aea9e0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 728c65aea6468f52bb2a3835fa1635c4
feb1c66d16deb3d9072f5ff2127c0929181f6114
cb29d4329e12f15646d133aa370baf90c08a2bf834db7cc07173787e51884983
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5517
Cache-Control: max-age=147059
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:46 GMT
Etag: "637e3438-1d7"
Expires: Fri, 25 Nov 2022 16:26:45 GMT
Last-Modified: Wed, 23 Nov 2022 14:54:48 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash bccc4bbacbf48a6771c4651aa241ccf0
62362f7d22bea916eb7ef149ae653386a120b641
a91c8080e5a2836656ed6b92c3fb573b138ca7154f96fec594a15ee24b94d8c0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107326
Date: Wed, 23 Nov 2022 23:35:46 GMT
Etag: "637da902-1d7"
Expires: Fri, 25 Nov 2022 05:24:32 GMT
Last-Modified: Wed, 23 Nov 2022 05:00:50 GMT
Server: ECS (dcb/7EC7)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Du5JNXiFJ8_s-6g-RxvJc_hFlWAKoQmSAIGHmYsnt-tFHTKvm-kbSQ==
Age: 1422
a.vidoomy.com/api/rtbserver/rtb?id=266391&w=400&h=225&skip=1&req_type=1&vpaid=1&ip=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=59795&sid=14872&sname=m.finanzas-vida.com&d=finanzas-vida.com&sp=http://m.finanzas-vida.com/winds&coppa=&gdpr=0&gdprcs=
3.66.130.242204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=266391&w=400&h=225&skip=1&req_type=1&vpaid=1&ip=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=59795&sid=14872&sname=m.finanzas-vida.com&d=finanzas-vida.com&sp=http://m.finanzas-vida.com/winds&coppa=&gdpr=0&gdprcs=
IP 3.66.130.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=266391&w=400&h=225&skip=1&req_type=1&vpaid=1&ip=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=59795&sid=14872&sname=m.finanzas-vida.com&d=finanzas-vida.com&sp=http://m.finanzas-vida.com/winds&coppa=&gdpr=0&gdprcs= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 23 Nov 2022 23:35:46 GMT
access-control-allow-origin: http://m.finanzas-vida.com
options-passthrough: false
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0eae74238d1c9828cd086271241b5e66
4cdd2c9e819b5c71d1d3e4836063a7a9f89ccf15
4884107002b9840725b58cd3ff13215471bdcd8c2a1029c3eeadd16abe4d91d2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "4884107002B9840725B58CD3FF13215471BDCD8C2A1029C3EEADD16ABE4D91D2"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7796
Expires: Thu, 24 Nov 2022 01:45:42 GMT
Date: Wed, 23 Nov 2022 23:35:46 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0eae74238d1c9828cd086271241b5e66
4cdd2c9e819b5c71d1d3e4836063a7a9f89ccf15
4884107002b9840725b58cd3ff13215471bdcd8c2a1029c3eeadd16abe4d91d2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "4884107002B9840725B58CD3FF13215471BDCD8C2A1029C3EEADD16ABE4D91D2"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7796
Expires: Thu, 24 Nov 2022 01:45:42 GMT
Date: Wed, 23 Nov 2022 23:35:46 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.10200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.10:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 23 Nov 2022 23:35:46 GMT
Date: Wed, 23 Nov 2022 23:35:46 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/img/close.png
172.64.108.13200 OK 6.0 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/img/close.png
IP 172.64.108.13:0
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/notifications/software/multi/browsers/ff/3/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:46 GMT
content-type: image/png
content-length: 5982
last-modified: Thu, 08 Sep 2022 07:49:57 GMT
etag: "63199ea5-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 21166
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PQDh0dnTMBgozgCROke1b%2FbN%2FOibFp8%2BY69P0IpiGo5fu2ByfA7E3A9y1RPcoKA4FOUtPEMByAltes0FEQEFEahDfRLWEazFYWU%2BKDt8n7KDHCY0ojeJUaNndrnal%2FoMAVi91ozEY%2Bg2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb92688757499-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0eae74238d1c9828cd086271241b5e66
4cdd2c9e819b5c71d1d3e4836063a7a9f89ccf15
4884107002b9840725b58cd3ff13215471bdcd8c2a1029c3eeadd16abe4d91d2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "4884107002B9840725B58CD3FF13215471BDCD8C2A1029C3EEADD16ABE4D91D2"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7795
Expires: Thu, 24 Nov 2022 01:45:42 GMT
