r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5720
Expires: Tue, 31 Jan 2023 04:55:29 GMT
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3553
Expires: Tue, 31 Jan 2023 04:19:22 GMT
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
www.adfailure.com/posts/109055-ad-fails
23.22.5.68200 OK 17 kB URL HTTP/1.1 www.adfailure.com/posts/109055-ad-fails
IP 23.22.5.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (325), with CRLF, LF line terminators
Hash 6931bf85c8a3d6cb73bc51a88716be3d
244861c0ed7cd3e0c00e178bf280aea4d523d755
96c1eff80b78dcd0423ec147835923ca75004378258c04ad5008df78e2fd0e8a
Analyzer Verdict Alert fortinet Malware
GET /posts/109055-ad-fails HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: text/html; charset=utf-8
Etag: W/"96c1eff80b78dcd0423ec147835923ca"
Cache-Control: max-age=0, private, must-revalidate
Set-Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34; path=/; HttpOnly
X-Request-Id: de1912ea-0594-4411-a575-8256d35a4264
X-Runtime: 0.016179
Transfer-Encoding: chunked
Via: 1.1 vegur
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 02:43:15 GMT
content-type: application/json
age: 2214
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9258
Expires: Tue, 31 Jan 2023 05:54:27 GMT
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fDNh5GMZeECxc0ckvTsT00MPbCc3jsGRthMxbm2xZ3dh+NbS/EM5GLMrm1tQ7iqRWSMAvbl6GTk=
x-amz-request-id: WPF6P7KQB9PS281A
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 02:22:02 GMT
age: 3487
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:20:09 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/google_service.js
216.58.207.226200 OK 373 B URL HTTP/1.1 partner.googleadservices.com/gampad/google_service.js
IP 216.58.207.226:0
Hash 661854aeecf12ceec3a47608501233da
f7b52c94982b73a5c5559dc166250c18e3af1ba6
12755200a7e22a322f3e6f9231be4a200dbac47873eafc18aecafe32e9dad068
GET /gampad/google_service.js HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 373
X-XSS-Protection: 0
Date: Tue, 31 Jan 2023 02:54:21 GMT
Expires: Tue, 31 Jan 2023 03:54:21 GMT
Cache-Control: public, max-age=3600
Age: 1548
ETag: 953604975598805376
Content-Type: text/javascript; charset=UTF-8
www.adfailure.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
23.22.5.68200 OK 8.5 kB URL HTTP/1.1 www.adfailure.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
IP 23.22.5.68:0
File type ASCII text, with very long lines (19816)
Hash e4977080f98d1d6990e289ed7eaf2ba2
6a1c89d8a74700cf68777f581cd1f1318f135929
7407d0c68f6e75f477ee9a46ed6aec69e150c870ab8532a8006e52ada6eab98b
GET /assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/posts/109055-ad-fails
Connection: keep-alive
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: text/css
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 8458
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2648db12984a09f2dec69b7d2047f187
b52d9496452542d8f1127d4b77c27e22107c34a1
1439e26d15f854c1f1ddd1b37e37846107a83eafd38945da4d48709052f638b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6013
Cache-Control: max-age=90550
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:09 GMT
Etag: "63d73022-118"
Expires: Wed, 01 Feb 2023 04:29:19 GMT
Last-Modified: Mon, 30 Jan 2023 02:49:06 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5526
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:09 GMT
Last-Modified: Tue, 31 Jan 2023 01:48:03 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2648db12984a09f2dec69b7d2047f187
b52d9496452542d8f1127d4b77c27e22107c34a1
1439e26d15f854c1f1ddd1b37e37846107a83eafd38945da4d48709052f638b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6013
Cache-Control: max-age=90550
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:09 GMT
Etag: "63d73022-118"
Expires: Wed, 01 Feb 2023 04:29:19 GMT
Last-Modified: Mon, 30 Jan 2023 02:49:06 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 06:58:32 GMT
expires: Sun, 28 Jan 2024 06:58:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 246098
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adfailure.com/assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js
23.22.5.68200 OK 26 kB URL HTTP/1.1 www.adfailure.com/assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js
IP 23.22.5.68:0
Hash 19dc0b4638e0ff97db5cf820e1061dc8
a233dc9c463b44f24bef43e90c6dc52b4abcadb4
c6394a1e7887819ff53b8bfbfc023152034b63aae1c50bf40cbc51dfaa358474
GET /assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/posts/109055-ad-fails
Connection: keep-alive
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
Last-Modified: Sun, 15 Nov 2020 00:41:30 GMT
Content-Type: application/javascript
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 25847
Via: 1.1 vegur
ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
142.250.74.170200 OK 64 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32035)
Hash d42e0db378c3b7ae639f482be65ca7e0
febb6ba0cb20fbf345e42afbb194f557de4fdb3b
9a978650fc7920f6ce184b5febda53dfadb49086ee56326e0f7ca999b7e802ef
GET /ajax/libs/jqueryui/1.11.4/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 64481
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 08:21:25 GMT
expires: Thu, 25 Jan 2024 08:21:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 500325
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=http://www.adfailure.com&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://www.adfailure.com&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.adfailure.com&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: JcqsVC7BvFOaSujqCl0D/g1QQ9hJHjBv2WfMVRuFEKOixAhmjwNQsbQty48VTApNxx/GKIeMMdXcWEAq6gawUg==
content-length: 0
date: Tue, 31 Jan 2023 03:20:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.adfailure.com/assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png
23.22.5.68200 OK 7.2 kB URL HTTP/1.1 www.adfailure.com/assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png
IP 23.22.5.68:0
File type PNG image data, 63 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash f125eb436067ed7978ff02f7b3606dae
9318e3d224cc1e9702ba7db5bf2f40c8f9de6fe8
4d5ca215ca1380a05d05f1115017f642c7f48ddb105447f096797db9c6c0e362
GET /assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/posts/109055-ad-fails
Connection: keep-alive
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:10 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 7160
Via: 1.1 vegur
www.adfailure.com/assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif
23.22.5.68200 OK 1.5 kB URL HTTP/1.1 www.adfailure.com/assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif
IP 23.22.5.68:0
File type GIF image data, version 89a, 590 x 60\012- data
Hash d76e2951b1bb66e015c72b846ad5fc4c
1cb805b1df4533c12173e20a43cd8a00efa86711
bb7f82c3b3c19d3d8e25c19637e4e4f4d5757973473eb9af0fbf4ad013a43fe3
GET /assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.adfailure.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:10 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/gif
Content-Length: 1516
Via: 1.1 vegur
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash bc7174a7399c756b917d74b44742bd59
6853d4daeab1fa857f3a693b99c80393f4fbc32e
0d9d40b4d177a00432917b331bcccde67e54496dda80aaad31764097bf89ab29
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123476
Date: Tue, 31 Jan 2023 03:20:10 GMT
Etag: "63d7b876-1d7"
Expires: Wed, 01 Feb 2023 13:38:06 GMT
Last-Modified: Mon, 30 Jan 2023 12:30:46 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S2kNXbsaeJgFJ_pmQjqfURvSwcHZFETsyiiswpeEeBbCOb9RS-szRg==
Age: 4040
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash bc7174a7399c756b917d74b44742bd59
6853d4daeab1fa857f3a693b99c80393f4fbc32e
0d9d40b4d177a00432917b331bcccde67e54496dda80aaad31764097bf89ab29
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 03:20:10 GMT
Etag: "63d666f6-1d7"
Last-Modified: Tue, 31 Jan 2023 01:52:39 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: y_OdEaGwI930-xW0d_pvh2FRJT563D8uAka1Y_NjA9sPTCEhGvs1HQ==
Age: 5251
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash bc7174a7399c756b917d74b44742bd59
6853d4daeab1fa857f3a693b99c80393f4fbc32e
0d9d40b4d177a00432917b331bcccde67e54496dda80aaad31764097bf89ab29
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=125343
Date: Tue, 31 Jan 2023 03:20:10 GMT
Etag: "63d7b876-1d7"
Expires: Wed, 01 Feb 2023 14:09:13 GMT
Last-Modified: Mon, 30 Jan 2023 12:30:46 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zjb0Y1ea1Trm-EpdDq8inhpGJU9f61mSPnfWCJGyokU84IvPwaKUqw==
Age: 5907
www.adfailure.com/assets/sites/adfailure.com/logo-a91ca890fe850630ab97a07f044cfdc9614ab2882e799bca9e5e3fce6361933c.png
23.22.5.68200 OK 8.0 kB URL HTTP/1.1 www.adfailure.com/assets/sites/adfailure.com/logo-a91ca890fe850630ab97a07f044cfdc9614ab2882e799bca9e5e3fce6361933c.png
IP 23.22.5.68:0
File type PNG image data, 205 x 90, 8-bit colormap, non-interlaced\012- data
Hash 720194dc5c67666010e790c69e04a5f2
7b6330a9f033db91607b3ccf7f10f455ce64e517
d97bb13f157717ea57669502414bec5b4b8efea26ce59dc9dc31faeec96b7bb1
GET /assets/sites/adfailure.com/logo-a91ca890fe850630ab97a07f044cfdc9614ab2882e799bca9e5e3fce6361933c.png HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/posts/109055-ad-fails
Connection: keep-alive
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 8025
Via: 1.1 vegur
www.adfailure.com/assets/sites/adfailure.com/rater-90621d0bbfabd008fd0fecadede19f1e9414917725dcf3e1be324f605e83c41a.gif
23.22.5.68200 OK 1.3 kB URL HTTP/1.1 www.adfailure.com/assets/sites/adfailure.com/rater-90621d0bbfabd008fd0fecadede19f1e9414917725dcf3e1be324f605e83c41a.gif
IP 23.22.5.68:0
File type GIF image data, version 89a, 30 x 90\012- data
Hash 58563d2c4a7e16d76bbf96b60d97213d
401bf287a388fb804ea421c0023e9af5ee576189
8b5444d712a3d1fad992c64419e8ecea8e6479f199af00f6f0b180d1aeb3c94a
GET /assets/sites/adfailure.com/rater-90621d0bbfabd008fd0fecadede19f1e9414917725dcf3e1be324f605e83c41a.gif HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.adfailure.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:10 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/gif
Content-Length: 1282
Via: 1.1 vegur
www.adfailure.com/assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png
23.22.5.68200 OK 4.1 kB URL HTTP/1.1 www.adfailure.com/assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png
IP 23.22.5.68:0
File type PNG image data, 179 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 2586c24f3fbbed89a1e80ece4dc31047
8695e332e7fea8f2e181d4ec3173e06773760bf3
60365f5192a3462de7a52c6aec53d62dffde2a01e004629ac51db7b58a55d38a
GET /assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/posts/109055-ad-fails
