firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 13 Oct 2022 05:27:32 GMT
Expires: Thu, 13 Oct 2022 05:33:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: za8CPUBkBP2Yr4l7_DKdeKVwuxg-Zo9qwNL_VROrY2R9UC3IbnnNPw==
Age: 3055
grupofiducia.com/panelfiles/iconos/newu/daaum/login.php?cmd=login_submit&id=9630d4229435ce22589a1f9e646f7d179630d4229435ce22589a1f9e646f7d17&session=9630d4229435ce22589a1f9e646f7d179630d4229435ce22589a1f9e646f7d17
34.98.99.30200 OK 2.6 kB URL HTTP/1.1 grupofiducia.com/panelfiles/iconos/newu/daaum/login.php?cmd=login_submit&id=9630d4229435ce22589a1f9e646f7d179630d4229435ce22589a1f9e646f7d17&session=9630d4229435ce22589a1f9e646f7d179630d4229435ce22589a1f9e646f7d17
IP 34.98.99.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c
Analyzer Verdict Alert quad9 Sinkholed
GET /panelfiles/iconos/newu/daaum/login.php?cmd=login_submit&id=9630d4229435ce22589a1f9e646f7d179630d4229435ce22589a1f9e646f7d17&session=9630d4229435ce22589a1f9e646f7d179630d4229435ce22589a1f9e646f7d17 HTTP/1.1
Host: grupofiducia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 13 Oct 2022 06:18:27 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sat, 01 Oct 2022 13:49:33 GMT
ETag: "6338456d-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_gwDkSKBlcJbnLJZrlhC4o9qkV13qqA6IdkTR/kfU7SXk+xiNxNfb20S7GZQDpGoBAV6bEbDA/kUL2LWJxmXYog
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=reseller;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ef1ca48ca7fd21239a2a11fcfc6366b
ee44232c27fb39d25ac901df2247c3ffd2c5bcca
e9bad8be490429a84a567acd710f97a402bcf7b4ba4e47f2bed27cada418c439
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9BAD8BE490429A84A567ACD710F97A402BCF7B4BA4E47F2BED27CADA418C439"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10035
Expires: Thu, 13 Oct 2022 09:05:42 GMT
Date: Thu, 13 Oct 2022 06:18:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bce7a9c1ff7500c4cfad5c3a3581a939
74b8dadf6ead0ce5d1d72e40a2eac554c5f5430c
6c840089371a0e25d60d0d76d6400348b0cdfb5967876c7b88e2b4a2aaf01a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C840089371A0E25D60D0D76D6400348B0CDFB5967876C7B88E2B4A2AAF01A03"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7865
Expires: Thu, 13 Oct 2022 08:29:32 GMT
Date: Thu, 13 Oct 2022 06:18:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8a3tgFYLsQKrVNEOJu0USXeoeWQDH+6/ZnyFSzi6qYgU8VJ5llMU88tB/qt2VHXS0MyoH3nhneA=
x-amz-request-id: BBNVJ1FD1QKAZ9HT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 13 Oct 2022 05:33:38 GMT
age: 2689
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 13 Oct 2022 06:18:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js
23.36.79.16200 OK 58 kB URL HTTP/2 img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65459)
Hash feb46b3c6b7556a8bf123a5e87ffd2b5
aff2efba814012e9fe1586055599069f77e6a062
6f8d46c42987c0d7b471b54065e6b8fd6e965452ccc5c2fcd12f25e5362b5fd7
GET /parking-lander/static/js/main.4e219663.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ePBtPNltighZ03JBS/Xu3LYeSA7F1yzEuIL6FXs/YdArb0qYS2ZncKxSX45UyFn4EY1mPti8L0Y=
x-amz-request-id: Q5Y8PK0VHGD0XQRS
last-modified: Fri, 16 Sep 2022 16:45:04 GMT
etag: "87b518e8e45487e774f8d47f2dc0026f"
x-amz-server-side-encryption: AES256
x-amz-version-id: 2Wom95JLG5jhnN_DEOMzqRfOKsQDbi7Z
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 13 Oct 2023 06:18:27 GMT
date: Thu, 13 Oct 2022 06:18:27 GMT
content-length: 58202
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b45218c3e6c8d13b6c913cc1e7cd903c
dc8c263c7731305b2ecc26fea7fed1e23836c89c
51ca3e057d20fe75012336be49d053f115423fe3960da7cefcf6ad3362dc6214
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c009ebc7f8428a2b42bfded02ce064b
aacd16236c8c8522b789e7f1a719ddd4221e9e09
de21ff625e09b453b11b74ab831ea1ecdc36b84cf3dec26d2074ed097f74bdc3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 13 Oct 2022 06:07:43 GMT
Expires: Thu, 13 Oct 2022 06:54:26 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AKYjK4lngbaV8gtTw1A3NQbhciwhXOwrzN-BnqtMD6PFo8XNdBW5eQ==
Age: 644
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash dcd4808fcd37e391a75fe1761ab0b61b
fb59e6c5415d8ff7a93419eb1af97bce7e54dfbc
44dbbf636342fb4d8f9b472b8ee53de867b70a1324534069e35f2530a26432b8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 13 Oct 2022 06:18:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 13 Oct 2022 02:02:59 GMT
Expires: Fri, 14 Oct 2022 02:02:59 GMT
ETag: "fb59e6c5415d8ff7a93419eb1af97bce7e54dfbc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash dcd4808fcd37e391a75fe1761ab0b61b
fb59e6c5415d8ff7a93419eb1af97bce7e54dfbc
44dbbf636342fb4d8f9b472b8ee53de867b70a1324534069e35f2530a26432b8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 13 Oct 2022 06:18:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 13 Oct 2022 02:02:59 GMT
Expires: Fri, 14 Oct 2022 02:02:59 GMT
ETag: "fb59e6c5415d8ff7a93419eb1af97bce7e54dfbc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63604bda613d148120c491e2f095255f
0fc63ecaff8a0f36dc2a82f3fb187725d0064d69
8478a84e8513fb9afb0d1c369b668bd37ca98943a624ac3a3a69165536bd1748
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5971
Cache-Control: max-age=98872
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:28 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 09:46:20 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
44.193.148.120200 OK 0 B URL HTTP/2 api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
IP 44.193.148.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/parking/landers/grupofiducia.com?trafficTarget=reseller HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-request-id
Referer: http://grupofiducia.com/
Origin: http://grupofiducia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:28 GMT
content-length: 0
set-cookie: AWSALB=42//KIletLy1dlMEoPdtVKTcb1AlUCQ8lQakb6uErp9YcjpnoBUMNS36SH874HJTQpXw46PWjZ8818Zl4O7UcJqRHiVEwYkx6DstSeUdmZtrgDenaEaIAqgwKJCj; Expires=Thu, 20 Oct 2022 06:18:28 GMT; Path=/
AWSALBCORS=42//KIletLy1dlMEoPdtVKTcb1AlUCQ8lQakb6uErp9YcjpnoBUMNS36SH874HJTQpXw46PWjZ8818Zl4O7UcJqRHiVEwYkx6DstSeUdmZtrgDenaEaIAqgwKJCj; Expires=Thu, 20 Oct 2022 06:18:28 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-headers: X-Request-Id
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: http://grupofiducia.com
access-control-max-age: 600
x-request-id: TzA4oQZ1
X-Firefox-Spdy: h2
api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
44.193.148.120200 OK 984 B URL HTTP/2 api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
IP 44.193.148.120:0
File type JSON data\012- , ASCII text, with very long lines (983)
Hash 07a124d3a827b86fd70b15dc9bf8972b
a0657dcef53595ff9c5bf009314ad853ed0745e8
fa4aa55d37f3ddfaef6a176ed3009b16e8a125459f3bd93ba02d92dc349fd927
GET /v1/parking/landers/grupofiducia.com?trafficTarget=reseller HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://grupofiducia.com/
X-Request-Id: bb554d05-d96a-4992-93ad-03f18ae48b93
Origin: http://grupofiducia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:28 GMT
content-type: application/json
content-length: 984
set-cookie: AWSALB=8tr+MSbeckwvuktrh4KeUdjdpwcXeqAj53GNb5M1+eJbjN7NY0DZlVIsLtbrSkyBMX3P74j4fu7kQzxriD2fGCtqHE5smTe5rRqmL10pZ0AnIDVEGwJQnHVCZHb3; Expires=Thu, 20 Oct 2022 06:18:28 GMT; Path=/
AWSALBCORS=8tr+MSbeckwvuktrh4KeUdjdpwcXeqAj53GNb5M1+eJbjN7NY0DZlVIsLtbrSkyBMX3P74j4fu7kQzxriD2fGCtqHE5smTe5rRqmL10pZ0AnIDVEGwJQnHVCZHb3; Expires=Thu, 20 Oct 2022 06:18:28 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: http://grupofiducia.com