Date: Wed, 23 Nov 2022 23:35:47 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/img/update-icon.png
172.64.108.13200 OK 175 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/img/update-icon.png
IP 172.64.108.13:0
File type PNG image data, 452 x 453, 8-bit/color RGBA, non-interlaced\012- data
Size 175 kB (174730 bytes)
Hash 85bc2f8a287afa33ac84c90178055d00
c98e7ebd06397a77a20607f55fe4ebf1b57ca334
85d20d101efc753f9b0619a33901e1689d1e0c11a46bf6d6d657c1393542cc30
GET /sb/notifications/software/multi/browsers/ff/3/img/update-icon.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:46 GMT
content-type: image/png
content-length: 174730
last-modified: Thu, 08 Sep 2022 07:49:58 GMT
etag: "63199ea6-2aa8a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 21166
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vNzXtgX%2FpLwVINILcQ06SrAKaMCtADNyCd6vlaRA2Vw9By4FMXT8kf8eIHPO6z6REHsabY80B%2FA8vqM2WG8NZsiLPURyniWrV%2FBk13PkkcLeFr4vI2AwtyHQ%2F30wtgxiZwEE0m9uTGck"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb92688777499-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/css/style.css
172.64.108.13200 OK 17 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/css/style.css
IP 172.64.108.13:0
Hash 7ac284dd1ab75915e66e8f2b5752aa5d
e01fe4bf4866bc98790fbe2c628c5c0d0de0cb9c
7b2ea540380549487eeda1b697e815f3bb7e3daab39d7094d2cad201fbe29dc5
GET /sb/notifications/software/multi/browsers/ff/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:47 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 07:49:56 GMT
etag: W/"63199ea4-e97"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YoF22BKFYevb1dXeC7dwXwiOpMCJ0HoVO0R1Ln3h5b6MGVi5Hu4mGl4LJuof7S3ipIWrYaUqkylzsr2nB60tkapnQux%2FNkDYFJesNNsV7Orfgkb3rCSOEbnzqbe%2Boh3P6XXcqx7zmjOE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb92678657499-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 20:16:46 GMT
Expires: Thu, 23 Nov 2023 20:16:46 GMT
Cache-Control: public, max-age=31536000
Age: 11941
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,,
23.38.200.201200 OK 626 B URL HTTP/2 vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,,
IP 23.38.200.201:0
File type ASCII text, with very long lines (1005), with no line terminators
Hash 2b626fa667f46252ce198575d062a0c6
2bb949cecd20d35060a713c358ffcfb850586341
40400e2c50d3eee7aacc9030838cd81d426b3343a011ab7f726dc0b7e3be0cd6
GET /ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
content-type: application/xml
etag: "23da-5e7fbf52c16e8-gzip"
access-control-allow-origin: http://m.finanzas-vida.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
content-encoding: gzip
expires: Wed, 23 Nov 2022 23:35:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 23 Nov 2022 23:35:47 GMT
content-length: 626
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/css/magic.css
172.64.108.13200 OK 2.9 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/css/magic.css
IP 172.64.108.13:0
Hash 6201ab7da81015a578bd1b89472730cc
534db0d7492dc08db2e6230d27102373a533ec80
66402a571a1e9607aa0ebf03c0a1a9470660e900a219dad9bdb0a81bc73c3eef
GET /sb/notifications/software/multi/browsers/ff/3/css/magic.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:47 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 07:49:55 GMT
etag: W/"63199ea3-b0c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SAaoMipwDB3mPNnO3%2FkMXPoXER1RHSiTGSk5Jiatk8h3qBWnfQsj0J9Lnl1CJBmnciAd3h2xJ4bWIcBxZi%2FMKfYksKORFoK%2BhcGIoMYX7UYYHfFhk4e9kA1ZhfY398Y9NpopHki82JAA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb92688747499-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,,
23.38.200.201200 OK 38 kB URL HTTP/2 vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,,
IP 23.38.200.201:0
File type ASCII text, with very long lines (782)
Hash f0c0f21f8fa5c71dc51aea1bec2dfeab
8bc1b201d4b0b916f8b2de71cb5de7b64667c8f4
034e01930ec9a85544fa3297b9f84b504301762fea37881054d5fdbf1eacd402
GET /ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 06 Sep 2022 06:03:39 GMT
etag: "277a2-5e7fbf52bc8c8-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 38047
content-type: application/javascript
cache-control: public, max-age=10800
date: Wed, 23 Nov 2022 23:35:47 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/js/script.js
172.64.108.13200 OK 19 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/js/script.js
IP 172.64.108.13:0