Connection: keep-alive
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:09 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 4148
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2648db12984a09f2dec69b7d2047f187
b52d9496452542d8f1127d4b77c27e22107c34a1
1439e26d15f854c1f1ddd1b37e37846107a83eafd38945da4d48709052f638b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3725
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:10 GMT
Last-Modified: Tue, 31 Jan 2023 02:18:05 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/jquery-ujs/1.2.2/rails.min.js
104.17.25.14200 OK 2.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-ujs/1.2.2/rails.min.js
IP 104.17.25.14:0
File type C source, ASCII text, with very long lines (8676)
Hash 85eae9b96c8799cdf1c5da17f7ad80e9
4b0643b3f5b0597acd276fa68e4afd600c4ca441
12f1c36acd7e6f298bf94d5022a4d2d5847d8d0eba9cb3d7486b4aa01dd73167
GET /ajax/libs/jquery-ujs/1.2.2/rails.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 2289
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-220a"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12949215
expires: Sun, 21 Jan 2024 03:20:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zWk4fYfCoT3ye%2BbKukOA96b4Uisi88Z0eTvhWnuueKh2uxxzM%2F08toeInoBmFAyRIEaDCSdwaBYkDiwC5D%2FoOW0n%2FKuEJHrUdXiHQsLfthpIP2btyJowH1dIvNt51ajtY6LJS3W8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 791f4f58381ab51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/tether/1.3.6/js/tether.min.js
104.17.25.14200 OK 6.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/tether/1.3.6/js/tether.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (24876), with no line terminators
Hash 71dd720ed379f79b86609c08881df411
256d2ee646b4af86a613c79d215b45882d7b26a5
daeb6a20968bef76bc607575c4675e198406e9b8b70c3b06870a66166dedd4f5
GET /ajax/libs/tether/1.3.6/js/tether.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 6695
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffc-612c"
last-modified: Mon, 04 May 2020 16:17:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12745276
expires: Sun, 21 Jan 2024 03:20:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m3kRghoIgrWa82ft8IidK%2FXjdCb0lCmVsmBQWA0%2BanVqaZ7vtp93ta3B9U%2FoGPm8fZrb9gq3Fq5XSDKthiZrBpVcJmm1pQGQYPXDkvqP%2FAELkFrMqd%2FmiGo7CF%2FJzxApzBHM6kq3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 791f4f58381bb51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5527
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:10 GMT
Last-Modified: Tue, 31 Jan 2023 01:48:03 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
216.58.207.227200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.adfailure.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 12:51:13 GMT
expires: Sat, 27 Jan 2024 12:51:13 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 00:26:06 GMT
content-type: font/woff2
age: 311337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash bc7174a7399c756b917d74b44742bd59
6853d4daeab1fa857f3a693b99c80393f4fbc32e
0d9d40b4d177a00432917b331bcccde67e54496dda80aaad31764097bf89ab29
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119436
Date: Tue, 31 Jan 2023 03:20:10 GMT
Etag: "63d7b876-1d7"
Expires: Wed, 01 Feb 2023 12:30:46 GMT
Last-Modified: Mon, 30 Jan 2023 12:30:46 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1rGbIG-Iy4HlF3n14eiZUPxa1HalejSgGPBfDnR0NxCRByNgkUjDFg==
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash bc7174a7399c756b917d74b44742bd59
6853d4daeab1fa857f3a693b99c80393f4fbc32e
0d9d40b4d177a00432917b331bcccde67e54496dda80aaad31764097bf89ab29
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 03:20:10 GMT
Etag: "63d7b876-1d7"
Server: ECS (dcb/7F84)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: m61DawdUMqHSR_Q0ggl7Eg84UaNxRENH591p9qE-Rw1q1hHD7stICw==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 02:49:04 GMT
age: 1866
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/412/efa/559/icon/creepycover-com-b3f0e8.jpg
54.230.111.97200 OK 5.8 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/412/efa/559/icon/creepycover-com-b3f0e8.jpg
IP 54.230.111.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, orientation=upper-left, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash f84c90ece4151a270362df9eb3d9f765
b1f05169798cafff26b1bce209e864269764eecb
27aaf1a715c30e9d626428c9ac48de843672b34ba2db76b2fe2de3b55913c434
GET /hashed_silo_content/412/efa/559/icon/creepycover-com-b3f0e8.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5763
date: Tue, 31 Jan 2023 03:20:11 GMT
last-modified: Thu, 03 Jul 2014 13:22:04 GMT
etag: "f84c90ece4151a270362df9eb3d9f765"
expires: Sun, 07 Jun 2015 20:42:51 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 64lAOPNpQqc1eTMmexCiKnODkUfJ2wndEjUkK1KBB3KlErgNpz-Afw==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/silo_content/533/icon/engrish-funny-1221803484-12124.jpg
54.230.111.97200 OK 3.1 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/533/icon/engrish-funny-1221803484-12124.jpg
IP 54.230.111.97:0
File type JPEG image data, baseline, precision 8, 100x100, components 3\012- data
Hash 09f07f2d52b130546b13e65d68c0a64b
3d539af2b06198905ec81284f6a062890a2a1131
97844f6ae51b43da9406c329c77c0c91ce150cc54ca969270f631197c6ff658e
GET /hashed_silo_content/silo_content/533/icon/engrish-funny-1221803484-12124.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3082
last-modified: Sat, 04 Jun 2011 02:28:57 GMT
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33279/mtime:1267165514/atime:1303461780/ctime:1267165514
accept-ranges: bytes
server: AmazonS3
date: Tue, 31 Jan 2023 03:20:11 GMT
expires: Mon, 31 May 2021 04:34:31 GMT+00:00
etag: "09f07f2d52b130546b13e65d68c0a64b"
x-cache: RefreshHit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Yk6qgh7Cm_Ldp5kWM7HcasL6AX6lGTDdx33EPlMNIVneQe026MuZ-A==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/978/7a6/475/icon/bulk-upload-b82c96.jpg
54.230.111.97200 OK 2.6 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/978/7a6/475/icon/bulk-upload-b82c96.jpg
IP 54.230.111.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 8b82961ffbb5d812364247fa76c05b51
b5b8282fed43bffd5870d0860d236b01e77f7056
9e020f29eabb9a414ec698950ee39332427ded21961fe94a3e46c99350f62ea7
GET /hashed_silo_content/978/7a6/475/icon/bulk-upload-b82c96.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2564
last-modified: Mon, 30 May 2011 02:26:29 GMT
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1302760375/atime:1303397573/ctime:1302760375
accept-ranges: bytes
server: AmazonS3
date: Tue, 31 Jan 2023 03:20:11 GMT
expires: Wed, 26 May 2021 18:56:46 GMT+00:00
etag: "8b82961ffbb5d812364247fa76c05b51"
x-cache: RefreshHit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -PMHe6BUMH5YSVaEOu74mzODMuddeCnjuUSJkbpayVBkBtCC31PiZw==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/5f3/8dc/bc8/icon/diyfail-com-867f57.jpg
54.230.111.97200 OK 2.3 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/5f3/8dc/bc8/icon/diyfail-com-867f57.jpg
IP 54.230.111.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 47e2244cbc6bf128a9f7b4d8810493ad
bc15b977cbba638af1e3efa6314266b7e0a961ec
b3b9551ffb2ee38ac1f38951be6d06d2b56a8bb0b1b3fb4f3331491019d28ad9
GET /hashed_silo_content/5f3/8dc/bc8/icon/diyfail-com-867f57.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2261
date: Tue, 31 Jan 2023 03:20:11 GMT
last-modified: Thu, 09 Jun 2011 12:43:17 GMT
etag: "47e2244cbc6bf128a9f7b4d8810493ad"
expires: Sat, 09 Jun 2012 11:53:51 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T-zZg8UHRnMW9SXpUl16juTeH1zchGHLfhLS6kn3_cBJk4MezewLYQ==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/232/1a3/11d/icon/adfailure-com-507bb1.jpg
54.230.111.97200 OK 4.9 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/232/1a3/11d/icon/adfailure-com-507bb1.jpg
IP 54.230.111.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash cffa64da77d63762a79ca39f5b916963
696bb8683e8b360a0897bfcc9aff1275f4457d5c
7eb0bb053f45f8c481b9c6e9f0a554ac37c0f9de922d8fae7a83c8c4dc66d722
GET /hashed_silo_content/232/1a3/11d/icon/adfailure-com-507bb1.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4893
date: Tue, 31 Jan 2023 03:20:11 GMT
last-modified: Fri, 28 Sep 2012 22:51:33 GMT
etag: "cffa64da77d63762a79ca39f5b916963"
expires: Sat, 28 Sep 2013 22:46:12 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sKr3Dg4TSqXLZut9e0gteBfxqj6Lh_FF-VD5_8g2vBkHJsNaMzK2Pg==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/silo_content/11548/icon/1253932546271.jpg
54.230.111.97200 OK 4.6 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/11548/icon/1253932546271.jpg
IP 54.230.111.97:0
File type JPEG image data, baseline, precision 8, 100x100, components 3\012- data
Hash 97f25f70cd8afe914b94dcf862b2182a
39359dd0465ec3f1d6e8a53ee47c14150ca958c6
bd58853198a573963159972e4837e854873318cc4a485428fac9692cc7282caa
GET /hashed_silo_content/silo_content/11548/icon/1253932546271.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4561
date: Tue, 31 Jan 2023 03:20:11 GMT
last-modified: Tue, 31 May 2011 13:25:02 GMT
etag: "97f25f70cd8afe914b94dcf862b2182a"
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1267007600/atime:1303445020/ctime:1267007600
expires: Fri, 28 May 2021 09:19:47 GMT+00:00
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: li3cM81rNERaZM5J9oXRR6mWCgtXoZDoXm2KGbY4Mrqe6sfdAcnTcA==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4406
Expires: Tue, 31 Jan 2023 04:33:36 GMT
Date: Tue, 31 Jan 2023 03:20:10 GMT
Connection: keep-alive
www.google-analytics.com/ga.js
142.250.74.110200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Tue, 31 Jan 2023 03:07:48 GMT
Expires: Tue, 31 Jan 2023 05:07:48 GMT
Cache-Control: public, max-age=7200
Age: 742
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
cdn.taboola.com/libtrc/horsehead-network/loader.js
151.101.65.44200 OK 46 kB URL HTTP/1.1 cdn.taboola.com/libtrc/horsehead-network/loader.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (65508)
Hash ede4a5c53f44cd7612574c0aec581bd1
41096160f356e54a35de5a5aa1a0d5c69ee2623c
2f9116d114eb513cc338ea2b78833b64388763731e0bac8bca8a3729ce97fbf3
GET /libtrc/horsehead-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 45966
x-amz-id-2: SLrzsCUx9Uih2R56CSZb8RpyP6vRJEWj/4IoXzFXVEx4EM3Qn71uYJN4USbAfH5MijdW+r3PL0E=
x-amz-request-id: W0H726CXQGQY7PN8
x-amz-replication-status: FAILED
Last-Modified: Mon, 30 Jan 2023 12:50:09 GMT
ETag: "9f34668e544cc8c94d0a9e64b8ac0b4d"
x-amz-version-id: FgAPORiNFocF0NF_V_1hSvpa9linZh0i
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:10 GMT