access-control-max-age: 600
x-request-id: bb554d05-d96a-4992-93ad-03f18ae48b93
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4qCs2zmbSA9f27wpYnUHvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OoPfI/C7QwVfbhhJYGR+zYHAgo0=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14223
Expires: Thu, 13 Oct 2022 10:15:32 GMT
Date: Thu, 13 Oct 2022 06:18:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14223
Expires: Thu, 13 Oct 2022 10:15:32 GMT
Date: Thu, 13 Oct 2022 06:18:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14223
Expires: Thu, 13 Oct 2022 10:15:32 GMT
Date: Thu, 13 Oct 2022 06:18:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14223
Expires: Thu, 13 Oct 2022 10:15:32 GMT
Date: Thu, 13 Oct 2022 06:18:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b96c25d-8376-4904-bba2-502beb880242.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b96c25d-8376-4904-bba2-502beb880242.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a85ee0d7001d9527c7abfb333208c9f0
23734a158f7461d0b4ec5544043ff72632a3eecc
24a3a7eecb18969e16bf594a679daa7b4a861d1de2722e6b9d69c779dc87bf67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b96c25d-8376-4904-bba2-502beb880242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7955
x-amzn-requestid: 17c19d33-1d7a-4e56-b02c-c2a329088a01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z6Tu9GWKoAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347332c-345daca622ed275709163780;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: stVsG5KvEl9D_Ea2ojgLgORCY_uX0t-I0fpu6ZcrIoKlf8cw49fxiA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:43:09 GMT
age: 30920
etag: "23734a158f7461d0b4ec5544043ff72632a3eecc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F361e133b-0ee8-42b7-a7c7-5ab614129c60.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F361e133b-0ee8-42b7-a7c7-5ab614129c60.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4c15725695f4839bda11b91e489ef21
52ddb865aad8ff9c35e1b6bffbc0f6d204f372f0
631337ea4e7521ddaabfb2b518c0912b8b9632ecd87ff50a6ccac50d2bacd77e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F361e133b-0ee8-42b7-a7c7-5ab614129c60.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12416
x-amzn-requestid: 3be8f219-76c2-4dfb-8075-443b8e24ba58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxMaDEPKoAMFdKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63438dd9-2bf219f64cf1404271f8e801;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 03:13:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CZePt4Co0GjCRiri6MlRflxJTY_9I1yfZRAQLv2VhXHW8DZHV2de2w==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 03:42:03 GMT
age: 9386
etag: "52ddb865aad8ff9c35e1b6bffbc0f6d204f372f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F482fed3a-a0d0-4662-8637-e1ff7fe447dd.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F482fed3a-a0d0-4662-8637-e1ff7fe447dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d775aeb34ad7a7c69d8221e972fdd78a
0e5b7a38547d34811110436908f1e99ddab925b7
fdbf70e939e3b6c1b141a3a824e442d08d473da9de72eeee8988b51276dcaedd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F482fed3a-a0d0-4662-8637-e1ff7fe447dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11531
x-amzn-requestid: 29b4b1c2-a531-4c4b-b116-096478107324
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zt6HxFSaoAMF7UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63423d64-62af898434029b78565e1d72;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 03:17:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uSBwuTLWaNc69LO-VpnzCZhv1upWsxgynWyKxTmGXipjfV9lbXOJjQ==
via: 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:47:24 GMT
age: 30665
etag: "0e5b7a38547d34811110436908f1e99ddab925b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb0068dd-34a7-4326-acdd-a3accfc29e78.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb0068dd-34a7-4326-acdd-a3accfc29e78.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f677dc36d6497c337e2f02e3947e5429
df79f2c67dd8269b12de6a21084552ea26918638
61f5120343b965a7b46eb673ec8aa14a85e7758e526ef413989340ea8f8b8443
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb0068dd-34a7-4326-acdd-a3accfc29e78.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10269
x-amzn-requestid: 6016b2ca-5838-4e12-a607-f55237bc2454
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z6Tu8FsVIAMFcIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347332c-678ab7fb47abc36e014af0ab;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GDwJKOd-1pYeqWi2J0wYOLvgKlqs-LVlkMznTYBGfbfkS2ChcVnNhA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:43:09 GMT
age: 30920
etag: "df79f2c67dd8269b12de6a21084552ea26918638"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5e4230-8a2e-4b3f-9715-0b8e37731446.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5e4230-8a2e-4b3f-9715-0b8e37731446.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc1cec286dd64514d2863d296be2a291
c71c23851d298fb5271dfceff7b5034dabc68653
18e3aff4077f966ba9d851a84137b2913e78dacaaceec91b2ebd15115a7e2886
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5e4230-8a2e-4b3f-9715-0b8e37731446.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10403
x-amzn-requestid: b791bd84-2750-44c9-90e1-e2489737a344
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z0WFoEjnIAMFV0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344d08a-43345eaf7dee15b052a5adca;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 02:10:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MiWRqSt38ls48siADU8bxz3-Cd4KOyWGo-1j7_h3qz3092al1hOaKg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 10:49:01 GMT
age: 70168
etag: "c71c23851d298fb5271dfceff7b5034dabc68653"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bea519-c09f-4e75-bd61-39e42d07313a.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bea519-c09f-4e75-bd61-39e42d07313a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f9ed9e6cb4b9a3e0a23d2d0bbb2e8097
58e3e5e00a84e054efcb4c845ba677d0424160c9
bb3e57e303782369ff08ae3a3d5fe7810ed5d3bf076c547581525fce3ea1b9e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bea519-c09f-4e75-bd61-39e42d07313a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4903
x-amzn-requestid: 92ac3c98-2a85-4006-9fac-15e352319ebc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zt6REGJ0oAMFQog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63423da0-2dd5b46763a69e6d60d531d5;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 03:18:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iVbTMRds9O3AkqrS6PBXbqrqP3nTQNN_xsDKfgUlvs0pOfCIxatSIw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:52:21 GMT
age: 30368
etag: "58e3e5e00a84e054efcb4c845ba677d0424160c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
104.110.14.92200 OK 34 kB URL HTTP/1.1 www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
IP 104.110.14.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22289)
Hash 56e7cdae6a6fce9ada28e1d412389c89
592151a5a97a0685ff38b6dcd30bd93657f5025c
da3435bb9098dd6d60d936ad0f433d76f6cac22cf4adaaff83c317117a621377
GET /?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.15.8.2
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15724800; includeSubDomains
x-powered-by: Slay
Content-Encoding: gzip
X-Akamai-Transformed: 9 35104 0 pmb=mTOE,1
Expires: Thu, 13 Oct 2022 06:18:30 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 13 Oct 2022 06:18:30 GMT
Content-Length: 34238
Connection: keep-alive