Hash 10c27f610fd911a481d44ed807e381e5
77c66126f585d56373653aa983c51e93f6940e2e
63f1fe160cf33815795391082d4dd2646579b18a6718159e2438bee61589abe2
GET /sb/notifications/software/multi/browsers/ff/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 07:49:59 GMT
etag: W/"63199ea7-2ae2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qbs22cOaEAztUlc8HtYjFe2VoOVA00uXYt35RKtVMujVzXO1EY9TJvAdEuA%2BmhLa1%2Fhdhu5dLIxILMqIpUmP0hMf4lbvphZ9m4eDc7Dw2v0bVEkS3FNy4iZTWM%2FpngxGuV9UukFUf%2B8C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb927391f7499-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/js/jquery.min.js
172.64.108.13200 OK 31 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/multi/browsers/ff/3/js/jquery.min.js
IP 172.64.108.13:0
File type ASCII text, with very long lines (32025), with CRLF line terminators
Hash 8841ef6fb352badaa00eb5fa6805b758
aa68d4e1edabb1430113ff05b642860ce4194dc4
33b81ab969b049fed74285f72c5ed53b54da04a3026c76ec734f98bd34170332
GET /sb/notifications/software/multi/browsers/ff/3/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:46 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 07:49:59 GMT
etag: W/"63199ea7-149a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 21166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5gSfaS%2FWr93rsSHRSVD22yUCzLXJuZUIpG92PWe2MS3AgDrPKkAVOrYXdE8koduCmR3le4Rls6Zrut31tZtNqfjsXLQWIAKzM4SaJtDlRD4bZ9nxtYl3i6g7L6DZdJVLr%2BNylom2MClN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb926887a7499-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
reproductiontape.com/pixel/sbs?c=1
192.243.61.227200 OK 0 B URL HTTP/1.1 reproductiontape.com/pixel/sbs?c=1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /pixel/sbs?c=1 HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Cookie: u_pl=16108009; uid_id2=ea91bf2a-657a-4804-857a-edadec45fa05:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecb9f846ea23489def30a20b028b981bd1=[3760951]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 23 Nov 2022 23:35:47 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3484eada5513911745e2b13b40b9d72a
e23579aabf6452646a38233f4134f033ab3b7801
355c38e21503bdedf6b6970a67de17380a22663db03c3c595da93d6caf1aeeda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5482
Cache-Control: max-age=127928
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:48 GMT
Etag: "637de9a2-1d7"
Expires: Fri, 25 Nov 2022 11:07:56 GMT
Last-Modified: Wed, 23 Nov 2022 09:36:34 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b3e536fe040a2b3af831b4bd86d41975
533556b93a8b259e6828b689c795c74b1d5d691f
a0e7c5fcbb34b368a8e0e1d808a3445941db1b7df78dd66d72e20009de0db7e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4243
Cache-Control: max-age=118436
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 23:35:48 GMT
Etag: "637dc965-138"
Expires: Fri, 25 Nov 2022 08:29:44 GMT
Last-Modified: Wed, 23 Nov 2022 07:19:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 312
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:47 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1669246548&wa=0&vadsId=-1&e=95&vc=2
185.64.189.221200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1669246548&wa=0&vadsId=-1&e=95&vc=2
IP 185.64.189.221:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1669246548&wa=0&vadsId=-1&e=95&vc=2 HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 23 Nov 2022 23:35:48 GMT
content-length: 0
X-Firefox-Spdy: h2
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.finanzas-vida.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1669246548147%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-rem24i8yqlkeksnz1zqn%22%7D
18.158.76.116200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.finanzas-vida.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1669246548147%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-rem24i8yqlkeksnz1zqn%22%7D
IP 18.158.76.116:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.finanzas-vida.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1669246548147%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-rem24i8yqlkeksnz1zqn%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:48 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 04144bf0a82dc969ec78d2cb80f4398c
145ada73711d2cae6ad0b4934e482aa7e1370401