Via: 1.1 varnish
Age: 6348
X-Served-By: cache-bma1633-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1675135211.931420,VS0,VE1
Cache-Control: private,max-age=14401
Vary: Accept-Encoding
abp: 38
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b3ffdd3b4e2f4b05f935884755700a20
73275a447a3b59022c1d2cfeecf5d43d37c9889e
aad2e45fbc30f6a31ad6d14e3e6ce84248c87baf02b516faeb43fa337ce6bc02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
edge.quantserve.com/quant.js
91.228.74.166200 OK 10 kB URL HTTP/1.1 edge.quantserve.com/quant.js
IP 91.228.74.166:0
File type ASCII text, with very long lines (26102)
Hash 8499f27663f9759e8bdfcf721cdb1385
cce839c37e190e9c05b0e17216d91b80a889a7b8
3afcdc3d5510b0b50774c81fbdf2598888ad4926810f59f8a63972a1b50b90d7
GET /quant.js HTTP/1.1
Host: edge.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 03:20:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=604800
Content-Encoding: gzip
Etag: "j4o3/UzQJzEULY/aoGayAw=="
Expires: Tue, 07 Feb 2023 03:20:10 GMT
Vary: Accept-Encoding
assets.horseheadhuffer.com/hashed_silo_content/1ee/d7a/7c8/resized/adfailure-com-7a5920.jpg
54.230.111.97200 OK 79 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/1ee/d7a/7c8/resized/adfailure-com-7a5920.jpg
IP 54.230.111.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 721x583, components 3\012- data
Hash 0e2dd48d25f838424fb8b3ef01c04ebe
480ce51b0a52cf8a2fcbfda966e3566fb413c405
0646660451f2bd13f1d791fa94db957e261865cc7999a883d0e70766bbdb33c2
GET /hashed_silo_content/1ee/d7a/7c8/resized/adfailure-com-7a5920.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 78892
date: Tue, 31 Jan 2023 03:20:11 GMT
last-modified: Sun, 22 Jul 2012 23:24:35 GMT
etag: "0e2dd48d25f838424fb8b3ef01c04ebe"
expires: Mon, 22 Jul 2013 22:52:43 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yESA2C_sqLVuOzsnsT_-oV1_eC8vQm8qzzlLOIVFBPkjXVcozw6EZw==
X-Firefox-Spdy: h2
www.recaptcha.net/recaptcha/api.js
142.250.74.131200 OK 559 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js
IP 142.250.74.131:0
File type ASCII text, with very long lines (853), with no line terminators
Hash 857fd281f66e870ea85e9864372ce9a1
231fe248b7305c7860720e263f808fd27845e56e
da7f66ad24142f77b43d308b1bcb9ebfcebb96706a35ffeb989c4f4bb3bcd065
GET /recaptcha/api.js HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 31 Jan 2023 03:20:10 GMT
date: Tue, 31 Jan 2023 03:20:10 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 559
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=2&utmn=1074519875&utmhn=www.adfailure.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&utmhid=363891262&utmr=-&utmp=%2Fposts%2F109055-ad-fails&utmht=1675135225909&utmac=UA-2787617-18&utmcc=__utma%3D215168583.408632401.1675135226.1675135226.1675135226.1%3B%2B__utmz%3D215168583.1675135226.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=2&utmn=1074519875&utmhn=www.adfailure.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&utmhid=363891262&utmr=-&utmp=%2Fposts%2F109055-ad-fails&utmht=1675135225909&utmac=UA-2787617-18&utmcc=__utma%3D215168583.408632401.1675135226.1675135226.1675135226.1%3B%2B__utmz%3D215168583.1675135226.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /__utm.gif?utmwv=5.7.2&utms=2&utmn=1074519875&utmhn=www.adfailure.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&utmhid=363891262&utmr=-&utmp=%2Fposts%2F109055-ad-fails&utmht=1675135225909&utmac=UA-2787617-18&utmcc=__utma%3D215168583.408632401.1675135226.1675135226.1675135226.1%3B%2B__utmz%3D215168583.1675135226.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Mon, 30 Jan 2023 18:58:07 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Age: 30124
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
www.adfailure.com/favicon.ico
23.22.5.68200 OK 0 B URL HTTP/1.1 www.adfailure.com/favicon.ico
IP 23.22.5.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.adfailure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/posts/109055-ad-fails
Connection: keep-alive
Cookie: _silos_r4_session=L1ZpUkQyRjhBd0ZvdjZpcWFnWVNDVTdhYnR3UGxhRkI3QmU1blZlVUZ2bnA4bjJ4dXZLYmJNMWhsTE5HRzhONHFObEM3citpSmZCc2d2WSt3TmErV2QwQjNKdXJJcDZHQzFjRXo4VHEwMExhNnkrTGgvRDV5a3ZmUzRqMHluQXp3eVZvbWFKaUgrNzBCaS8zbWlva1N3PT0tLVlLamo3Q3pHTDRDd0lEMTMyRCsyN2c9PQ%3D%3D--3668a266cc4132865f7735a167d4ca9047ce1b34
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 31 Jan 2023 03:20:10 GMT
Connection: keep-alive
Last-Modified: Tue, 17 Nov 2020 16:16:51 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 0
Via: 1.1 vegur
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=32674896&utmhn=www.adfailure.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&utmhid=363891262&utmr=-&utmp=%2Fposts%2F109055-ad-fails&utmht=1675135225902&utmac=UA-2787617-58&utmcc=__utma%3D215168583.408632401.1675135226.1675135226.1675135226.1%3B%2B__utmz%3D215168583.1675135226.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1900066721&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=32674896&utmhn=www.adfailure.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&utmhid=363891262&utmr=-&utmp=%2Fposts%2F109055-ad-fails&utmht=1675135225902&utmac=UA-2787617-58&utmcc=__utma%3D215168583.408632401.1675135226.1675135226.1675135226.1%3B%2B__utmz%3D215168583.1675135226.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1900066721&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=32674896&utmhn=www.adfailure.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&utmhid=363891262&utmr=-&utmp=%2Fposts%2F109055-ad-fails&utmht=1675135225902&utmac=UA-2787617-58&utmcc=__utma%3D215168583.408632401.1675135226.1675135226.1675135226.1%3B%2B__utmz%3D215168583.1675135226.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1900066721&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Tue, 31 Jan 2023 03:20:11 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b3ffdd3b4e2f4b05f935884755700a20
73275a447a3b59022c1d2cfeecf5d43d37c9889e
aad2e45fbc30f6a31ad6d14e3e6ce84248c87baf02b516faeb43fa337ce6bc02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Origin: http://www.adfailure.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 36637
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-1fNsFWH97du16.js
54.230.111.4301 Moved Permanently 167 B URL HTTP/1.1 rules.quantcount.com/rules-p-1fNsFWH97du16.js
IP 54.230.111.4:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /rules-p-1fNsFWH97du16.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 31 Jan 2023 03:20:11 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-1fNsFWH97du16.js
X-Cache: Redirect from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rzFIiQXWfHjcDFiye0QoXa3FYB1ddlXM7p8bNN0-dX3cgH1cL79_2Q==
push.services.mozilla.com/
54.148.70.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.70.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HPBQI04SZR9XNkEeNlC0lw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jJblgaGir8G36t0D0fzqpw+165s=
sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1675135226041&ns_c=UTF-8&c7=http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails&c8=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&c9=
54.230.111.7204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1675135226041&ns_c=UTF-8&c7=http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails&c8=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&c9=
IP 54.230.111.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1675135226041&ns_c=UTF-8&c7=http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails&c8=Funny%20Advertising%20Fail%20Pictures%20-%20Ad%20Failure&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 03:20:11 GMT
set-cookie: UID=156cfa809364e854c9bb04b1675135211; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cFQ-slJywq-hgc9BnGKB98Sthyf-JOav8hBk-vPDHZQywnAv7-ljog==
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-1fNsFWH97du16.js
54.230.111.4200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-1fNsFWH97du16.js
IP 54.230.111.4:0
Hash 93d3f379d960770838afbd940546c010
e6980f4eb98f9c62093cabdfa221747e69e04364
9aec79b9c04e0230aca79c162f19a9988ffb5c80c9c98f126bae82870b6a46f4
GET /rules-p-1fNsFWH97du16.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:47:15 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Tue, 31 Jan 2023 02:30:27 GMT
cache-control: max-age=3600
etag: "93d3f379d960770838afbd940546c010"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0LialDbh7vQEJWoJv8fmXgrCPyxaPxNG8-K104PRgvNHT1MWWuILeQ==
age: 2985
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash d40905f2233c7a912ffc732a4ed1d83e
e8a70b37adb724c0d849c4d2319186ceaa7051d0
ad6ab3caef600fe46b158bcc8213efeeda071303c9ced01fa55ef627f2162cdf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 03:20:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 05:29:14 GMT
Expires: Sat, 04 Feb 2023 05:29:13 GMT
Etag: "e8a70b37adb724c0d849c4d2319186ceaa7051d0"
Cache-Control: max-age=352741,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791f4f5c7f1eb506-OSL
fonts.googleapis.com/css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons
142.250.74.106200 OK 25 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons
IP 142.250.74.106:0
File type ASCII text, with very long lines (37714)
Hash d53b5e50c109b7f8abcfa05ef0a19036
cb9357a033e1333a73eb19e6e1bfc26eac0483c6
93257b499094dea5a88bf97eebe41687ee59e15b77ca9224ccfc19b9e801f8f9
GET /css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 03:20:10 GMT
date: Tue, 31 Jan 2023 03:20:10 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 13ca8cf34579e9ddd8df7c66ab0acc85
baad9dc334cffb5812807e98e60ef2cccd8f73a3
a69d6592687b2d0c373e1022b3ead3341e8c05b65d344dad5b2bded790bd0b22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4864
Cache-Control: max-age=144469
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:11 GMT
Etag: "63d80740-1d7"
Expires: Wed, 01 Feb 2023 19:28:00 GMT
Last-Modified: Mon, 30 Jan 2023 18:06:56 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157302 Found 0 B URL HTTP/1.1 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 302 Found
content-length: 0
location: https://gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
cache-control: no-cache
pixel.quantserve.com/pixel;r=1694799154;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails;uht=2;fpan=1;fpa=P0-618382373-1675135225947;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=adfailure.com;dst=0;et=1675135226079;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2F1ee%2Fd7a%2F7c8%2Fresized%2Fadfai;ses=70193829-b851-4d20-a20d-87d325c680e9