Set-Cookie: market=en-US; Max-Age=31536000; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:30 GMT; Secure; SameSite=None
currency=USD; Max-Age=31536000; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:30 GMT; Secure; SameSite=None
_abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFwv7oamDAQAA4JH+zwiq0WgrCPjbppBBk1Kov7lbe5siNZuSrIH5E3SKvEy+IcGsRNG+h6xkpHgvRnm/hKtaJQ5mYF2wJkXKe197Gqt+qJ4ObmTm9d6KJtg/x22Lpr9Ed++7oWhvDY4bIqyouFD1rvFosV0nZpE916fONSNmNExYB05OvH3HcLMZUQNC6LPamBWfIS3tusioES1kLP0QdlZeNU0Uvr3jwaTMULiKCbECP23j8VFKd9rJOYR38psAhxwlnDHyo+CeYUNd6YGfmI8dmVLj+QLgLhX30oNh4XbJUQMcBLQF5OVOVnRQOFUiVsV6EvEWz3YIrzu383q/NX/SOdWOuVKaBDgJen0CDof6zXf70gHYlxLs634=~-1~-1~-1; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:30 GMT; Max-Age=31536000; Secure
ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; Domain=.secureserver.net; Path=/; Expires=Thu, 13 Oct 2022 08:18:28 GMT; Max-Age=7198; HttpOnly
bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; Domain=.secureserver.net; Path=/; Expires=Thu, 13 Oct 2022 10:18:28 GMT; Max-Age=14398
X-ARC: 101
www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
104.110.14.92200 OK 74 kB URL HTTP/1.1 www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
IP 104.110.14.92:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 79b418979a90751e784f94e0782709c1
a0ff7accc34f6241b6d8fd1639a610849c4cd219
7014068c829036bfd9c3f0d1f1062d08ff6dea71d0036d418088f1f5d7347879
GET /668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFwv7oamDAQAA4JH+zwiq0WgrCPjbppBBk1Kov7lbe5siNZuSrIH5E3SKvEy+IcGsRNG+h6xkpHgvRnm/hKtaJQ5mYF2wJkXKe197Gqt+qJ4ObmTm9d6KJtg/x22Lpr9Ed++7oWhvDY4bIqyouFD1rvFosV0nZpE916fONSNmNExYB05OvH3HcLMZUQNC6LPamBWfIS3tusioES1kLP0QdlZeNU0Uvr3jwaTMULiKCbECP23j8VFKd9rJOYR38psAhxwlnDHyo+CeYUNd6YGfmI8dmVLj+QLgLhX30oNh4XbJUQMcBLQF5OVOVnRQOFUiVsV6EvEWz3YIrzu383q/NX/SOdWOuVKaBDgJen0CDof6zXf70gHYlxLs634=~-1~-1~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Tue, 13 Sep 2022 17:56:24 GMT
ETag: "49609495194dddb789ecd77257a616988c81260b93edb4480f8c7a14a99a43af"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 73501
Date: Thu, 13 Oct 2022 06:18:30 GMT
Connection: keep-alive
Cache-Control: max-age=21600
X-ARC: 101
Set-Cookie: _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFw77oamDAQAAKJL+zwh00yJmuQtbgYv/s7kGd/qE57e0KFkXWyiKlsVZoLUG2RCHVC98gKwtr9CbjhTy/qLsxkqvBS4JgE4/VafdviI25AZMw7xerRjDdH+tk5gtN/NnLs+LgJxW4bFp0EhFcpNlXmDCY6J4PYg6jylEy4T759DnBHOBMxj/7kL5nU0+yMKI3hO9mQfd1Z9iJ4T7CLqRnib2SIJRLpIp3NKy5CrppgVALPkXN+qCvMNIqFeI0kPJGqPPA7wjrblUG2Hk2RfVUGNe2nThjwnUdd7fLuvzN7ILeYNEw0W409yx4qeFlLc0NjxfyZcthBqN18ET3wbpmuerkPR/fsbwjDYwHN4cKZjSN+ou/xfuOezQscXCqKneQIe4UUSFRC6zNA==~-1~-1~-1; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:30 GMT; Max-Age=31536000; Secure
img1.wsimg.com/storefront/static/scripts/runtime.a8972dcb.js
23.36.79.16200 OK 1.8 kB URL HTTP/2 img1.wsimg.com/storefront/static/scripts/runtime.a8972dcb.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash 018ee16c154efd3b93a7ec1392c394db
96523298515ab354e95fd27897384b8bacf881fa
b0fcdf55753a39734b6c3986305d453803f71cd0427e1778731af21debf423f7
GET /storefront/static/scripts/runtime.a8972dcb.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"18a4-183a239f1d0"
content-encoding: gzip
date: Thu, 13 Oct 2022 06:18:30 GMT
content-length: 1778
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/storefront/static/stylesheets/styles.db302429.css
23.36.79.16200 OK 2.9 kB URL HTTP/2 img1.wsimg.com/storefront/static/stylesheets/styles.db302429.css
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (10729)
Hash 0326074b98cbff8839d74327bac3143c
3308006ed933b86de64375277ae05a702b2b97f9
6329eb4e76c85d862f5b19b9e40de8d18c22f3326366cb993c4c691ab7235341
GET /storefront/static/stylesheets/styles.db302429.css HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"2a18-183a239f1d0"
content-encoding: gzip
date: Thu, 13 Oct 2022 06:18:30 GMT
content-length: 2916
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/4a8724cdbaf08af82263938abc8525e4/uxcore2.min.css
23.36.79.16200 OK 25 kB URL HTTP/2 img6.wsimg.com/wrhs/4a8724cdbaf08af82263938abc8525e4/uxcore2.min.css
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash c04aa31be35d824a202cbce8994c6384
cddd331b79deedb60a0a041b30267eeac37f5d4f
ff295cc60274cd3725fc15a1c3b3fdf3b7178627c18a7a7db04bb0e6d4b72f07
GET /wrhs/4a8724cdbaf08af82263938abc8525e4/uxcore2.min.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "0efbb57a28f3f55f7da44b7274ac8bce"
last-modified: Mon, 22 Aug 2022 19:57:59 GMT
vary: Accept-Encoding
x-amz-id-2: CAlxtFIBew2+vJH+BSxf/3YjDzAIXDEDoqmAmO/EyXQqyHmLlvSb4wS5dHllmTgOwJwaZxz2iTk=
x-amz-request-id: 458WDKF157T1KT1T
x-amz-server-side-encryption: AES256
x-amz-version-id: vS.FJEe_wRSRKX5XUWRxsggRWUTkPGx3
content-length: 25284
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/storefront/static/scripts/main.db302429.js
23.36.79.16200 OK 42 kB URL HTTP/2 img1.wsimg.com/storefront/static/scripts/main.db302429.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (3727)
Hash 36be54fd1dbf9acad7a77e54bf26fdc3
73998b65c42b99bce8470f86a393827c1c253f51
aacaa900e5da54e9cfa6574e095f51b8410e51193e3769f94109839868dc65a0
GET /storefront/static/scripts/main.db302429.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"37f0c-183a239f1d0"
content-encoding: gzip
date: Thu, 13 Oct 2022 06:18:30 GMT
content-length: 41999
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/82e1c1e66ca2a3ae2d0f7070ff70aae7/uxcore2.min.js
23.36.79.16200 OK 22 kB URL HTTP/2 img6.wsimg.com/wrhs/82e1c1e66ca2a3ae2d0f7070ff70aae7/uxcore2.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9ec5894f37d0e244899b7a7d9ebc0cf9
bb90e0ce4f693fcabb9934ecb982ade9e6fffa91
1d5dd41527e975e91f7ae30addc59cf00fb13e36def2e4d4d24a70ac712bf333
GET /wrhs/82e1c1e66ca2a3ae2d0f7070ff70aae7/uxcore2.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "82e1c1e66ca2a3ae2d0f7070ff70aae7"
last-modified: Mon, 22 Aug 2022 19:21:33 GMT
vary: Accept-Encoding
x-amz-id-2: sGVMuK0+xO1MR0XwAM1Wof3icjzJUvzSXH9+y0fw1klJLVOa3PhCJfHx+kiuvwJXlmWYi92kZRY=
x-amz-request-id: Y2GDHTTXJ111NJ32
x-amz-server-side-encryption: AES256
x-amz-version-id: 2c_7MLkC82cFBEYX0YPAdHtrit9Ozl0v
content-length: 21609
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js
23.36.79.16200 OK 1.1 kB URL HTTP/2 img6.wsimg.com/wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2513)
Hash 9952df62c7de1874228d188a98340128
87736ead3b422d0f5ff3a828651c706a30346509
be2911a7ec305f60395806ad4d345b639a93710dd727145290e030c611ac6f4f
GET /wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "0a3c9ed73591ea11f77b51a04edf210f"
last-modified: Wed, 18 May 2022 22:47:51 GMT
vary: Accept-Encoding
x-amz-id-2: aMj8TiOe9ZHkHMBl7+D79Tk3urszUftxyUUNMsLqvBtzMzzkAkH8Sdx2jGZRMPP5wryKOL4z/Uw=
x-amz-request-id: TQF2MMDRR7Y3E189
x-amz-server-side-encryption: AES256
x-amz-version-id: FzRQzzocPGwGQeIpdbfTJTNFUZkhGnos
content-length: 1060
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/204fd49e3c1776f788dd66cc6b9fdc27/salesheader.min.js
23.36.79.16200 OK 62 kB URL HTTP/2 img6.wsimg.com/wrhs/204fd49e3c1776f788dd66cc6b9fdc27/salesheader.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (4324)
Hash 967334a6b18e763aa64c220006ca5c7e
a81215f41cb595e69ebc3fb72580b0dd99aa7673
b28acb17e94fbeaf232663dd895b73eb41a0b81fb6d99eb9ce60928c7893208e
GET /wrhs/204fd49e3c1776f788dd66cc6b9fdc27/salesheader.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "204fd49e3c1776f788dd66cc6b9fdc27"
last-modified: Thu, 06 Oct 2022 17:00:31 GMT
vary: Accept-Encoding