4df4f51f1854c00a791a7ddad322f53d0cbca4a9b66777efd1fea23517bd68a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4DF4F51F1854C00A791A7DDAD322F53D0CBCA4A9B66777EFD1FEA23517BD68A0"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1649
Expires: Thu, 24 Nov 2022 00:03:17 GMT
Date: Wed, 23 Nov 2022 23:35:48 GMT
Connection: keep-alive
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:48 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1669246547&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
185.64.189.221200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1669246547&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
IP 185.64.189.221:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1669246547&wa=0&e=96&ier=901&vadsId=[ADSERVINGID] HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 23 Nov 2022 23:35:48 GMT
content-length: 0
X-Firefox-Spdy: h2
vid-io-dub.springserve.com/vd/i?suuid=5fd8aeea&ps_id=357265&batch=1
34.255.57.73200 OK 0 B URL HTTP/2 vid-io-dub.springserve.com/vd/i?suuid=5fd8aeea&ps_id=357265&batch=1
IP 34.255.57.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /vd/i?suuid=5fd8aeea&ps_id=357265&batch=1 HTTP/1.1
Host: vid-io-dub.springserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1394
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:49 GMT
content-length: 0
server: nginx
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: http://m.finanzas-vida.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=http://m.finanzas-vida.com/winds&cb=57622&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
23.38.200.201200 OK 38 kB URL HTTP/2 vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=http://m.finanzas-vida.com/winds&cb=57622&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
IP 23.38.200.201:0
File type ASCII text, with very long lines (782)
Hash f0c0f21f8fa5c71dc51aea1bec2dfeab
8bc1b201d4b0b916f8b2de71cb5de7b64667c8f4
034e01930ec9a85544fa3297b9f84b504301762fea37881054d5fdbf1eacd402
GET /ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=http://m.finanzas-vida.com/winds&cb=57622&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 06 Sep 2022 06:03:39 GMT
etag: "277a2-5e7fbf52bc8c8-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 38047
content-type: application/javascript
cache-control: public, max-age=10800
date: Wed, 23 Nov 2022 23:35:49 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=finanzas-vida.com&u=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
3.66.130.242200 OK 0 B URL HTTP/2 a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=finanzas-vida.com&u=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
IP 3.66.130.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=finanzas-vida.com&u=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.finanzas-vida.com/
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:50 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: http://m.finanzas-vida.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1669246550&wa=0&vadsId=-1&e=95&vc=2
185.64.189.221200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1669246550&wa=0&vadsId=-1&e=95&vc=2
IP 185.64.189.221:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1669246550&wa=0&vadsId=-1&e=95&vc=2 HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 23 Nov 2022 23:35:49 GMT
content-length: 0
X-Firefox-Spdy: h2
a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=finanzas-vida.com&u=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
3.66.130.242200 OK 15 B URL HTTP/2 a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=finanzas-vida.com&u=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
IP 3.66.130.242:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b50bad5a0a0fe0924598b40fa1c156af
0be98811d2225646e060a5fb5c230b8ba8622b3e
9fae4226a39c5c4a5967827bd6d79897cf445e508714ea2cd03049277984618f
POST /api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=finanzas-vida.com&u=d3082c24-4f95-4357-8e94-d9df76484018&zoneId=18447&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 26
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:50 GMT
content-type: application/json
content-length: 15
access-control-allow-credentials: true
access-control-allow-origin: http://m.finanzas-vida.com
access-control-expose-headers: X-Vd-C
vary: Origin
X-Firefox-Spdy: h2
m.finanzas-vida.com/vendor/wow.min.js?ver=6.4.0