91.228.74.208200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1694799154;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails;uht=2;fpan=1;fpa=P0-618382373-1675135225947;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=adfailure.com;dst=0;et=1675135226079;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2F1ee%2Fd7a%2F7c8%2Fresized%2Fadfai;ses=70193829-b851-4d20-a20d-87d325c680e9
IP 91.228.74.208:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1694799154;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails;uht=2;fpan=1;fpa=P0-618382373-1675135225947;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=adfailure.com;dst=0;et=1675135226079;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2F1ee%2Fd7a%2F7c8%2Fresized%2Fadfai;ses=70193829-b851-4d20-a20d-87d325c680e9 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:11 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63d888eb-50b84-693e0-ab9fd; expires=Sat, 02-Mar-2024 03:20:11 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
trc-events.taboola.com/horsehead-adfailure/log/2/debug?tim=03%3A20%3A26.166&type=usage&msg=rtus&llvl=2&id=9974&cv=20230130-10-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/horsehead-adfailure/log/2/debug?tim=03%3A20%3A26.166&type=usage&msg=rtus&llvl=2&id=9974&cv=20230130-10-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /horsehead-adfailure/log/2/debug?tim=03%3A20%3A26.166&type=usage&msg=rtus&llvl=2&id=9974&cv=20230130-10-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 03:20:11 GMT
x-fastly-to-nlb-rtt: 21927
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 32eb12bbcd7fb4f11708445179921a3d
e579038e62e8bd09fcc61282fd4084263b385c86
66efa2c6644bb8734a06dcae8a0e2352ea59107e93e706e139e11ff980946074
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5506
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:11 GMT
Etag: "63d7b022-139"
Last-Modified: Tue, 31 Jan 2023 01:48:25 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
widgets.amung.us/small/00/54.png
104.22.75.171200 OK 317 B URL HTTP/2 widgets.amung.us/small/00/54.png
IP 104.22.75.171:0
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash c29e1a5d98c0fdf067100f7d98348975
bdf368e09374da7d40261434f3ce0f8a3905ccb0
e603fadfc279058ab64d970609f5eb55ce396280f8cf219ac6bb9302a16e74f7
GET /small/00/54.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:11 GMT
content-type: image/png
content-length: 317
last-modified: Sun, 13 Jun 2010 09:48:29 GMT
etag: "4c14a96d-13d"
expires: Mon, 16 Jan 2023 10:49:23 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 1355448
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f4f5f8be70a20-ARN
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.recaptcha.net
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 365528
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 94da194bbf70aa41a65827c4882ea756
6db97bd2d9b0d4406523d4a6984f62a21d76c6a8
eaf9c0e5fef6d174295c7abb4b3b61620cfdb84067e86b3544ebdb37f9d916a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4144
Cache-Control: max-age=127521
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:11 GMT
Etag: "63d7c7dc-13a"
Expires: Wed, 01 Feb 2023 14:45:32 GMT
Last-Modified: Mon, 30 Jan 2023 13:36:28 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 314
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:11 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=aEnnCF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czZ2VERyJTJCcUxjMFRhJTJCWHdQOGpuSk5ocnpNbnlPYnBRV09pbHBnZ0d6cnRW; expires=Sun, 25 Feb 2024 03:20:11 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 198367
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 64aab243abc75ee3a98fe22060a8ef6a
52c51e76a76ef24f57fce419abb2a08838e1226a
187d2be07e3fcedc61afd1b789d44ba91d221446f0dee8d5f2d2bb3358f4a230
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3714
Cache-Control: max-age=94026
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:11 GMT
Etag: "63d746b3-139"
Expires: Wed, 01 Feb 2023 05:27:17 GMT
Last-Modified: Mon, 30 Jan 2023 04:25:23 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
sb.scorecardresearch.com/beacon.js
54.230.111.7200 OK 7.3 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.7:0
File type ASCII text, with very long lines (17842)
Hash c0ba2dc1581eb941979d3a9db761a344
906f15bb6bc916815ddde0321d514f6d41cc4637
15fb55a1f0ccab1293356b3de6918ec2a5cdd19e35256688e2d3a3a202a55721
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 01:20:13 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: B5BpaA8EX6Hi1Jy8CMWnKxvJzt5aDBi3YpOIOg__EzOQFlsi144M0g==
age: 7200
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//taoli.pro/attach/material/SUV_Deals_PR/Ie1I2NGunVEr6V68t.png
151.101.65.44200 OK 17 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//taoli.pro/attach/material/SUV_Deals_PR/Ie1I2NGunVEr6V68t.png
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash eafea751c0e56874df0944d5a4888ebb
8a5112ad2e195c8b0dae8bb2107ab2a8419ca591
0c4ddfe4677d988e6d52698be32d91b522b43b8ab71b181280ff49999e279edf
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//taoli.pro/attach/material/SUV_Deals_PR/Ie1I2NGunVEr6V68t.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 399585194360544488885397576347037596607,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 399585194360544488885397576347037596607,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "97fd12c4ec775c47f78c39d2929ff914"
last-modified: Tue, 27 Dec 2022 19:54:50 GMT
req-referer: https://www.selbst.de/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 8f86e3070f7db0845c388d780088a213
x-envoy-upstream-service-time: 195
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 2765734
x-served-by: cache-iad-kjyo7100069-IAD, cache-iad-kcgs7200028-IAD, cache-lga21960-LGA, cache-iad-kjyo7100022-IAD, cache-bma1677-BMA
x-cache: MISS, HIT, HIT, HIT, HIT
x-cache-hits: 0, 2, 1, 29, 1
x-timer: S1675135212.070617,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//taoli.pro/attach/material/SUV_Deals_PR/Ie1I2NGunVEr6V68t.png
x-vcl-time-ms: 1
content-length: 16754
X-Firefox-Spdy: h2
vidstat.taboola.com/lite-unit/3.9.8/UnitWidgetItemDesktop.min.js
151.101.129.44200 OK 30 kB URL HTTP/1.1 vidstat.taboola.com/lite-unit/3.9.8/UnitWidgetItemDesktop.min.js
IP 151.101.129.44:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash aac1042207afd54e1cf1befcaf3420cd
00f0597866330a850a1d6222861591f24dd18380
ea77ece8880eb28ffe83e94ef787b4204f8b1b3d09f443011b898b13ed4bb706
GET /lite-unit/3.9.8/UnitWidgetItemDesktop.min.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 29909
Content-Type: application/javascript
Last-Modified: Tue, 22 Nov 2022 07:02:09 GMT
ETag: "1842444d4bb92087143326a4d508875d"
Server: AmazonS3
Via: 1.1 b34d5d8e5954d0b7b46d5f0eb534c166.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: iVxUQ_yUDgKIDSZaR21P2jFvv94ZUaTAMQdnd9xsEMFJTpsmb2NMlg==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:12 GMT
Age: 1206520
X-Served-By: cache-bma1639-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 28308
X-Timer: S1675135212.074371,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/17cdf880041703b2e454c466c5240271.jpg
151.101.65.44200 OK 17 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/17cdf880041703b2e454c466c5240271.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0192c216d1919112f74096c908cb1fd9
4da2e7212d4b49d2ca4cd4b29262a85dac4bcf88
9df286e175d529f40e30f7788b1f2143a347128bb94d7af11d2398b4c683faf4
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/17cdf880041703b2e454c466c5240271.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 545737114405923779915571837407462705605,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 545737114405923779915571837407462705605,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "03ebc3610caed02e4a20160619f097f8"
last-modified: Thu, 22 Dec 2022 11:47:44 GMT
req-referer: https://www.usatoday.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: aa0bda4a8b54ff32cc9de86212e2be30
x-envoy-upstream-service-time: 488
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb804
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 2736238
x-served-by: cache-iad-kcgs7200032-IAD, cache-iad-kcgs7200029-IAD, cache-chi-kigq8000139-CHI, cache-iad-kcgs7200103-IAD, cache-bma1677-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 355, 1
x-timer: S1675135212.095118,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/17cdf880041703b2e454c466c5240271.jpg
x-vcl-time-ms: 1
content-length: 17214
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/555529947a8c42bdb2ad29b216f9a652.jpg
151.101.65.44200 OK 17 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/555529947a8c42bdb2ad29b216f9a652.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0db9ad89ccddc3d22a2978937ef03a3e
f5e353201c50edab352144308a3ffe74f5200748
f0b131c0e9a4565d0af141ec433d4d3a1fa69771b78bdf70cbe7dcdf8ba80df5
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/555529947a8c42bdb2ad29b216f9a652.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 622135954854603596145206443697090792685,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 622135954854603596145206443697090792685,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "52bfe008b2c25271d64098eaf153ec4c"
last-modified: Wed, 25 Jan 2023 15:19:24 GMT
req-referer: https://doctoreport.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 9b0cfebc0f9a5a052c073278eebdb6c0
x-envoy-upstream-service-time: 135
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 472288
x-served-by: cache-iad-kcgs7200119-IAD, cache-iad-kjyo7100044-IAD, cache-lga21924-LGA, cache-iad-kcgs7200067-IAD, cache-bma1677-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 1, 0, 45, 1
x-timer: S1675135212.107113,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/555529947a8c42bdb2ad29b216f9a652.jpg
x-vcl-time-ms: 1
content-length: 16868
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//www.fitnessengage.com/wp-content/uploads/2018/08/pexels-photo-209995.jpeg
151.101.65.44200 OK 7.7 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//www.fitnessengage.com/wp-content/uploads/2018/08/pexels-photo-209995.jpeg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 273ff79c1cdbc976a41c05a6db715a48
7bd47079e5430d752a9064eee0f4020eb7447af0
a50fab49f70b8313440bb2b148cc781a8de64652fdd7af9e01c766b5d18547a6
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//www.fitnessengage.com/wp-content/uploads/2018/08/pexels-photo-209995.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 564687983886521203526974091547439485253,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 564687983886521203526974091547439485253,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "8e61cf6b711393c80f66782cc8e776ed"