x-amz-id-2: cjiUrvCon4Nt6QVT4I0Q/JquAL/7nXeffgOzUtCAcEp64NHyx5Crt3ZIsSS5BoAwsEfCKMu+rME=
x-amz-request-id: GVJ0T764XAMZYKH0
x-amz-server-side-encryption: AES256
x-amz-version-id: I91_xMsuAtvbyvqG5ZLiptjgomCvEPDa
content-length: 62332
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/storefront/static/scripts/vendors~main.9bc9eb16.js
23.36.79.16200 OK 221 kB URL HTTP/2 img1.wsimg.com/storefront/static/scripts/vendors~main.9bc9eb16.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (804), with CRLF, LF line terminators
Size 221 kB (221025 bytes)
Hash 5475f86f546ce09a8a0edf26c836530e
947a9300d5733403793651ab80f43591db35f4c5
e0711736adac9047242d9dd800147c77b64c314972958970bd219a5c841e877f
GET /storefront/static/scripts/vendors~main.9bc9eb16.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"ec0f0-183a239f1d0"
content-encoding: gzip
date: Thu, 13 Oct 2022 06:18:30 GMT
content-length: 221025
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/44d932388379ed069764c5750d8799fe/tcc.min.js
23.36.79.16200 OK 27 kB URL HTTP/2 img6.wsimg.com/wrhs/44d932388379ed069764c5750d8799fe/tcc.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash dd0c683c8d5b3e380a27f6969a050125
dc9187b3640cd2f95102ffd73b749bf3777e8f66
13e88d30bab1891aa663af57958f19985539a453c65020e16955cedc2447aff1
GET /wrhs/44d932388379ed069764c5750d8799fe/tcc.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "44d932388379ed069764c5750d8799fe"
last-modified: Thu, 06 Oct 2022 02:34:14 GMT
vary: Accept-Encoding
x-amz-id-2: MH19aTjn2pzF2GTT6iWVncVRVZG9hQQVG4ZSbr17xjT97CEynoT20Fq7ds1cF5z105dr9kAx/5c=
x-amz-request-id: H19QZEBBT3TMF6KC
x-amz-server-side-encryption: AES256
x-amz-version-id: SWJkKvYpxB1QWWYgeSvVgp_G3zLUb1Zz
content-length: 26759
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/75419c3c9326d8f545cf8041e464cb68/salesheader.min.css
23.36.79.16200 OK 16 kB URL HTTP/2 img6.wsimg.com/wrhs/75419c3c9326d8f545cf8041e464cb68/salesheader.min.css
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ca6f68ab8dda1c1b70ebd4378bf46c6f
4e81ebb06d296a2bf4bf3903bb32e1fee873d6d7
7f573fb09f19d25fb352271cc13e89493ad3b6b63595444816d06655e46f6d07
GET /wrhs/75419c3c9326d8f545cf8041e464cb68/salesheader.min.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "e1142544fa546cea37581b206911196d"
last-modified: Thu, 06 Oct 2022 16:46:47 GMT
vary: Accept-Encoding
x-amz-id-2: HGuChvqeYJ6z36vMkGFHtl2H7QQq5MU69Xz5HA86c1bSUTle+ep+gs7Hh13bBy9H5eeIoK6A2o4=
x-amz-request-id: YMTZ5ZQB8ZME90SC
x-amz-server-side-encryption: AES256
x-amz-version-id: VYOpMEWFIcX9.jZbhkuDc4ATpb93rvRx
content-length: 16442
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated
23.36.79.16200 OK 94 B URL HTTP/2 img6.wsimg.com/poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash eb8b0ba88b3acfb11ea81d5c02be9108
4b7f14cc2db25abdbe25472934b7469b2488f9d4
7237f15a97fe102c6ed13eadc0f7980da03cd06a20dfb7c7b8050e60dada617d
GET /poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-methods: GET,HEAD,OPTIONS
content-type: text/javascript; charset=utf-8
accept-ranges: bytes
last-modified: Wed, 07 Sep 2022 11:53:13 GMT
content-encoding: br
useragent_normaliser: firefox/96.0.0
cache-control: public, max-age=172800, s-maxage=31536000
expires: Sat, 15 Oct 2022 06:18:30 GMT
date: Thu, 13 Oct 2022 06:18:30 GMT
content-length: 94
server-timing: cdn-cache; desc=HIT, edge; dur=1, PASS, fastly;desc="Edge time";dur=191, cache-osl6532
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/1ebd0d871fdb8f4db4f47056fc422311/vendor.min.js
23.36.79.16200 OK 80 kB URL HTTP/2 img6.wsimg.com/wrhs/1ebd0d871fdb8f4db4f47056fc422311/vendor.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65472)
Hash 6ce9741e2e98fd39ff68ad4ecf02c533
9bff607437de7cd76c9c94006df3e62d801680e8
881a79b7f681bd1e9c1317300cbe29a0cb9f537d6da6115c4b7cc6ef7d25d8a2
GET /wrhs/1ebd0d871fdb8f4db4f47056fc422311/vendor.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "1ebd0d871fdb8f4db4f47056fc422311"
last-modified: Mon, 22 Aug 2022 19:23:03 GMT
vary: Accept-Encoding
x-amz-id-2: OGTAyuGuFsp0Azc/J70rhE+RvIrfAChRWK6YuZPySNm9DeImQ4d8o7Dh269jM0auyNHlYAY0Mhk=
x-amz-request-id: VXZ2AD17ETBENFDQ
x-amz-server-side-encryption: AES256
x-amz-version-id: 3XW0ZWutZ5r5VPSV0nOh.JW7bG1HlJ50
content-length: 80239
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
23.36.79.16200 OK 7.5 kB URL HTTP/2 img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (24676)
Hash b8a5a228a358454084c34dd1cf431c61
37aa5fe6e083b8147156ca66a1993a7bd74e8a61
06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1dc3d11c376bcea0f0666725430177f7
10fbfa3d331cbf0b786fd3e0d1003700f300dd88
09db61756115b127336bf1ba803d03fff5b9c4c7ac55df221a0fb174b483761d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-115508484-1&l=_analyticsDataLayer
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-115508484-1&l=_analyticsDataLayer
IP 142.250.74.168:0
File type ASCII text, with very long lines (1952)
Hash cd5adb7c4453391740fc468ca51b2b33
dfad1079b865e5c90049a24fba0899996433796e
30dbabe937f2b23b28408659be0248c91e66700cc7d287b5c650ca7843a8eda2
GET /gtag/js?id=UA-115508484-1&l=_analyticsDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 13 Oct 2022 06:18:31 GMT
expires: Thu, 13 Oct 2022 06:18:31 GMT
cache-control: private, max-age=900
last-modified: Thu, 13 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42412
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1dc3d11c376bcea0f0666725430177f7
10fbfa3d331cbf0b786fd3e0d1003700f300dd88
09db61756115b127336bf1ba803d03fff5b9c4c7ac55df221a0fb174b483761d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img6.wsimg.com/wrhs/a7c429a13478ffbcddb347fca608a88a/vendors~browser-deprecation-banner.header-chunk.min.js
23.36.79.16200 OK 6.7 kB URL HTTP/2 img6.wsimg.com/wrhs/a7c429a13478ffbcddb347fca608a88a/vendors~browser-deprecation-banner.header-chunk.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7702)
Hash 6bd112a3311a17922d57100509902040
d12c47c9033d9ece4e0a78c73a6349dc8e466705
340afe2a7bf8e44b5313de209722dd1e2cd91540f20affe35893094fcb78ff05
GET /wrhs/a7c429a13478ffbcddb347fca608a88a/vendors~browser-deprecation-banner.header-chunk.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a7c429a13478ffbcddb347fca608a88a"
last-modified: Wed, 10 Aug 2022 17:10:24 GMT
vary: Accept-Encoding
x-amz-id-2: /BVnSTnZHDXSOLEui7G+RAQHPGaQyx5t2ylDDI/ItnkvinlUoaUa9A3N0dh3lqUAMDHxDvR8ENYxvlAUm7unbQ==
x-amz-request-id: BNSBY9CT087GE9VR
x-amz-server-side-encryption: AES256
x-amz-version-id: WRCH5zC50IeYVnUxyBc1_gXQ2FqMJ9R3
content-length: 6708
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
events.api.secureserver.net/image.aspx?referrer=http%3A%2F%2Fgrupofiducia.com%2F&consentModeStatus=false×tamp=1665641911064&corrid=905687916¤cy=USD&marketid=en-US&vs=visible&rand=1598725042&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8&hit_id=f11487a6-0154-51e0-8e31-4f169448dd38&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc
104.84.152.186200 OK 43 B URL HTTP/2 events.api.secureserver.net/image.aspx?referrer=http%3A%2F%2Fgrupofiducia.com%2F&consentModeStatus=false×tamp=1665641911064&corrid=905687916¤cy=USD&marketid=en-US&vs=visible&rand=1598725042&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8&hit_id=f11487a6-0154-51e0-8e31-4f169448dd38&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc
IP 104.84.152.186:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /image.aspx?referrer=http%3A%2F%2Fgrupofiducia.com%2F&consentModeStatus=false×tamp=1665641911064&corrid=905687916¤cy=USD&marketid=en-US&vs=visible&rand=1598725042&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8&hit_id=f11487a6-0154-51e0-8e31-4f169448dd38&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFw77oamDAQAAKJL+zwh00yJmuQtbgYv/s7kGd/qE57e0KFkXWyiKlsVZoLUG2RCHVC98gKwtr9CbjhTy/qLsxkqvBS4JgE4/VafdviI25AZMw7xerRjDdH+tk5gtN/NnLs+LgJxW4bFp0EhFcpNlXmDCY6J4PYg6jylEy4T759DnBHOBMxj/7kL5nU0+yMKI3hO9mQfd1Z9iJ4T7CLqRnib2SIJRLpIp3NKy5CrppgVALPkXN+qCvMNIqFeI0kPJGqPPA7wjrblUG2Hk2RfVUGNe2nThjwnUdd7fLuvzN7ILeYNEw0W409yx4qeFlLc0NjxfyZcthBqN18ET3wbpmuerkPR/fsbwjDYwHN4cKZjSN+ou/xfuOezQscXCqKneQIe4UUSFRC6zNA==~-1~-1~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; fb_sessiontraffic=S_TOUCH=&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=&pc=0; visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 13 Oct 2022 06:18:31 GMT
set-cookie: tcc_refer=; domain=.secureserver.net; expires=Wed, 12 Oct 2022 06:18:31 GMT; path=/;
fb_sessiontraffic=S_TOUCH=10/13/2022%2006:18:31.301&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=10/12/2022%2023:18:31.300&pc=1; max-age=1200; domain=.secureserver.net; path=/;
pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; max-age=1200; domain=.secureserver.net; path=/;
isc=PLPPT02003; domain=.secureserver.net; path=/;
visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f; max-age=31536000; domain=.secureserver.net; expires=Fri, 13 Oct 2023 06:18:31 GMT; path=/;
traffic=; domain=.secureserver.net; path=/;
X-Firefox-Spdy: h2
events.api.secureserver.net/pageEvents.aspx?timestamp=1665641911219&corrid=905687916&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=2053260593&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Cwww.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22isc%22%3A%22PLPPT02003%22%2C%22ci%22%3A%2281494%22%2C%22prog_id%22%3A%22457669%22%2C%22domain%22%3A%22grupofiducia.com%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-10-13T06%3A18%3A31.220Z&eventtype=impression&type=&eventid=&eventclass=&absolutex=0&absolutey=0&relativex=0&relativey=0&e_id=uxp.hyd.int.salesheader.sales.impression&hit_id=4afbae59-1fd8-543c-9b71-102d0a5cfc12&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8
104.84.152.186200 OK 43 B URL HTTP/2 events.api.secureserver.net/pageEvents.aspx?timestamp=1665641911219&corrid=905687916&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=2053260593&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Cwww.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22isc%22%3A%22PLPPT02003%22%2C%22ci%22%3A%2281494%22%2C%22prog_id%22%3A%22457669%22%2C%22domain%22%3A%22grupofiducia.com%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-10-13T06%3A18%3A31.220Z&eventtype=impression&type=&eventid=&eventclass=&absolutex=0&absolutey=0&relativex=0&relativey=0&e_id=uxp.hyd.int.salesheader.sales.impression&hit_id=4afbae59-1fd8-543c-9b71-102d0a5cfc12&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8
IP 104.84.152.186:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pageEvents.aspx?timestamp=1665641911219&corrid=905687916&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=2053260593&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Cwww.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22isc%22%3A%22PLPPT02003%22%2C%22ci%22%3A%2281494%22%2C%22prog_id%22%3A%22457669%22%2C%22domain%22%3A%22grupofiducia.com%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-10-13T06%3A18%3A31.220Z&eventtype=impression&type=&eventid=&eventclass=&absolutex=0&absolutey=0&relativex=0&relativey=0&e_id=uxp.hyd.int.salesheader.sales.impression&hit_id=4afbae59-1fd8-543c-9b71-102d0a5cfc12&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8 HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFw77oamDAQAAKJL+zwh00yJmuQtbgYv/s7kGd/qE57e0KFkXWyiKlsVZoLUG2RCHVC98gKwtr9CbjhTy/qLsxkqvBS4JgE4/VafdviI25AZMw7xerRjDdH+tk5gtN/NnLs+LgJxW4bFp0EhFcpNlXmDCY6J4PYg6jylEy4T759DnBHOBMxj/7kL5nU0+yMKI3hO9mQfd1Z9iJ4T7CLqRnib2SIJRLpIp3NKy5CrppgVALPkXN+qCvMNIqFeI0kPJGqPPA7wjrblUG2Hk2RfVUGNe2nThjwnUdd7fLuvzN7ILeYNEw0W409yx4qeFlLc0NjxfyZcthBqN18ET3wbpmuerkPR/fsbwjDYwHN4cKZjSN+ou/xfuOezQscXCqKneQIe4UUSFRC6zNA==~-1~-1~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; fb_sessiontraffic=S_TOUCH=&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=&pc=0; visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 13 Oct 2022 06:18:31 GMT
X-Firefox-Spdy: h2
www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
104.110.14.92201 Created 18 B URL HTTP/1.1 www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
IP 104.110.14.92:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2520
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFw77oamDAQAAKJL+zwh00yJmuQtbgYv/s7kGd/qE57e0KFkXWyiKlsVZoLUG2RCHVC98gKwtr9CbjhTy/qLsxkqvBS4JgE4/VafdviI25AZMw7xerRjDdH+tk5gtN/NnLs+LgJxW4bFp0EhFcpNlXmDCY6J4PYg6jylEy4T759DnBHOBMxj/7kL5nU0+yMKI3hO9mQfd1Z9iJ4T7CLqRnib2SIJRLpIp3NKy5CrppgVALPkXN+qCvMNIqFeI0kPJGqPPA7wjrblUG2Hk2RfVUGNe2nThjwnUdd7fLuvzN7ILeYNEw0W409yx4qeFlLc0NjxfyZcthBqN18ET3wbpmuerkPR/fsbwjDYwHN4cKZjSN+ou/xfuOezQscXCqKneQIe4UUSFRC6zNA==~-1~-1~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
x_req_id: fa1f75bc-9d54-458b-a9e4-c9a8b6719e7c
Date: Thu, 13 Oct 2022 06:18:31 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.secureserver.net
Access-Control-Allow-Headers: Content-Type
X-ARC: 101
Set-Cookie: _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFxT7oamDAQAAwJT+zwgGjwD/2tZLGpyn5aU46RVVKHKZRVdkOK5Ew7ht4ElRjwzSbCAFLF97RVmm7OpvkYDLlR7KmYghv5mwTJzkn4tnp/D2n0A1/sR7ezymWvlMrnsmesvnxBQNBIqPFIft6l3IHMQjzK7d+qCG2bbhoy1nYtX6YR1pKxPUyvdD1U8bTlH+6DvTLo3QnVB/BYn+5x6k72EGb9wN/u6LJcP7irdlPJ6G0eML9m8gfloCoWyJCqwoZeum8EqaeU4mBQdPJWjTuT40MA83ZXhBOHuTUt8i5/qutT70UnRzSjUtu93iPsf0Y45gslLk4NMaDzkWzwz0+2ZUQPMjn33Y4unmP0fM1vymLtJ5gZYIvsIx9a2KIdQsU/wrwAJX1yu+Ew==~-1~||1-lLEnHataDY-1-10-1000-2||~-1; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:31 GMT; Max-Age=31536000; Secure
img6.wsimg.com/wrhs/a974b6af96b916742bfee8b383f17355/consent-main.js
23.36.79.16200 OK 20 kB URL HTTP/2 img6.wsimg.com/wrhs/a974b6af96b916742bfee8b383f17355/consent-main.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 72ccd10ae3a0b739f3d3ce70d3848adf
9b9da429cd3ad70945da63f407ccc4e53d9c71da
2b42e98bc66802e5dadd45f250e2913f673bd4f9c1d3fa8464df0c5499b53d33
GET /wrhs/a974b6af96b916742bfee8b383f17355/consent-main.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a974b6af96b916742bfee8b383f17355"
last-modified: Tue, 13 Sep 2022 17:51:04 GMT
vary: Accept-Encoding
x-amz-id-2: dyI0475fhoQzv/1S1NM7OLP+7xp2lhuwmAhNCG4dBZc4LnYZKUTuutAZGftI/uTvg4WK+3nezdI=
x-amz-request-id: Q6VEJ7XB6WMBK2ED
x-amz-server-side-encryption: AES256
x-amz-version-id: WyuMQf.UQe7b4Scwfbap0YIXQVjkLgKs
content-length: 19723
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/995ded305b294ab5fd9678b5b984aa02/consent-main.css
23.36.79.16200 OK 33 kB URL HTTP/2 img6.wsimg.com/wrhs/995ded305b294ab5fd9678b5b984aa02/consent-main.css
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (19508)
Hash 19658382d98c54e41cc765f338e3dda9
4d099566fcc2004a60fba0fc92cf6f51d0b7a4c4
20cd881c086f921cd14a6565fa73c2ee649d2ced14f5fd0c076b3bc46cbd1e0c
GET /wrhs/995ded305b294ab5fd9678b5b984aa02/consent-main.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "995ded305b294ab5fd9678b5b984aa02"
last-modified: Tue, 06 Sep 2022 22:32:26 GMT
vary: Accept-Encoding
x-amz-id-2: wikI0VW/DqigHNdaM5V7P0xwPzniivA42HQoQv5JIuOAJExw2bqcDzqe0kc3oKiu72jtR2ugYIc=
x-amz-request-id: M7RBT8A5JC3GDJW4
x-amz-server-side-encryption: AES256
x-amz-version-id: dp.grz_7vGeYKwKZK7xycnHa31_5aXE2