172.67.166.168200 OK 0 B URL HTTP/2 m.finanzas-vida.com/vendor/wow.min.js?ver=6.4.0
IP 172.67.166.168:0
GET /vendor/wow.min.js?ver=6.4.0 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
expires: Thu, 24 Nov 2022 00:30:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=39809
x-served-by: m.finanzas-vida.com
cf-cache-status: HIT
age: 36551
last-modified: Wed, 23 Nov 2022 13:26:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2Bx8PdDX0HFjNO8BXUJNxZ3%2FZPokd6QcaPaTOe5mO3bzz1seCG3nsX4jUSyOzjX4fx0wyAkuonI%2FlIqEDSjZkiZXUWo%2BAYLRP3vaz5qe%2BwtDcRStmSWIoWmaCmD2UQE4jtbbaP0K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90b1ac10b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=19
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=19
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=46583&formatId=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669851342
server: CDN77-Turbo
x-77-nzt: AblMCQ2kSdmh
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e634a9d0f1f
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
104.22.25.87200 OK 0 B URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.25.87:0
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: http://m.finanzas-vida.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:43 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: http://m.finanzas-vida.com
set-cookie: zc=91ad9f9c-2939-45a6-41bf-c01163ffd9c9; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=%CC%F2%C1%FC%22%95%B5%5Ds%2F%8B%9C%81%02%91Vs%FB%3A%3F%12%FA%B2%27%09%DAcd%D2%9Ah%E8%83%F5%8B%1A%A4D%A5%B8%60%F0%FD2v%9E%9E%7F%D6%D9%7C%04%D7%EFC%16%F2%B8%E6%2Br%B6%DF%8C9%03%B1%2F%E3C%11%2A%C57%BD%11%BD%8D_Y%80J-; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76edb90e1aa7b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669784593
server: CDN77-Turbo
x-77-nzt: AblMCQ01pmb/vQQBAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e63b8959d1f
x-cache: HIT
x-age: 66749
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
test.cmp.quantcast.com/GVL-v2/cmp-list.json
143.204.55.14200 OK 0 B URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP 143.204.55.14:0
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Wed, 23 Nov 2022 03:00:34 GMT
last-modified: Tue, 15 Nov 2022 19:52:30 GMT
etag: W/"67643b5faa0950a5532c47758ba39d2f"
x-amz-server-side-encryption: AES256
x-amz-version-id: xPMKnfS8YcqF2frTT5_I_M_eoLLd3kli
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uhRdMqrudJJCFH9JfYK_4DEbL8gWhehCzBuQqpoy_DlB2kmD5r0l1w==
age: 74111
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2ui-es.js
143.204.55.62200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2ui-es.js
IP 143.204.55.62:0
GET /tcfv2/42/cmp2ui-es.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:32 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Tue, 22 Nov 2022 19:34:08 GMT
cache-control: max-age=172800
etag: W/"61891c12c976950785806a7f08986298"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: enQ6H4KtumpwL3HEGvB8m3X4wGFr63bGw-fROoa1k3NUos80Yh_v1A==
age: 100974
X-Firefox-Spdy: h2
cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
143.204.55.62200 OK 0 B URL HTTP/2 cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
IP 143.204.55.62:0
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Wed, 23 Nov 2022 19:11:59 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Wed, 23 Nov 2022 19:11:52 GMT
etag: W/"9daddd429318a3a998a7f41ea884d2b0"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z9GfWzP-0cqTkmk3sD7rhlnI3lLefGtJB2lMXensvZ7d1XEWwrCj-g==
age: 15830
X-Firefox-Spdy: h2
vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,,&us_privacy=&cb=1669246547378&SAVersion=2&inIframe=1&pageURL=http%253A%252F%252Fm.finanzas-vida.com%252Fwinds&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=http%253A%252F%252Fm.finanzas-vida.com%252Fwinds&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-11-23%2023:35:47&ranreq=0.19152991946169406&timezone=0&depth=0
185.64.190.75200 OK 0 B URL HTTP/2 vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,,&us_privacy=&cb=1669246547378&SAVersion=2&inIframe=1&pageURL=http%253A%252F%252Fm.finanzas-vida.com%252Fwinds&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=http%253A%252F%252Fm.finanzas-vida.com%252Fwinds&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-11-23%2023:35:47&ranreq=0.19152991946169406&timezone=0&depth=0