last-modified: Mon, 12 Dec 2022 17:55:46 GMT
req-referer: https://nttl.blog/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 97f117c0658d2c26d4a41c2e8e5f9063
x-envoy-upstream-service-time: 491
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb804
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 2727720
x-served-by: cache-iad-kiad7000030-IAD, cache-iad-kjyo7100111-IAD, cache-chi-klot8100021-CHI, cache-iad-kiad7000096-IAD, cache-bma1677-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 146, 1
x-timer: S1675135212.107273,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//www.fitnessengage.com/wp-content/uploads/2018/08/pexels-photo-209995.jpeg
x-vcl-time-ms: 1
content-length: 7714
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/4391a25f248029db9f370e587356b26e.jpg
151.101.65.44200 OK 16 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/4391a25f248029db9f370e587356b26e.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash dc003576391a2deb71ee3a94955065c2
34470e877c6c34a56db8db8a90c2a69152350381
a10e91b99afab0003b5f9e9d61f5cef4435908221f5bffc08261e14f08a78e25
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/4391a25f248029db9f370e587356b26e.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 396214852993767942154339023068876834151,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 396214852993767942154339023068876834151,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "97f2b667b2d82c3ee4713027026aecbc"
expiration: expiry-date="Mon, 02 Jan 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Fri, 02 Dec 2022 14:11:03 GMT
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 276
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 2613496
x-served-by: cache-iad-kcgs7200034-IAD, cache-iad-kjyo7100031-IAD, cache-bur-kbur8200038-BUR, cache-iad-kjyo7100134-IAD, cache-bma1677-BMA
x-cache: HIT, MISS, MISS, HIT, HIT
x-cache-hits: 1, 0, 0, 5, 1
x-timer: S1675135212.111822,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/4391a25f248029db9f370e587356b26e.jpg
x-vcl-time-ms: 1
content-length: 15896
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/1acc466ae86be0b97e960c595653cf10.jpg
151.101.65.44200 OK 12 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/1acc466ae86be0b97e960c595653cf10.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9eb60e086bd7339afee45a495e7cbe12
56381eaf9ba924b2866a4de7e9ca693103b816b3
699ad3b16d635d9b6064f3735bf2a568420240ba6f51ba3c16ebcadc25eae8e6
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/1acc466ae86be0b97e960c595653cf10.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 452813569696864937519739931533050862678,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 452813569696864937519739931533050862678,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "191dcd899d073f4ea17d1048878c3d80"
last-modified: Wed, 11 Jan 2023 09:19:33 GMT
req-referer: https://www.synonymes.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 3e77b35570b8f43f1cc63ea5c60916a8
x-envoy-upstream-service-time: 327
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 1696664
x-served-by: cache-iad-kjyo7100163-IAD, cache-iad-kiad7000141-IAD, cache-chi-klot8100024-CHI, cache-iad-kjyo7100080-IAD, cache-bma1677-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 43, 1
x-timer: S1675135212.113972,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/1acc466ae86be0b97e960c595653cf10.jpg
x-vcl-time-ms: 1
content-length: 12528
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/498762ad3676dffaa751c2260ed8b51b.jpg
151.101.65.44200 OK 32 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/498762ad3676dffaa751c2260ed8b51b.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 57f7a209d1a378e223cc3b586cf56393
76db472b5821367c03140a0fc3aaef6611bd7de6
9d992cac89c63f7337aed7d6797728a68851f0cdd8e266d26a40797559b58382
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/498762ad3676dffaa751c2260ed8b51b.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 345481454763424781996970600001744138135,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 345481454763424781996970600001744138135,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "0312f182189ea26417ae6e898cf2c637"
expiration: expiry-date="Mon, 30 Jan 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Fri, 30 Dec 2022 18:39:43 GMT
req-referer: https://www.delmarvanow.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 246
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb803
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 1052706
x-served-by: cache-iad-kjyo7100141-IAD, cache-iad-kcgs7200059-IAD, cache-dfw-kdfw8210101-DFW, cache-iad-kjyo7100112-IAD, cache-bma1677-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 1, 0, 10, 1
x-timer: S1675135212.113958,VS0,VE14
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/498762ad3676dffaa751c2260ed8b51b.jpg
x-vcl-time-ms: 14
content-length: 31452
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SPF/738787525__JK9EOUeG.jpg
151.101.65.44200 OK 7.0 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SPF/738787525__JK9EOUeG.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7e1075c25510b00408600639225f9497
b68f3ef197948fc2f934b71fb85aae506390c054
a8b799c808ac69647378bf18dbcc3ef4578fcfafcbfa095ac94ec174bd01c9cd
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SPF/738787525__JK9EOUeG.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 356336666938553432926984094352108782372,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 356336666938553432926984094352108782372,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "783c8ea68aa842ac178a4662c2e6e785"
expiration: expiry-date="Mon, 30 Jan 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Fri, 30 Dec 2022 11:08:36 GMT
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 80
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:12 GMT
age: 1769989
x-served-by: cache-iad-kiad7000045-IAD, cache-iad-kjyo7100091-IAD, cache-bur-kbur8200098-BUR, cache-iad-kjyo7100054-IAD, cache-bma1677-BMA
x-cache: MISS, MISS, HIT, HIT, MISS
x-cache-hits: 0, 0, 1, 52, 0
x-timer: S1675135212.112038,VS0,VE91
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SPF/738787525__JK9EOUeG.jpg
x-vcl-time-ms: 91
content-length: 6956
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.138200 OK 357 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.138:0
File type JSON data\012- , ASCII text, with very long lines (411), with no line terminators
Hash 3b0e1e522ae75306f3a11406563674e5
0deefc570013a58146cb4e99206aacc8e8f0fd5f
d50faad8f55a3ef7e8bfc6c0796b38ff377f1b6491d7a5311e588621397c6637
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:11 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 110387
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 0429aa796b85492df603b205a835c511
426bfc3cfe05b32b8b9c41827a859e657ef74421
7e832cd123a2419dd235aec6867f7ed7e60624f21b1a748ce59bae12415b0130
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5870
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:12 GMT
Last-Modified: Tue, 31 Jan 2023 01:42:22 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 314
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9720
Expires: Tue, 31 Jan 2023 06:02:12 GMT
Date: Tue, 31 Jan 2023 03:20:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9720
Expires: Tue, 31 Jan 2023 06:02:12 GMT
Date: Tue, 31 Jan 2023 03:20:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9720
Expires: Tue, 31 Jan 2023 06:02:12 GMT
Date: Tue, 31 Jan 2023 03:20:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6bbFjAsd03GN8zzBnAFBm7xA8igZ_xHJsOHzw7nwNgRxiWUDLPGjpQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:53:29 GMT
age: 5203
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 4916
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v9Wphg34UGE5kkZ9RKBcphcpPuCn54oVyepzTW5rZ3J9nkL9J501PA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:03:23 GMT
age: 19009
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZKuBcZgC6yolu1QcaXZKAIIDynG3Zywq1d7sWI8Jlq3ULwlr6XlhWQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 13:04:11 GMT
age: 51361
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cbc9f50b0a96fb69fa2e948aa3125413
e7f13a6e81263e73ac5777959d63b567f50848d5
2e3411687a31211dbf0aa732f8d93a3c5a4748afb264e695d36782700c8e8b5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12906
x-amzn-requestid: 4d09cdf1-2b4b-4f72-a313-caf6660774d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsLoHaHIAMF1uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d22717-7074bd5202e3aced21ac49e3;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:09:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZkPnGMNVHQUSKvsqXZajTFA6FiOiZvSXHU6QN8zbCrSXKKmSdCWVqQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:47:13 GMT
age: 16379
etag: "e7f13a6e81263e73ac5777959d63b567f50848d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lJril-pCQ3MCMoVEFu3kmDuv4T1ABYMFJTuC5dbwxGe1_ydrbUkt8Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 03:40:12 GMT
age: 85200
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:11 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&cmcv=&pix=undefined&cb=1675135227295&uv=3251&tms=1675135227295&abt=dfrc_vA!nrlc_vB!t45!ufm&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=8b975a10-e326-424e-a674-ff8a8c812489&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
151.101.193.44200 OK 436 B URL HTTP/1.1 imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&cmcv=&pix=undefined&cb=1675135227295&uv=3251&tms=1675135227295&abt=dfrc_vA!nrlc_vB!t45!ufm&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=8b975a10-e326-424e-a674-ff8a8c812489&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
IP 151.101.193.44:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (738), with no line terminators
Hash 447acff9582d8837c61ed924cb811290
d30c591bbf174bb729d4bafb78967c90435c9104
1976132b896e9df95c58b38a89c5d8465ee83e3ad6b6925bb5a7ccbad0aa04ed
GET /st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&cmcv=&pix=undefined&cb=1675135227295&uv=3251&tms=1675135227295&abt=dfrc_vA!nrlc_vB!t45!ufm&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=8b975a10-e326-424e-a674-ff8a8c812489&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1 HTTP/1.1
Host: imprammp.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Content-Type: text/html;charset=ISO-8859-1
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:12 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1679-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1675135212.426517,VS0,VE25