content-length: 33193
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/utag/utag.min.js
23.36.79.16200 OK 71 kB URL HTTP/2 img6.wsimg.com/utag/utag.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (33080)
Hash ded3fd1d5dc4641262ef98121d550a83
f03bba32d28cea9d549d3ea7a163beffb3d9c5c0
0d0fc4ed1a5d4077d7e96febc6f44b0accb6a7a1fb657c509d6199007b977c4f
GET /utag/utag.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 5trjqRMOjhWafz6gI/fOh7vlT6B2nOIKXHluhGblR6jcDwNkEqXCJT+U/Uga3aYvlvXTfdiSOMM=
x-amz-request-id: E935SX6PC8EM9EH5
last-modified: Tue, 11 Oct 2022 08:41:26 GMT
etag: "52fc764ef5a37a692913afb3f47d0a6f"
x-amz-server-side-encryption: AES256
x-amz-version-id: T9aSF9u49qGzWOWSXeizXjV0LA3JsBn3
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 70701
cache-control: max-age=900
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=27
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
events.api.secureserver.net/b.aspx?timestamp=1665641911517&corrid=905687916&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=1948169198&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.log&eventdate=2022-10-13T06%3A18%3A31.517Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1665641908454&connectStart=1665641908442&domComplete=1665641911034&domContentLoadedEventEnd=1665641911029&domContentLoadedEventStart=1665641911028&domInteractive=1665641911023&domLoading=1665641910690&domainLookupEnd=1665641908442&domainLookupStart=1665641908392&fetchStart=1665641908371&navigationStart=1665641908371&requestStart=1665641908454&responseEnd=1665641910683&responseStart=1665641910680&loadEventStart=1665641911034&loadEventEnd=1665641911035&transferSize=36576&encodedBodySize=34238&decodedBodySize=153860&navigationType=navigate&fcp=2637&hit_id=48d0ce7d-8951-5dd0-808a-83e2fbe7c140&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8
104.84.152.186200 OK 43 B URL HTTP/2 events.api.secureserver.net/b.aspx?timestamp=1665641911517&corrid=905687916&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=1948169198&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.log&eventdate=2022-10-13T06%3A18%3A31.517Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1665641908454&connectStart=1665641908442&domComplete=1665641911034&domContentLoadedEventEnd=1665641911029&domContentLoadedEventStart=1665641911028&domInteractive=1665641911023&domLoading=1665641910690&domainLookupEnd=1665641908442&domainLookupStart=1665641908392&fetchStart=1665641908371&navigationStart=1665641908371&requestStart=1665641908454&responseEnd=1665641910683&responseStart=1665641910680&loadEventStart=1665641911034&loadEventEnd=1665641911035&transferSize=36576&encodedBodySize=34238&decodedBodySize=153860&navigationType=navigate&fcp=2637&hit_id=48d0ce7d-8951-5dd0-808a-83e2fbe7c140&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8
IP 104.84.152.186:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /b.aspx?timestamp=1665641911517&corrid=905687916&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=1948169198&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.log&eventdate=2022-10-13T06%3A18%3A31.517Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1665641908454&connectStart=1665641908442&domComplete=1665641911034&domContentLoadedEventEnd=1665641911029&domContentLoadedEventStart=1665641911028&domInteractive=1665641911023&domLoading=1665641910690&domainLookupEnd=1665641908442&domainLookupStart=1665641908392&fetchStart=1665641908371&navigationStart=1665641908371&requestStart=1665641908454&responseEnd=1665641910683&responseStart=1665641910680&loadEventStart=1665641911034&loadEventEnd=1665641911035&transferSize=36576&encodedBodySize=34238&decodedBodySize=153860&navigationType=navigate&fcp=2637&hit_id=48d0ce7d-8951-5dd0-808a-83e2fbe7c140&visitor_guid=a8a46189-f423-5a3d-802b-43cb44b16d2f&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=9ae5e6f10c75577aa769dfee92cb8fa8 HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFxT7oamDAQAAwJT+zwgGjwD/2tZLGpyn5aU46RVVKHKZRVdkOK5Ew7ht4ElRjwzSbCAFLF97RVmm7OpvkYDLlR7KmYghv5mwTJzkn4tnp/D2n0A1/sR7ezymWvlMrnsmesvnxBQNBIqPFIft6l3IHMQjzK7d+qCG2bbhoy1nYtX6YR1pKxPUyvdD1U8bTlH+6DvTLo3QnVB/BYn+5x6k72EGb9wN/u6LJcP7irdlPJ6G0eML9m8gfloCoWyJCqwoZeum8EqaeU4mBQdPJWjTuT40MA83ZXhBOHuTUt8i5/qutT70UnRzSjUtu93iPsf0Y45gslLk4NMaDzkWzwz0+2ZUQPMjn33Y4unmP0fM1vymLtJ5gZYIvsIx9a2KIdQsU/wrwAJX1yu+Ew==~-1~||1-lLEnHataDY-1-10-1000-2||~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; fb_sessiontraffic=S_TOUCH=10/13/2022%2006:18:31.301&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=10/12/2022%2023:18:31.300&pc=1; visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f; isc=PLPPT02003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 13 Oct 2022 06:18:31 GMT
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/ca22144f3e72e9249f6983e120a7534b/utag.1355.js?utv=ut4.42.202207280854
23.36.79.16200 OK 762 B URL HTTP/2 img6.wsimg.com/wrhs-next/ca22144f3e72e9249f6983e120a7534b/utag.1355.js?utv=ut4.42.202207280854
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1048)
Hash dc3e396a03f78fb33a3265012280dcdd
472de10c070fddc11c9e1ed66a86120580b5db2b
a66759e339be14957c9a59a5be7beef5f792205126475e86f6f79d841405d3bf
GET /wrhs-next/ca22144f3e72e9249f6983e120a7534b/utag.1355.js?utv=ut4.42.202207280854 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ca22144f3e72e9249f6983e120a7534b"
last-modified: Tue, 02 Aug 2022 17:06:48 GMT
vary: Accept-Encoding
x-amz-id-2: Yv+96gBVz0UpZoXz/tzkqwyZkZ3GBQNdoHHVU+WzuKaJvFC8LIfCHYmHzg3aJiIlw6rro1maoqc=
x-amz-request-id: AWNRANY3YD7YR1RD
x-amz-server-side-encryption: AES256
x-amz-version-id: DltErCnKlSvAIms5WbpxnW0Dc_yxkbMr
content-length: 762
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/ca7f1f00c677fb43acd03ac3bd17f475/utag.1389.js?utv=ut4.42.202210101305
23.36.79.16200 OK 3.3 kB URL HTTP/2 img6.wsimg.com/wrhs-next/ca7f1f00c677fb43acd03ac3bd17f475/utag.1389.js?utv=ut4.42.202210101305
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1224)
Hash 81958660b5c1ebb81f686751532a7478
d55ba4c85f1a1b6307f481680dabc2c5b61319aa
ae1dcf826390b0ce372a611ea95ced493636c98fa2451c1d9941cf1a631aac7d
GET /wrhs-next/ca7f1f00c677fb43acd03ac3bd17f475/utag.1389.js?utv=ut4.42.202210101305 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ca7f1f00c677fb43acd03ac3bd17f475"
last-modified: Tue, 11 Oct 2022 08:49:52 GMT
vary: Accept-Encoding
x-amz-id-2: YAwqQOUNlyWY9/nlHgK8PYqQuuNv5Lbq4aXdJlRBCusDsmfrTzwK6y/mmRIWEPQUhql8kng6E08=
x-amz-request-id: V8BPND2C01B8M9ED
x-amz-server-side-encryption: AES256
x-amz-version-id: aaA6Vnjw25vfO0iPhUNbr36o.5an3h5X
content-length: 3322
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/4674c65397d6df03989c284b88c59618/utag.1479.js?utv=ut4.42.202012170744
23.36.79.16200 OK 1.4 kB URL HTTP/2 img6.wsimg.com/wrhs-next/4674c65397d6df03989c284b88c59618/utag.1479.js?utv=ut4.42.202012170744
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1110)
Hash 2175aabaa18751d60e08c1eb9fe2b204
b4c0d76353b3907a4964433381b7d23e553c94a7
7955b6529535445eebe52bfb70c386b966813d2242b5c6910899aaa54bbac3ec
GET /wrhs-next/4674c65397d6df03989c284b88c59618/utag.1479.js?utv=ut4.42.202012170744 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "4674c65397d6df03989c284b88c59618"
last-modified: Thu, 07 Jul 2022 18:27:07 GMT
vary: Accept-Encoding
x-amz-id-2: /UC0fjT2KhOa1sKggm+NvVi2BdcYHyW3yO7m01HVc26BbaQEhggbsDFLZA4V4RQa3is3gr8oz3I=
x-amz-request-id: EVNCB84J1X7YQBBN
x-amz-server-side-encryption: AES256
x-amz-version-id: DGSMljlZE6wtM21yZvKL3VWPVuYFrgGD
content-length: 1383