IP 185.64.190.75:0
GET /AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=http%3A%2F%2Fm.finanzas-vida.com%2Fwinds&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,1669246546615,,&us_privacy=&cb=1669246547378&SAVersion=2&inIframe=1&pageURL=http%253A%252F%252Fm.finanzas-vida.com%252Fwinds&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=http%253A%252F%252Fm.finanzas-vida.com%252Fwinds&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-11-23%2023:35:47&ranreq=0.19152991946169406&timezone=0&depth=0 HTTP/1.1
Host: vid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 23:35:48 GMT
content-type: application/xml; charset=utf-8
set-cookie: PUBMDCID=3; domain=pubmatic.com; secure; expires=Tue, 21-Feb-2023 23:35:48 GMT; path=/
pp=156498; domain=pubmatic.com; secure; expires=Tue, 21-Feb-2023 23:35:48 GMT; path=/
PMDTSHR=cat:; domain=pubmatic.com; secure; expires=Thu, 24-Nov-2022 23:35:48 GMT; path=/
x-vdbg: 1:0/165:-1
access-control-allow-origin: http://m.finanzas-vida.com
access-control-allow-credentials: true
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.2.146:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:44 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 488099
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=6
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=6
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=46583&formatId=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669830310
server: CDN77-Turbo
x-77-nzt: AblMCQ3bGQr/KFIAAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e637e28871e
x-cache: HIT
x-age: 21032
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=2
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=2
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=46583&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669830310
server: CDN77-Turbo
x-77-nzt: AblMCQ2Vj4r/KFIAAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e637f8f2f1f
x-cache: HIT
x-age: 21032
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=1
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=1
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669784594
server: CDN77-Turbo
x-77-nzt: AblMCQ2u0JL/vAQBAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e63ebca3220
x-cache: HIT
x-age: 66748
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/software/multi/browsers/ff/3/index.html
172.67.74.218200 OK 0 B URL HTTP/2 cdn.yourwebbars.com/sb/notifications/software/multi/browsers/ff/3/index.html
IP 172.67.74.218:0
GET /sb/notifications/software/multi/browsers/ff/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:46 GMT
content-type: text/html
last-modified: Thu, 08 Sep 2022 07:49:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j5YayOAFDYhon0o2t%2F6DVA9FC9fPi45na0TlQ0J3eGzi1EPwp%2BuNLqKsmVHcdlrr9clXAvJtkb%2FyNx4kZz3422gnv8d%2B3bk93VBkxQAHa0hQqYF6G1p3%2BCZkdvAICzXSQ4BHRxI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb921a85eb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
m.finanzas-vida.com/modern_theme/js/front.js?ver=6.4.0
172.67.166.168200 OK 0 B URL HTTP/2 m.finanzas-vida.com/modern_theme/js/front.js?ver=6.4.0
IP 172.67.166.168:0
GET /modern_theme/js/front.js?ver=6.4.0 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
expires: Thu, 24 Nov 2022 00:30:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=39809
x-served-by: m.finanzas-vida.com
cf-cache-status: HIT
age: 36551
last-modified: Wed, 23 Nov 2022 13:26:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GHMgkwE88TgsPEvn8Myw61GH245crVNPrux%2FE%2BL9INu0YBukJAX7yz7iJwGK3yA1t5AOBeyofQu21N5khLgH0S1fQwz5BvWWm4vBhFqElqjB0P9osx54cgue5oTRLeTjbwyq%2F%2BKM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90a6a600b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=1
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=46583&formatId=1
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=46583&formatId=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1669830310
server: CDN77-Turbo
x-77-nzt: AblMCQ0L773/KFIAAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e639f6fad1f
x-cache: HIT
x-age: 21032
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
143.204.55.62200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
IP 143.204.55.62:0