Vary: Accept-Encoding
transfer-encoding: chunked
am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66361655&crid=-1&dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&cmcv=&pix=31589837&cb=1675135227295&uv=3251&tms=1675135227295&abt=dfrc_vA!nrlc_vB!t45!ufm&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1675135224229!ts:1675135227295&mntl=1
141.226.228.48200 0 B URL HTTP/1.1 am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66361655&crid=-1&dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&cmcv=&pix=31589837&cb=1675135227295&uv=3251&tms=1675135227295&abt=dfrc_vA!nrlc_vB!t45!ufm&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1675135224229!ts:1675135227295&mntl=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66361655&crid=-1&dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&cmcv=&pix=31589837&cb=1675135227295&uv=3251&tms=1675135227295&abt=dfrc_vA!nrlc_vB!t45!ufm&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1675135224229!ts:1675135227295&mntl=1 HTTP/1.1
Host: am-vid-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200
Server: nginx
Date: Tue, 31 Jan 2023 03:20:12 GMT
Content-Length: 0
Connection: keep-alive
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1675135227315&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1497&pt=-1369651224&tz=0&viewable=true&ddast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=dfrc_vA!nrlc_vB!t45!ufm&mPre=0.033&cirf=https%3A%2F%2Fwww.adfailure.com&en=1
151.101.1.44200 OK 514 B URL HTTP/1.1 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1675135227315&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1497&pt=-1369651224&tz=0&viewable=true&ddast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=dfrc_vA!nrlc_vB!t45!ufm&mPre=0.033&cirf=https%3A%2F%2Fwww.adfailure.com&en=1
IP 151.101.1.44:0
File type ASCII text, with very long lines (1416), with no line terminators
Hash 36bd4914ceb739fe7b727b225d082b94
2db1bb5e7c3a04c9200421d2cce44541c4e14591
6efc6303256155902b9207e355c2522fabdf9b6e986b1a22b3c72713dc7a3b25
POST /VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1675135227315&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1497&pt=-1369651224&tz=0&viewable=true&ddast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=dfrc_vA!nrlc_vB!t45!ufm&mPre=0.033&cirf=https%3A%2F%2Fwww.adfailure.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Content-type: text/plain
Content-Length: 117
Origin: http://www.adfailure.com
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Content-Type: application/json;charset=utf-8
MachineId: 1461
Pragma: no-cache
Cache-Control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: http://www.adfailure.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:12 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1675135212.449305,VS0,VE77
Vary: Accept-Encoding
transfer-encoding: chunked
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint= HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
date: Tue, 31 Jan 2023 03:20:12 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
vidstat.taboola.com/vpaid/units/32_5_1/assets/css/cmOsUnit.css
151.101.129.44200 OK 9.0 kB URL HTTP/1.1 vidstat.taboola.com/vpaid/units/32_5_1/assets/css/cmOsUnit.css
IP 151.101.129.44:0
Hash 11c8e95b6d717b4f81b0e8aeef43a2af
74f3cd68a4b0a12f690aa373cca8b96afe5ae545
fcf686accd7798965ad167d08eb888199f8b87b73426ff440aa17ca10bc4b401
GET /vpaid/units/32_5_1/assets/css/cmOsUnit.css HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 8956
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 10:08:47 GMT
ETag: "0d6a67e2248705242168906b25f06d14"
x-amz-meta-ctime: 1674468526
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1674468525
Server: AmazonS3
Via: 1.1 d7969a7dfe0a063d186d3c72531d67be.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: qFYAp3AtUc3SUUA8jxhBS56YRAyqyex8LtaTen4ANtC6cfQeikUrjA==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:12 GMT
Age: 666615
X-Served-By: cache-bma1639-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 34505
X-Timer: S1675135213.566683,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.66.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.66.133:0
Hash 5726e9d5f188961737d757c1f785001d
55f41652889bde099aa95fb9e7b749fa4a4e874b
698e87b324dcf48d6cdc5e05b115e10cbc740c6aeca4bbab35307bf861ed9a1c
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 04 Feb 2023 02:46:36 GMT
ETag: "55f41652889bde099aa95fb9e7b749fa4a4e874b"
Last-Modified: Tue, 31 Jan 2023 02:46:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:12 GMT
Age: 2014
X-Served-By: cache-qpg1235-QPG, cache-bma1624-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 19
X-Timer: S1675135213.589395,VS0,VE0
vidstat.taboola.com/vpaid/units/32_5_1/infra/cmTagWIDGET_ITEM.js
151.101.129.44200 OK 166 kB URL HTTP/1.1 vidstat.taboola.com/vpaid/units/32_5_1/infra/cmTagWIDGET_ITEM.js
IP 151.101.129.44:0
File type Unicode text, UTF-8 text, with very long lines (65489), with no line terminators
Size 166 kB (166548 bytes)
Hash 2fd8b55e561e4cd36ff2b960b3d86eec
6dc606a6f8632758b9fb6d9e14d934b53e56c3be
4573c181ee5765ef842d47aa4440b2a2af45f401749cb73bc7ec94ca186f912b
GET /vpaid/units/32_5_1/infra/cmTagWIDGET_ITEM.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Origin: http://www.adfailure.com
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 166548
Content-Type: application/javascript
Last-Modified: Mon, 23 Jan 2023 10:07:04 GMT
ETag: "faab225bb94d7af03e7f4390657ace29"
x-amz-meta-ctime: 1674468423
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1674468422
Server: AmazonS3
Via: 1.1 e15d64214925ae012e1d711871cc6452.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: 7zguMScgjf3R_e3FK_eHiDNY3lX9LS2rLwEIzIjAPw0_mHkQ381__g==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:12 GMT
Age: 655220
X-Served-By: cache-bma1620-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 112
X-Timer: S1675135213.584755,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint= HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://imprammp.taboola.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Tue, 31 Jan 2023 03:20:12 GMT
Connection: keep-alive
Vary: Accept-Encoding
am-match.taboola.com/sync?dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&excid=22&docw=0&cijs=1&nlb=false
141.226.228.48200 OK 10 kB URL HTTP/2 am-match.taboola.com/sync?dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&excid=22&docw=0&cijs=1&nlb=false
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
File type gzip compressed data, from Unix\012- data
Hash b4537fd95a572fde70ee129592434415
90d54f5284b7b6fece7c91d65cfebf70de8a6520
918a490575da060dd0b7c758dfb8cb8544d499995a8e2a6c943e25410c42847b
GET /sync?dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&excid=22&docw=0&cijs=1&nlb=false HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:20:12 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3401
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 74be048cae4a81b12cbf7fc643928693
b7c2113780c088beb77f9f84e0226a1d6f7175fa
b28d19a792836850ec81eddd1f8c1d22122b1f454977ba5b3e65ef4b2c25fb5f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 03:20:12 GMT
Last-Modified: Tue, 31 Jan 2023 01:31:27 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VTwarmoX1OTaA-U6MLmBgF1NnnVRhD_-koJxWI-uyINkYmhY4b4Mbg==
Age: 6525
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41a4a3693b6cf7e1a345afbe00934ca7
6f072cde84187c4124dd88fab10a1296bcba998c
9e426a348b95f52ca2e18f09932f0e48046abd55f30c8a884da00d8e89d45bc4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4057
Cache-Control: max-age=168859
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:12 GMT
Etag: "63d869ae-1d7"
Expires: Thu, 02 Feb 2023 02:14:31 GMT
Last-Modified: Tue, 31 Jan 2023 01:06:54 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
pixel.rubiconproject.com/exchange/sync.php?p=15414&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1---
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=15414&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1---
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=15414&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1--- HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
Content-Type: image/gif
vidstat.taboola.com/vpaid/vPlayer/player/v14.9.7/OvaMediaPlayer.js
151.101.129.44200 OK 105 kB URL HTTP/1.1 vidstat.taboola.com/vpaid/vPlayer/player/v14.9.7/OvaMediaPlayer.js
IP 151.101.129.44:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 105 kB (105243 bytes)
Hash c563f094427338936c99eeb86dd67231
b05c208723d36f39f504b3f361151cafd85f01e7
e985963e07be7b6b517482e43a80b209ff5ab4f9b8489f5813a80332d2c63f2b
GET /vpaid/vPlayer/player/v14.9.7/OvaMediaPlayer.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 105243
Content-Type: application/javascript
Last-Modified: Sun, 22 Jan 2023 06:32:22 GMT
ETag: "dce756c5128740f31866e7af5be211d2"
x-amz-meta-ctime: 1674369141
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1674369141
Server: AmazonS3
Via: 1.1 abe7c423e3f506d9a86c5f57fbc5a762.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: 3BWFE-r_yKRA--i31CYqgYauStKFdMFTErzBViAoz-GCiJaUb7CGRA==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:12 GMT
Age: 766012
X-Served-By: cache-bma1639-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 48146
X-Timer: S1675135213.956686,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:13 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
vidstatb.taboola.com/vid/blackScreen5.mp4
151.101.1.44206 Partial Content 42 kB URL HTTP/1.1 vidstatb.taboola.com/vid/blackScreen5.mp4
IP 151.101.1.44:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash dbb581538e3f5304656cb7ed686ea18b
6cbc5f9bee42c9d19992d5f64d324989f32c6b86
b38cc366635426c97a65bdc4aeb6e5729eb6f9f257efe7f39d64f0290eed2e6c
GET /vid/blackScreen5.mp4 HTTP/1.1
Host: vidstatb.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: http://www.adfailure.com/
Range: bytes=0-
Connection: keep-alive
HTTP/1.1 206 Partial Content
Connection: keep-alive
Content-Length: 90784
Content-Type: video/mp4
Last-Modified: Sun, 02 Jul 2017 20:40:57 GMT
ETag: "b2b087fe4ae638c533731c347fcd4df8"
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1497790207
Server: AmazonS3
Via: 1.1 9803a30a87f1ec1047cb2b8ad5ecc43e.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: gopM2XYfUoVUFmJXQ0440-QEF6IoAyvdLK0EUOquu3M35zK6ZGLwLg==
Cache-Control: public, max-age=2592000
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:13 GMT