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/f8fb3c5176810bacafc53a306b588926/utag.775.js?utv=ut4.42.202002121623
23.36.79.16200 OK 1.4 kB URL HTTP/2 img6.wsimg.com/wrhs-next/f8fb3c5176810bacafc53a306b588926/utag.775.js?utv=ut4.42.202002121623
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (995)
Hash 6039ac1826a83f81994cc7baa41c479f
64683c3036b604f3958225392fc4f26aa12fa20f
bbac7c630fc9fc76c5fca59efe8dbc838e8e4255899cb52d1be8925901ce8997
GET /wrhs-next/f8fb3c5176810bacafc53a306b588926/utag.775.js?utv=ut4.42.202002121623 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "f8fb3c5176810bacafc53a306b588926"
last-modified: Thu, 07 Jul 2022 17:01:46 GMT
vary: Accept-Encoding
x-amz-id-2: OXXitjgmAkHmaKQediWs02ZYQz8mEA3j3WMM6a6WO6ihj3pVxJcv5HmRDIFzpq2QZaWHlyum18Y=
x-amz-request-id: 59B3GZ8585C5M2F8
x-amz-server-side-encryption: AES256
x-amz-version-id: lzvNIhIFiBX5vU8xyxfk11T90ZKrit5I
content-length: 1358
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/3f316aa13415a131851f516525146c09/utag.1204.js?utv=ut4.42.202012140745
23.36.79.16200 OK 1.3 kB URL HTTP/2 img6.wsimg.com/wrhs-next/3f316aa13415a131851f516525146c09/utag.1204.js?utv=ut4.42.202012140745
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (1085)
Hash 823cc48b4e4dbff906175c92514a3aa6
ceb63550d379859198426c317c27eac6ea4913b8
b426da3378b8d715236674007162eee67cc882d2848b76d613f216985a0a63b5
GET /wrhs-next/3f316aa13415a131851f516525146c09/utag.1204.js?utv=ut4.42.202012140745 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "3f316aa13415a131851f516525146c09"
last-modified: Thu, 07 Jul 2022 16:53:07 GMT
vary: Accept-Encoding
x-amz-id-2: endxfTUKbeL/rXSrpffDmRL4zQBPq9FY7K0nzRDi2AyPThV3ZY/Z2tDpE2dCXcwYoLsxDGkiiorIBIgWUPilbA==
x-amz-request-id: GNZRS8KC1AN4P7PE
x-amz-server-side-encryption: AES256
x-amz-version-id: ZefeHhyBXeCzvdXZjG1wkCgvc5HV9gn9
content-length: 1261
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/b24366748351284b988daca2afe398cc/utag.1486.js?utv=ut4.42.202008310728
23.36.79.16200 OK 987 B URL HTTP/2 img6.wsimg.com/wrhs-next/b24366748351284b988daca2afe398cc/utag.1486.js?utv=ut4.42.202008310728
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1048)
Hash 1823f879f93355777c8c6c3392a75eb5
1b0a04669a9de92e5a63068be46260f4cbc5a911
42bf6cc050c1cb90dd94fc4ab3388c0d73a2a952ce75d5923d4a1282c8e823f5
GET /wrhs-next/b24366748351284b988daca2afe398cc/utag.1486.js?utv=ut4.42.202008310728 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "b24366748351284b988daca2afe398cc"
last-modified: Thu, 07 Jul 2022 16:53:36 GMT
vary: Accept-Encoding
x-amz-id-2: +BQBriUGcyItrpxmM+GI/7mgdFWYjeR1zpPE9v7jUNYRYrFxq+YuoCLfiheTjnCBMC/4tnAsTqg=
x-amz-request-id: 1DD2ZQ1R4CTTGYA2
x-amz-server-side-encryption: AES256
x-amz-version-id: 7vt2f8sc0BGGePx_JNibfTGiPA5l769k
content-length: 987
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/136af220b820e1b221293ecfa066a6f3/utag.1476.js?utv=ut4.42.202009071318
23.36.79.16200 OK 974 B URL HTTP/2 img6.wsimg.com/wrhs-next/136af220b820e1b221293ecfa066a6f3/utag.1476.js?utv=ut4.42.202009071318
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1048)
Hash ccc5c0851fa0dc7023d80c3d233dcb8d
2b4c6c42ecac8c16c1eafc246a28d3291a8b34d5
c8ff04e18342e1b0664ea2074bb53fbff5db0bdbd7b91713a3d0830ab1cf9780
GET /wrhs-next/136af220b820e1b221293ecfa066a6f3/utag.1476.js?utv=ut4.42.202009071318 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "136af220b820e1b221293ecfa066a6f3"
last-modified: Thu, 07 Jul 2022 16:59:11 GMT
vary: Accept-Encoding
x-amz-id-2: v6bD+nvVNbYRwwCNCACd4b5OhU9BqkvegiEZ9VuThpnFJK2CUHk/dN4TQsJyqNIEQv7yYL07Lso=
x-amz-request-id: BR0R03871KPZY8M5
x-amz-server-side-encryption: AES256
x-amz-version-id: uDjaGq.aIwClcHSWFbdbyxgfmHuZ8yTC
content-length: 974
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/e78badcfab5adcdee14eb8dbfc0d9977/utag.1376.js?utv=ut4.42.202206201008
23.36.79.16200 OK 746 B URL HTTP/2 img6.wsimg.com/wrhs-next/e78badcfab5adcdee14eb8dbfc0d9977/utag.1376.js?utv=ut4.42.202206201008
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (776)
Hash 6969e419266ec686cf320e71e23f78d8
76297130e586fb84e5c0d0923a1aacb47092526a
ad2687e85847419362d5a7d4175053e357a8edc5d1be60257fdd2d84154910e1
GET /wrhs-next/e78badcfab5adcdee14eb8dbfc0d9977/utag.1376.js?utv=ut4.42.202206201008 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "e78badcfab5adcdee14eb8dbfc0d9977"
last-modified: Thu, 07 Jul 2022 16:45:07 GMT
vary: Accept-Encoding
x-amz-id-2: RmcVYq2NbTCvwp8CajijzbgG2ZNaPsmBanOpBhHNmfozehJUsNtprOY7t+fs4n/nZl+QvGq8ldw=
x-amz-request-id: 4Y114Y7J8896XWQQ
x-amz-server-side-encryption: AES256
x-amz-version-id: _Lo6nIQzocMv271uXGlrsv0tgQ9.8ali
content-length: 746
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/b28eba21591385b3d392aa3a07799d12/utag.1494.js?utv=ut4.42.202104221036
23.36.79.16200 OK 1.2 kB URL HTTP/2 img6.wsimg.com/wrhs-next/b28eba21591385b3d392aa3a07799d12/utag.1494.js?utv=ut4.42.202104221036
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1507)
Hash 73449a146abe15a0b61e8b530e7a1144
6bc5181e9818fcf90e0abc5e5fc003d39685d6b8
af91309111236330ab014ab4b04e0510d9c6aa0100ee838a62f9fbf6a6c052a0
GET /wrhs-next/b28eba21591385b3d392aa3a07799d12/utag.1494.js?utv=ut4.42.202104221036 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "b28eba21591385b3d392aa3a07799d12"
last-modified: Thu, 07 Jul 2022 18:58:05 GMT
vary: Accept-Encoding
x-amz-id-2: LtxFmIqMzAam7c6LQnoRhs0a3l2aOoY87BEmy8g87UuYmneNjwu8YhxUIiWo3MGwsCwv94MnBh4=
x-amz-request-id: NSAHJGVATJZ4ZY9Q
x-amz-server-side-encryption: AES256
x-amz-version-id: KKbrx9Ji51UdlOzMVokF3uIecK8uzU99
content-length: 1199
cache-control: max-age=31536000
date: Thu, 13 Oct 2022 06:18:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
IP 142.250.74.3:0
Hash 62a47826577d77af760160d620ecb833
6c826a2e7f9c61e461e1f86ab5ebee4cfde45287
f90b1be9cff4f57bc417ea98576ea863061e6bc6751abc5468fe7ad448955acd
POST /s/gts1d4/vAGbIJLSo3Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
IP 142.250.74.3:0
Hash 62a47826577d77af760160d620ecb833
6c826a2e7f9c61e461e1f86ab5ebee4cfde45287
f90b1be9cff4f57bc417ea98576ea863061e6bc6751abc5468fe7ad448955acd
POST /s/gts1d4/vAGbIJLSo3Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
event.mrtnsvr.com/?adv=14&cb=0.4235418596889702
35.227.237.181302 Found 0 B URL HTTP/2 event.mrtnsvr.com/?adv=14&cb=0.4235418596889702
IP 35.227.237.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?adv=14&cb=0.4235418596889702 HTTP/1.1
Host: event.mrtnsvr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-origin: *
content-type:
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=zX3fUZztp
set-cookie: userId=zX3fUZztp; Domain=mrtnsvr.com; Expires=Sat, 14 Oct 2023 06:18:31 GMT; Secure; SameSite=None
vary: Origin
date: Thu, 13 Oct 2022 06:18:31 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
event.mrtnsvr.com/?adv=14&cb=0.6845664425779563
35.227.237.181302 Found 0 B URL HTTP/2 event.mrtnsvr.com/?adv=14&cb=0.6845664425779563
IP 35.227.237.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?adv=14&cb=0.6845664425779563 HTTP/1.1
Host: event.mrtnsvr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-origin: *
content-type:
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=AX34UZzap
set-cookie: userId=AX34UZzap; Domain=mrtnsvr.com; Expires=Sat, 14 Oct 2023 06:18:31 GMT; Secure; SameSite=None
vary: Origin
date: Thu, 13 Oct 2022 06:18:31 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702&ft_trackID=16656419-1194-33EB-D59F-72711861BB27