GET /tcfv2/42/cmp2.js?referer=www.themoneytizer.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
cache-control: max-age=172800
date: Wed, 23 Nov 2022 18:48:23 GMT
etag: W/"9494b70738cd74c9137e65c29c0b1f3e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XLvGzyCocNIaf66EWXANqi3ZKHlI1CUs4dWiBCFLWh5BHjewdaIGiA==
age: 17242
X-Firefox-Spdy: h2
m.finanzas-vida.com/js/ads.js
172.67.166.168200 OK 0 B URL HTTP/2 m.finanzas-vida.com/js/ads.js
IP 172.67.166.168:0
GET /js/ads.js HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
expires: Thu, 24 Nov 2022 00:30:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=39809
x-served-by: m.finanzas-vida.com
cf-cache-status: HIT
age: 36551
last-modified: Wed, 23 Nov 2022 13:26:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pF1vklqbxSUvNiC3Kf4ZskLE28q%2Bnwm3F0f1l6g1cFHg2FfYFytw9YCTWxnToqcpypLXu9bcAW%2FHE3hjATuSrbQbKf901tI2mVr8Brr8iUFBMSpf%2BpipNDDe4636uFJtXSOiv%2BYd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90a6a5d0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unicons.iconscout.com/release/v2.1.7/css/unicons.css
104.18.29.243200 OK 0 B URL HTTP/2 unicons.iconscout.com/release/v2.1.7/css/unicons.css
IP 104.18.29.243:0
GET /release/v2.1.7/css/unicons.css HTTP/1.1
Host: unicons.iconscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=63509
etag: W/"aaeb6aed7a9c71959a3b51e937c363f0"
last-modified: Tue, 28 Apr 2020 10:01:21 GMT
x-amz-id-2: qSduub1s3mFmCfde2XDgqPc08zdrY5EGOqvrCKN/6T4V9eqzeXI3mUndTj3zhrgkkk8TiMbEISM=
x-amz-request-id: V3PY903MVV55FPTX
cf-cache-status: HIT
age: 2363123
expires: Thu, 23 Nov 2023 23:35:42 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb9079998b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.finanzas-vida.com/vendor/owl/owl.carousel.min.js?ver=6.4.0
172.67.166.168200 OK 0 B URL HTTP/2 m.finanzas-vida.com/vendor/owl/owl.carousel.min.js?ver=6.4.0
IP 172.67.166.168:0
GET /vendor/owl/owl.carousel.min.js?ver=6.4.0 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
expires: Thu, 24 Nov 2022 00:30:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=39809
x-served-by: m.finanzas-vida.com
cf-cache-status: HIT
age: 36551
last-modified: Wed, 23 Nov 2022 13:26:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=194iwzSQ2dPH2Jre2na4bck%2BfP5IIzc6tCEg0%2BeqZCu7Cgnr79ePXQPi3IM4Skd6qqh8ISGG9BWD1Fa81g3zhl2kB9ftd3SW9VgflJhxtRqIE34pOEdC3%2F6X63dSpfyR42JorlOW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90a7a650b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vpaid.springserve.com/production/vpaid_6d8da985.js
54.230.111.48200 OK 0 B URL HTTP/2 vpaid.springserve.com/production/vpaid_6d8da985.js
IP 54.230.111.48:0
GET /production/vpaid_6d8da985.js HTTP/1.1
Host: vpaid.springserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 28 Jul 2022 16:39:44 GMT
server: AmazonS3
content-encoding: gzip
date: Sat, 05 Nov 2022 06:29:54 GMT
cache-control: max-age=2678400
etag: W/"9026fbc1fc8aafffe9b6d2458d235a3a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TszCM9dcUcJwrp6q7NFXCPuCLgTs_LkepqRKrAXkdP0Z41pIxMItGA==
age: 2487296
X-Firefox-Spdy: h2
vid.springserve.com/vast/357265?w=400&h=225&url=http://m.finanzas-vida.com/winds&cb=970034&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
79.125.43.77200 OK 0 B URL HTTP/2 vid.springserve.com/vast/357265?w=400&h=225&url=http://m.finanzas-vida.com/winds&cb=970034&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,
IP 79.125.43.77:0
GET /vast/357265?w=400&h=225&url=http://m.finanzas-vida.com/winds&cb=970034&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,, HTTP/1.1
Host: vid.springserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:46 GMT
content-type: application/xml
server: nginx
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: http://m.finanzas-vida.com
set-cookie: ssid=1ee8d3be-9045-4fca-b403-dcffe5fbc439; Max-Age=2419200; Expires=Wed, 21 Dec 2022 23:35:46 GMT; Path=/; Domain=.springserve.com; Secure; HTTPOnly; SameSite=None
sst=1669246546615; Max-Age=2419200; Expires=Wed, 21 Dec 2022 23:35:46 GMT; Path=/; Domain=.springserve.com; Secure; HTTPOnly; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/lib_fs_close.js
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/lib_fs_close.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /lib_fs_close.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