Age: 95109
X-Served-By: cache-bma1671-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 249
X-Timer: S1675135213.042547,VS0,VE0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
Content-Range: bytes 0-90783/90784
am-match.taboola.com/sync?dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&excid=22&docw=0&cijs=1&nlb=false
141.226.228.48200 OK 890 B URL HTTP/2 am-match.taboola.com/sync?dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&excid=22&docw=0&cijs=1&nlb=false
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (642), with CRLF, LF line terminators
Hash fb298727aa7776b73b8fe51d1a752564
8ec3f9025fa5bd1e8526c2fbf946b163cece0eca
4c590a94ad02d760c5fb5ae4fd22bb64b78e09f87c6169c775c1948c558763d6
GET /sync?dast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&excid=22&docw=0&cijs=1&nlb=false HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:20:12 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3406
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 00eb9e78141d77bb46acdc8029047c2a
4f1660d99904cbdd8b9332ca4d2ec700fad39e29
19b4ba6f1404e8b0f191035a69c5757fb7572a54a5405192c24b64845d262d36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1598
Cache-Control: max-age=87580
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:13 GMT
Etag: "63d735cc-2d7"
Expires: Wed, 01 Feb 2023 03:39:53 GMT
Last-Modified: Mon, 30 Jan 2023 03:13:16 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e4981767665bca208002904406076a08
b0c935282c642c8d24cf26da2e3471b8cf378793
98b5c20d3deee7d35220ca861ff5e475e072f3060fd124df9241d3d296089e6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1358
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:13 GMT
Last-Modified: Tue, 31 Jan 2023 02:57:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
151.101.65.44200 OK 254 B URL HTTP/1.1 cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
IP 151.101.65.44:0
File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Hash dfa7b52c86e56bd67fa4002f6ed19854
7df722645482433c2b5c8d8ab4272a9874592f27
f68019eb4b4e5933301d4ee75969e0cb94ed8333bf514630fa749eb9c3e483c9
GET /libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 254
x-amz-id-2: c3AK0F63Rmz1U+ZkwDZRH6hJiJRTGpZB8kTBPWz0vwbg9siBxtMOH8aEqr1NtVeNHtLhLAVUR9E=
x-amz-request-id: 4JKSR0YA3KVH073N
x-amz-replication-status: COMPLETED
Last-Modified: Wed, 24 Jun 2015 07:14:11 GMT
ETag: "dfa7b52c86e56bd67fa4002f6ed19854"
x-amz-meta-s3cmd-attrs: uid:0/gname:root/uname:root/gid:0/mode:33188/mtime:1377415166/atime:1435052450/md5:dfa7b52c86e56bd67fa4002f6ed19854/ctime:1422381567
x-amz-version-id: hL.cyLD7Q4TL5ceY.7JQwF9m5IYI8mkC
Content-Type: image/png
Server: AmazonS3
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:13 GMT
Via: 1.1 varnish
Age: 13536
X-Served-By: cache-bma1633-BMA
X-Cache: HIT
X-Cache-Hits: 99
X-Timer: S1675135213.128640,VS0,VE0
Cache-Control: private,max-age=31536000
abp: 99
cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm=&google_sc=&gdpr=1&us_privacy=1---&google_tc=
142.250.74.130200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm=&google_sc=&gdpr=1&us_privacy=1---&google_tc=
IP 142.250.74.130:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=rubicon&google_cm=&google_sc=&gdpr=1&us_privacy=1---&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Tue, 31 Jan 2023 03:20:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel-sync.sitescout.com/dmp/pixelSync?nid=1&gdpr=1&us_privacy=1---
98.98.134.243204 No Content 0 B URL HTTP/2 pixel-sync.sitescout.com/dmp/pixelSync?nid=1&gdpr=1&us_privacy=1---
IP 98.98.134.243:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/pixelSync?nid=1&gdpr=1&us_privacy=1--- HTTP/1.1
Host: pixel-sync.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Tue, 31 Jan 2023 03:20:12 GMT
server: AC1.1
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:20:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sync.mathtag.com/sync/img?mt_exid=9&redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4222%26nid%3D1512%26put%3D%5BMM_UUID%5D&gdpr=1&us_privacy=1---
185.29.134.244302 Moved Temporarily 0 B URL HTTP/1.1 sync.mathtag.com/sync/img?mt_exid=9&redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4222%26nid%3D1512%26put%3D%5BMM_UUID%5D&gdpr=1&us_privacy=1---
IP 185.29.134.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/img?mt_exid=9&redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4222%26nid%3D1512%26put%3D%5BMM_UUID%5D&gdpr=1&us_privacy=1--- HTTP/1.1
Host: sync.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Tue, 31 Jan 2023 03:20:13 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Access-Control-Allow-Origin: *
Server: MT3 404 ce67235 master cdg-pixel-x27 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: uuid=a80e63d8-88ed-4400-bb9e-1d53759d8f9f; domain=.mathtag.com; path=/; expires=Wed, 28-Feb-2024 03:20:13 GMT; SameSite=None; Secure
location: https://pixel.rubiconproject.com/tap.php?v=4222&nid=1512&put=a80e63d8-88ed-4400-bb9e-1d53759d8f9f&gdpr=1&gdpr_consent=
Expires: Tue, 31 Jan 2023 03:20:12 GMT
pixel.rubiconproject.com/tap.php?v=4222&nid=1512&put=a80e63d8-88ed-4400-bb9e-1d53759d8f9f&gdpr=1&gdpr_consent=
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=4222&nid=1512&put=a80e63d8-88ed-4400-bb9e-1d53759d8f9f&gdpr=1&gdpr_consent=
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=4222&nid=1512&put=a80e63d8-88ed-4400-bb9e-1d53759d8f9f&gdpr=1&gdpr_consent= HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
Content-Type: image/gif
trc.taboola.com/horsehead-adfailure/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
151.101.65.44204 No Content 0 B URL HTTP/2 trc.taboola.com/horsehead-adfailure/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
IP 151.101.65.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /horsehead-adfailure/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 5565
Origin: http://www.adfailure.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.adfailure.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675135213.118978,VS0,VE92
x-vcl-time-ms: 92
X-Firefox-Spdy: h2
token.rubiconproject.com/token?pid=2974&pt=n&a=1&gdpr=1&us_privacy=1---
69.173.144.139204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2974&pt=n&a=1&gdpr=1&us_privacy=1---
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2974&pt=n&a=1&gdpr=1&us_privacy=1--- HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 08fc1f390a6968c5983b6715b2a92536
token.rubiconproject.com/token?pid=2249&pt=n&gdpr=1&us_privacy=1---
69.173.144.139302 Found 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2249&pt=n&gdpr=1&us_privacy=1---
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2249&pt=n&gdpr=1&us_privacy=1--- HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 08fc1f390a6968c5983b6715b2a92536
Location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---
content-length: 0
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 75c812b3ca4e4eeae3179826b9f0d837
a4c25c5aac44a08a6a9b53634f69a9dc3c1ce8c1
9e9efe7448947054b523d79a0706bb7ab7e4eea8a703d313d772d1382f24560e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 31 Jan 2023 03:20:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 21:50:04 GMT
Expires: Tue, 31 Jan 2023 21:50:04 GMT
ETag: "a4c25c5aac44a08a6a9b53634f69a9dc3c1ce8c1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
match.adsby.bidtheatre.com/rubiconmatch?gdpr=1&us_privacy=1---
159.65.196.12302 302 0 B URL HTTP/1.1 match.adsby.bidtheatre.com/rubiconmatch?gdpr=1&us_privacy=1---
IP 159.65.196.12:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rubiconmatch?gdpr=1&us_privacy=1--- HTTP/1.1
Host: match.adsby.bidtheatre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 302
Date: Tue, 31 Jan 2023 03:20:13 GMT
Server: Apache
P3P: policyref="/w3c/p3p.xml", CP="DSP NON LAW OUR CUR DEVo PSAo PSDo IND STA NAV COM INT"
Set-Cookie: __kuid=96c64b30-bfe2-4c17-b422-e7a3da66ce0b.444349213; Max-Age=604800; Domain=.adsby.bidtheatre.com; SameSite=None; Secure
Location: https://pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=1&gdpr_consent=&put=96c64b30-bfe2-4c17-b422-e7a3da66ce0b
Content-Length: 0
Keep-Alive: timeout=5, max=3000
Connection: Keep-Alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 03:20:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=339994,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791f4f6adc6db506-OSL
x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
3.124.23.99200 OK 43 B URL HTTP/2 x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
IP 3.124.23.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?gdpr=1&us_privacy=1---&ssp=taboola HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:13 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=1&gdpr_consent=&put=96c64b30-bfe2-4c17-b422-e7a3da66ce0b
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=1&gdpr_consent=&put=96c64b30-bfe2-4c17-b422-e7a3da66ce0b
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=17039&nid=2650&days=30&gdpr=1&gdpr_consent=&put=96c64b30-bfe2-4c17-b422-e7a3da66ce0b HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
Content-Type: image/gif
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---
52.46.128.147302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---
IP 52.46.128.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1--- HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Tue, 31 Jan 2023 03:20:13 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: 9GGVPGDJXGHP505H5T7P
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
52.46.128.147200 OK 43 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
IP 52.46.128.147:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Tue, 31 Jan 2023 03:20:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: XRH1X69HR0T5XHXD7P4W
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fbc4eaf64c9767dcc709b181dc782c72
a430eb3644591e746912d2a9a674aa71340a9521
41674efd1fc25eb323e6378702642e1e1034475e15a8ca3f5ad0c59b3a92d822
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41674EFD1FC25EB323E6378702642E1E1034475E15A8CA3F5AD0C59B3A92D822"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5120
Expires: Tue, 31 Jan 2023 04:45:33 GMT
Date: Tue, 31 Jan 2023 03:20:13 GMT
Connection: keep-alive
cdn.taboola.com/scripts/cds-pips.js
151.101.65.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/scripts/cds-pips.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (3545), with no line terminators
Hash 780c5c514014519ce276709f515905a0
04fe86d00b9c9077effe05171d066d243ecab221
015db06150b62ad2ad533883652174ebb6f07e24a7147fdac01a0ccd266e3f30
GET /scripts/cds-pips.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2KBeU0d7OyPXtZDYUoIqlTBmhGhsve90tjYoemCxISjKQrNgcxT28sPXVt5KfJt+6r7dFoJgA8g=
x-amz-request-id: NFWGDQGY1WQ95XHE
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Oct 2022 13:57:57 GMT
etag: "383fa66d2a0a09f4a6e64a9593ad43bb"
x-amz-version-id: z5FoayaLm_Bvew3pbkytkoHczFCvkPwT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:14 GMT
via: 1.1 varnish
age: 625
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 237
x-timer: S1675135214.022494,VS0,VE0
vary: Accept-Encoding
abp: 99
cache-control: private, max-age=3600
content-length: 1340
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.65.44200 OK 4 B IP 151.101.65.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Origin: http://www.adfailure.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: http://www.adfailure.com
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
rcp.c.appier.net/rbcm?gdpr=1&us_privacy=1---
172.105.221.240302 Found 131 B URL HTTP/2 rcp.c.appier.net/rbcm?gdpr=1&us_privacy=1---
IP 172.105.221.240:0
File type HTML document, ASCII text
Hash 0f09f850b33c81048dd04794105bc6a2
315b057d5de581b9e555a827c80b035dae80b728
72d65704175eab2fa4afed0070b226a8d6b2774f0dea3629e79dc96cb74dcc72
GET /rbcm?gdpr=1&us_privacy=1--- HTTP/1.1
Host: rcp.c.appier.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 31 Jan 2023 03:20:13 GMT
content-type: text/html; charset=utf-8
content-length: 131
cache-control: no-store
location: https://pixel.rubiconproject.com/tap.php?v=70596&nid=3632&put=B62zcFNhDz-9LRwf7YjYYw&expires=365
p3p: CP="CUR ADM DEV TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
set-cookie: _auid=B62zcFNhDz-9LRwf7YjYYw; Path=/; Domain=c.appier.net; Expires=Wed, 31 Jan 2024 03:20:13 GMT; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=70596&nid=3632&put=B62zcFNhDz-9LRwf7YjYYw&expires=365
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=70596&nid=3632&put=B62zcFNhDz-9LRwf7YjYYw&expires=365
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=70596&nid=3632&put=B62zcFNhDz-9LRwf7YjYYw&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
Content-Type: image/gif
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1675135232998&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1497&pt=-1584872951&tz=0&viewable=true&ddast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=dfrc_vA!nrlc_vB!t45!ufm_vA&mPre=0.033&cirf=https%3A%2F%2Fwww.adfailure.com&en=1
151.101.1.44200 OK 514 B URL HTTP/1.1 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1675135232998&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1497&pt=-1584872951&tz=0&viewable=true&ddast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=dfrc_vA!nrlc_vB!t45!ufm_vA&mPre=0.033&cirf=https%3A%2F%2Fwww.adfailure.com&en=1
IP 151.101.1.44:0
File type ASCII text, with very long lines (1416), with no line terminators
Hash 36bd4914ceb739fe7b727b225d082b94
2db1bb5e7c3a04c9200421d2cce44541c4e14591
6efc6303256155902b9207e355c2522fabdf9b6e986b1a22b3c72713dc7a3b25
POST /VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1675135232998&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1497&pt=-1584872951&tz=0&viewable=true&ddast=V7mQUCFgN0nDg0XvcNDgR0nDg0XvcNDgUAAAAGBuIHJDhx7lYLx2Ct8kxma9FktHIrbLvRWmYzLowb42IyGi6HQIIT5261cAzWKs9kthZNRiu3wrYbrWU248K4MS4mo-FyChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNL2g6HT7XvV73-90VJpvDaXZdXnaN3-0X_D2nz18xWA5Wq7XC5JY5nGbPHQAAAAAe_v___yEAAAAAIgAAAAAkAAAAACgCKv4tBC4AAAAAMP7___81AD45CN5z9vsDAAAAAAQAAACABAAAAKAEAAAA4OT_________P2aAPvNG5v_____GoAfgwQfgQQgAAOBiyA9xZ40OKKSUqCC4iBEAAADAlpaK5tGkTqgsqv7___utAK4AAAIMC6yzz7J0ByXewgAAAATGFuhh8fvNDrvG73bZ_________7_Z_9k_mtDb6HVaEMvotdovIADA2i8gAACbugEAvAXABV0ArC4gZgcAAABw9____68HQs6Vw7NYjQaDwXIznM2Mm4VvOBwsXKPZaOZyWLZXhD4tBPXFx9iHISyz33dQUE5Pj9llEBVdb4vd4TR77kfRkuVuuVuNJovRaLnc7Iab0WB_AzFYDXAiBsvlZLKY7Faj1Wgz3I1mgwUKxGCCFC1ZLZfL1WazWu1Gi9lgsxxuNkjRqtVstBkMV7PJbLdbDQfD5WiEFC1Z7pa71WiyGI2Wy81uuBkNhghzE49ls7BM1jLXcrMWbSY2t3K18riVs83IZBq5fMvFwi16fUwPk2Wwsk28KBhgsxfJ0yKdiFwzh3GzsFkmzuVstpsMdzOLxWNbLnzLlWOx8VjEEs3JIp3ILvuSc-XwLFajwWCw3AxnM-Nm4RsOBwvXaDaauRyWfW_isWwWlsla5lpu1qLNxOZWrlYet3K2GZlMI5dvuVi4Ra-P6WGyDFa2ib8x260Wm9Vksdg3ZrvVYrOaLBb7Dp3hu_qcjcbJ-ORxaWvPlrdzcxgULoPF-_tcpM1o42ZUacMWi-pa3LkmVqHf7_f7_X6_3-_3bswGj8FgeFm-2sLE-e1ZvtXOxnswKGKJ4CKdCP2Wz8vocpjcCpPN4TS7Li-LWKI0XaQTveDvOX3-isFysFqtFSa3zOE0ey5iieB0kU5EL-Ppov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIAzAJYLIOGSogsMAgAAAAAAUNz48QT6LZ-X0eUwuRUmm8Npdl1eVgaACEtj3vyZINZqtawBAAAEsAEAAAK4dfMWgM3E_____8cBAADIyNEDAACI8xPkYLUc!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=dfrc_vA!nrlc_vB!t45!ufm_vA&mPre=0.033&cirf=https%3A%2F%2Fwww.adfailure.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.adfailure.com/
Content-type: text/plain
Content-Length: 117
Origin: http://www.adfailure.com
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Content-Type: application/json;charset=utf-8
MachineId: 1463
Pragma: no-cache
Cache-Control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: http://www.adfailure.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:20:18 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1675135218.103080,VS0,VE67
Vary: Accept-Encoding
transfer-encoding: chunked
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:10 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 595040
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
trc.taboola.com/horsehead-adfailure/trc/3/json?tim=03%3A20%3A26.671<i=deflated&data=%7B%22id%22%3A176%2C%22ii%22%3A%22%2Fposts%2F109055-ad-fails%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1675082998998%2C%22vi%22%3A1675135226670%2C%22cv%22%3A%2220230130-10-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails%22%2C%22vpi%22%3A%22%2Fposts%2F109055-ad-fails%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A2152%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A1550.699951171875%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F109055-ad-fails%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.65.44200 OK 0 B URL HTTP/2 trc.taboola.com/horsehead-adfailure/trc/3/json?tim=03%3A20%3A26.671<i=deflated&data=%7B%22id%22%3A176%2C%22ii%22%3A%22%2Fposts%2F109055-ad-fails%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1675082998998%2C%22vi%22%3A1675135226670%2C%22cv%22%3A%2220230130-10-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails%22%2C%22vpi%22%3A%22%2Fposts%2F109055-ad-fails%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A2152%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A1550.699951171875%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F109055-ad-fails%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.65.44:0
GET /horsehead-adfailure/trc/3/json?tim=03%3A20%3A26.671<i=deflated&data=%7B%22id%22%3A176%2C%22ii%22%3A%22%2Fposts%2F109055-ad-fails%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1675082998998%2C%22vi%22%3A1675135226670%2C%22cv%22%3A%2220230130-10-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.adfailure.com%2Fposts%2F109055-ad-fails%22%2C%22vpi%22%3A%22%2Fposts%2F109055-ad-fails%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A2152%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A1550.699951171875%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F109055-ad-fails%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Content-Type: text/plain
Origin: http://www.adfailure.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.adfailure.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 03:20:11 GMT
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675135212.784372,VS0,VE198
vary: Accept-Encoding
x-vcl-time-ms: 198
X-Firefox-Spdy: h2
taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
54.236.111.218200 OK 0 B URL HTTP/2 taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
IP 54.236.111.218:0
GET /sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo HTTP/1.1
Host: taboola-supply-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:12 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
54.236.111.218200 OK 0 B URL HTTP/2 taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
IP 54.236.111.218:0
GET /sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo HTTP/1.1
Host: taboola-supply-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:13 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/js/bootstrap.min.js
188.114.98.234200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/js/bootstrap.min.js
IP 188.114.98.234:0
GET /bootstrap/4.0.0-alpha.2/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:10 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/25/2021 08:22:17
cdn-edgestorageid: 756
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: a345528ce49c1eb27b860d1c993c5c61
cdn-cache: HIT
cf-cache-status: HIT
age: 20574902
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 791f4f56bfd0b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/css/bootstrap.min.css
188.114.98.234200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/css/bootstrap.min.css
IP 188.114.98.234:0
GET /bootstrap/4.0.0-alpha.2/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Origin: http://www.adfailure.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:10 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"b00faad199b5b881d17b2cd7fac04a56"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 11/15/2022 10:31:50
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 7c25fbab7c5eecdcc6ea993ecb9e9221
cdn-cache: HIT
cf-cache-status: HIT
age: 2929
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 791f4f56b92db4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
whos.amung.us/swidget/m9bk7sxoa8jz.png
104.22.75.171307 Temporary Redirect 0 B URL HTTP/2 whos.amung.us/swidget/m9bk7sxoa8jz.png
IP 104.22.75.171:0
GET /swidget/m9bk7sxoa8jz.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Tue, 31 Jan 2023 03:20:11 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/00/54.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791f4f5ddb6e0a20-ARN
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=www.adfailure.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=www.adfailure.com
IP 178.250.0.157:0
GET /syncframe?origin=rtus&topUrl=www.adfailure.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.adfailure.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:20:10 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=6fea8b28-3aac-41c5-9e87-d10fd82f5c08; expires=Sun, 25 Feb 2024 03:20:11 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 659611
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2