last-modified: Tue, 14 Jun 2022 12:21:22 GMT
expires: Thu, 24 Nov 2022 05:03:14 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1669266194
server: CDN77-Turbo
x-77-nzt: AblMCQ1gZAb/vAQBAA
x-77-nzt-ray: c0a4cc288ecaa9bd4eae7e63c79cac2c
x-cache: HIT
x-age: 66748
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
m.finanzas-vida.com/vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0
172.67.166.168200 OK 0 B URL HTTP/2 m.finanzas-vida.com/vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0
IP 172.67.166.168:0
GET /vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0 HTTP/1.1
Host: m.finanzas-vida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
expires: Thu, 24 Nov 2022 00:30:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=39809
x-served-by: m.finanzas-vida.com
cf-cache-status: HIT
age: 36551
last-modified: Wed, 23 Nov 2022 13:26:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lxCvLPRMLPs1iR58P3K2VzC3v1abJ%2B%2BzfWYnfSyDW9IXjNHX0viZORUzzm7S5zPaNH05Ih3oqzALf8vNGYT%2FVhGxQPInL7s8HCf%2Batm6eUmMgUw5HvccImL9Z%2Bf5F%2FfBCtOmSRON"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90ada9a0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
quantcast.mgr.consensu.org/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
143.204.55.62200 OK 0 B URL HTTP/2 quantcast.mgr.consensu.org/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP 143.204.55.62:0
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: quantcast.mgr.consensu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Wed, 23 Nov 2022 23:35:07 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wME_PXprhDtLVL80ro7BTCyqmmXFtZ_hysCAhSyHgaWk_wTx-WBJow==
age: 39
X-Firefox-Spdy: h2
vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=http://m.finanzas-vida.com/winds&cb=1669246549170&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,&kltstamp=2022-11-23%2023%3A35%3A49&ranreq=0.4963747641254951&timezone=0&us_privacy=&SAVersion=2&inIframe=1&pageURL=&screenResolution=-1x-1&kdntuid=1&vwndh=0&vwndw=0&vwndurl=&vwndref=&vc=2&js=1&sec=1
185.64.190.75200 OK 0 B URL HTTP/2 vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=http://m.finanzas-vida.com/winds&cb=1669246549170&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,&kltstamp=2022-11-23%2023%3A35%3A49&ranreq=0.4963747641254951&timezone=0&us_privacy=&SAVersion=2&inIframe=1&pageURL=&screenResolution=-1x-1&kdntuid=1&vwndh=0&vwndw=0&vwndurl=&vwndref=&vc=2&js=1&sec=1
IP 185.64.190.75:0
GET /AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=http://m.finanzas-vida.com/winds&cb=1669246549170&schain=1.0,1!vidoomy.com,59795,1,90567061875237222129,,&kltstamp=2022-11-23%2023%3A35%3A49&ranreq=0.4963747641254951&timezone=0&us_privacy=&SAVersion=2&inIframe=1&pageURL=&screenResolution=-1x-1&kdntuid=1&vwndh=0&vwndw=0&vwndurl=&vwndref=&vc=2&js=1&sec=1 HTTP/1.1
Host: vid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.finanzas-vida.com
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 23:35:49 GMT
content-type: application/xml; charset=utf-8
set-cookie: PUBMDCID=3; domain=pubmatic.com; secure; expires=Tue, 21-Feb-2023 23:35:49 GMT; path=/
pp=156498; domain=pubmatic.com; secure; expires=Tue, 21-Feb-2023 23:35:49 GMT; path=/
PMDTSHR=cat:; domain=pubmatic.com; secure; expires=Thu, 24-Nov-2022 23:35:49 GMT; path=/
x-vdbg: 1:0/165:-1
access-control-allow-origin: http://m.finanzas-vida.com
access-control-allow-credentials: true
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
unicons.iconscout.com/release/v2.1.9/script/monochrome/bundle.js
104.18.29.243200 OK 0 B URL HTTP/2 unicons.iconscout.com/release/v2.1.9/script/monochrome/bundle.js
IP 104.18.29.243:0
GET /release/v2.1.9/script/monochrome/bundle.js HTTP/1.1
Host: unicons.iconscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.finanzas-vida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 23:35:42 GMT
content-type: application/javascript
x-amz-id-2: GvCKrN3nQW/FEY2jWfHeYZvKkWCt3JBdCuMVwvzgDsMJlQPRsp7xleY2w8Me+pQdtPQBGP2L4Og=
x-amz-request-id: J4Q012JMVSHPPMBE
last-modified: Fri, 22 May 2020 12:00:38 GMT
etag: W/"be52f9b7d5de40f1e7cf1faab2f6d95d"
cf-cache-status: HIT
age: 1252792
expires: Thu, 23 Nov 2023 23:35:42 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 76edb90799a3b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2