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702&ft_trackID=16656419-1194-33EB-D59F-72711861BB27
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702&ft_trackID=16656419-1194-33EB-D59F-72711861BB27 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:32 GMT
Connection: Keep-Alive
Cache-Control: no-cache,no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app9.frk11
Pragma: no-cache
X-HW: 1665641912.dop068.sk1.shc,1665641912.dop068.sk1.t,1665641912.cds239.sk1.sc,1665641912.cds239.sk1.p
servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563&ft_trackID=16656419-1195-1650-2ABD-14AC8244A69A
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563&ft_trackID=16656419-1195-1650-2ABD-14AC8244A69A
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563&ft_trackID=16656419-1195-1650-2ABD-14AC8244A69A HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:32 GMT
Connection: Keep-Alive
Cache-Control: no-cache,no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app5.frk11
Pragma: no-cache
X-HW: 1665641912.dop210.sk1.shc,1665641912.dop210.sk1.t,1665641912.cds206.sk1.sc,1665641912.cds206.sk1.p
ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
IP 142.250.74.3:0
Hash 62a47826577d77af760160d620ecb833
6c826a2e7f9c61e461e1f86ab5ebee4cfde45287
f90b1be9cff4f57bc417ea98576ea863061e6bc6751abc5468fe7ad448955acd
POST /s/gts1d4/vAGbIJLSo3Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
104.110.14.92201 Created 18 B URL HTTP/1.1 www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
IP 104.110.14.92:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
traceparent: 00-26c43775c8fd239783b80f7554f3272c-e5741af371a16582-01
Content-Type: text/plain;charset=UTF-8
Content-Length: 3084
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFxT7oamDAQAAwJT+zwgGjwD/2tZLGpyn5aU46RVVKHKZRVdkOK5Ew7ht4ElRjwzSbCAFLF97RVmm7OpvkYDLlR7KmYghv5mwTJzkn4tnp/D2n0A1/sR7ezymWvlMrnsmesvnxBQNBIqPFIft6l3IHMQjzK7d+qCG2bbhoy1nYtX6YR1pKxPUyvdD1U8bTlH+6DvTLo3QnVB/BYn+5x6k72EGb9wN/u6LJcP7irdlPJ6G0eML9m8gfloCoWyJCqwoZeum8EqaeU4mBQdPJWjTuT40MA83ZXhBOHuTUt8i5/qutT70UnRzSjUtu93iPsf0Y45gslLk4NMaDzkWzwz0+2ZUQPMjn33Y4unmP0fM1vymLtJ5gZYIvsIx9a2KIdQsU/wrwAJX1yu+Ew==~-1~||1-lLEnHataDY-1-10-1000-2||~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; fb_sessiontraffic=S_TOUCH=10/13/2022%2006:18:31.301&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=10/12/2022%2023:18:31.300&pc=1; visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f; isc=PLPPT02003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
x_req_id: 480515f9-d6fb-499d-81d4-1b7941577a24
Date: Thu, 13 Oct 2022 06:18:32 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.secureserver.net
Access-Control-Allow-Headers: Content-Type
X-ARC: 101
Set-Cookie: _abck=5C4BEDDEED706B32685F366B2005967A~0~YAAQ3U0kFxj7oamDAQAAOJf+zwhU4W+DcOZGUkuAEh3TVtOum2aUBvuMmSvtF+vcTXp07QJXymdkRwSeh14OhPBHJ9KPsHQ6+iRLeGWDTEZ2pXZkJPEcZbCkwglfIJdSxdi6fGMgj4F8ddUK5/FKRlem+F1Kp0VWKzqo7HiIirm02PBS4mpO7HU0DbU2j/ZAE5JOjEr9JVfoeuc6Icroh/dbmkppaF33A2HaJdIWb02cbWsu6ou2kPT+C+ie2GcBPi3Ay7tbcj7++rvnOmH5G+D85fDneDp4pZIKtMuKLmzLGlCBrFesDBQSwhE7M2HjNvNFUiQKTrr/N4flwyXyEhk4nmM5b1NUYfaHEHEg4/0tydCy+JwHfvRiSu0Lh9ZhpY/dNsA+Ddfvx7CIFTlsyyMCcspnLmZW6NiBBEiD~-1~||1-lLEnHataDY-1-10-1000-2||~-1; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:32 GMT; Max-Age=31536000; Secure
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 7bf7496d3a7a33f4a8c54f7c85edb551
40b1db6ca36ca1630f82c2f65a77f823f09a4cbb
62db93362f9957f632b92300ba83f7b16bef7b4756ad026c281a1da704120ebd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 13 Oct 2022 06:18:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 12 Oct 2022 20:35:40 GMT
Expires: Thu, 13 Oct 2022 20:35:40 GMT
ETag: "40b1db6ca36ca1630f82c2f65a77f823f09a4cbb"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 553545780d1eac4fe22c65f97d3821fa
2bb9d12a8284c53ed6449576f4951412ce35e5a8
5f83cec84b26c0eb6406574d72a3bfc27666c6d89545ab00e172af7bd583087b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145759
Date: Thu, 13 Oct 2022 06:18:32 GMT
Etag: "63473a99-1d7"
Expires: Fri, 14 Oct 2022 22:47:51 GMT
Last-Modified: Wed, 12 Oct 2022 22:07:21 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: De_Glsnd8rKV2V2CtP5mUf7gRTOucyjN2hOgj3FMmRlw5xw71NJmQw==
Age: 2430
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 553545780d1eac4fe22c65f97d3821fa
2bb9d12a8284c53ed6449576f4951412ce35e5a8
5f83cec84b26c0eb6406574d72a3bfc27666c6d89545ab00e172af7bd583087b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147638
Date: Thu, 13 Oct 2022 06:18:32 GMT
Etag: "63473a99-1d7"
Expires: Fri, 14 Oct 2022 23:19:10 GMT
Last-Modified: Wed, 12 Oct 2022 22:07:21 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ek9BupSTsNGTHMouFZGdp7AdyNszRJbiwlFUnPSQYiAdM9-uO9_MqA==
Age: 4309
www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
104.110.14.92201 Created 18 B URL HTTP/1.1 www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
IP 104.110.14.92:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
traceparent: 00-26c43775c8fd239783b80f7554f3272c-799d56882fb5d2e4-01
Content-Type: text/plain;charset=UTF-8
Content-Length: 3326
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFxT7oamDAQAAwJT+zwgGjwD/2tZLGpyn5aU46RVVKHKZRVdkOK5Ew7ht4ElRjwzSbCAFLF97RVmm7OpvkYDLlR7KmYghv5mwTJzkn4tnp/D2n0A1/sR7ezymWvlMrnsmesvnxBQNBIqPFIft6l3IHMQjzK7d+qCG2bbhoy1nYtX6YR1pKxPUyvdD1U8bTlH+6DvTLo3QnVB/BYn+5x6k72EGb9wN/u6LJcP7irdlPJ6G0eML9m8gfloCoWyJCqwoZeum8EqaeU4mBQdPJWjTuT40MA83ZXhBOHuTUt8i5/qutT70UnRzSjUtu93iPsf0Y45gslLk4NMaDzkWzwz0+2ZUQPMjn33Y4unmP0fM1vymLtJ5gZYIvsIx9a2KIdQsU/wrwAJX1yu+Ew==~-1~||1-lLEnHataDY-1-10-1000-2||~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; fb_sessiontraffic=S_TOUCH=10/13/2022%2006:18:31.301&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=10/12/2022%2023:18:31.300&pc=1; visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f; isc=PLPPT02003; OPTOUTMULTI=0:0%7Cc2:0%7Cc9:0%7Cc11:0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
x_req_id: bc3dd6da-6b7f-446d-b646-6a8043259c4b
Date: Thu, 13 Oct 2022 06:18:32 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.secureserver.net
Access-Control-Allow-Headers: Content-Type
X-ARC: 101
Set-Cookie: _abck=5C4BEDDEED706B32685F366B2005967A~0~YAAQ3U0kFxn7oamDAQAAlJf+zwivNTA4FXIhurhgLilBog1/rmniWIdLpkDCtFNQyChuwHn/h5/lpS1iJrZcelYeSFCCUpjC2XfV475e5lWMbxahgTpC6B0gzf8mFh2rvyg1kgmkZ7E7porF/rOlMbjX/NYHFi6385iZvv1Q6JyRJ9wdDrhjObqofRVO6y4ibdQKff2Q5u0u/W0GI2evKrZBvDmXr8fG44wPva106A5mxQiOUBRvBZZnr/eRvL3lM+jYD0CVCDrle8MW5D8LmSJaz1zr2mVl/zkJVGUq+oWvy4mEuHKjhdIXUrNuRZHuETypzA7NW1N0rjwnShx/MPNC7ikoBpZuQ6jvm3t9scesQd8I6SRV8F8gnM4qpfDxuvV5YLFtpbyQDKWTLTQhi4fdgdvCiAGbzC2d4ZWK~-1~||-1||~-1; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:32 GMT; Max-Age=31536000; Secure
d9.flashtalking.com/d9core
54.155.218.181200 11 kB URL HTTP/1.1 d9.flashtalking.com/d9core
IP 54.155.218.181:0
File type ASCII text, with very long lines (10814), with no line terminators
Hash de684dc0ed67b4f67f0d4ef197fe6ffb
f222690ab0c907c7d9bca3db3e948dcbbcd009e6
dc6bd96e928970f3de1f7beea49da03ecbf5f9f4080a752c9fd1a54de992a624
GET /d9core HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: d9.flashtalking.com
Cache-Control: private, must-revalidate, proxy-revalidate, max-age=172800
Content-Type: application/javascript;charset=utf-8
Date: Thu, 13 Oct 2022 06:18:31 GMT
ETag: 5bc31bf7d4a298e1bef9d35fce222bfc
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
Content-Length: 10814
Connection: keep-alive
collector-1594.tvsquared.com/tv2trackext.js
13.58.146.182200 OK 8.6 kB URL HTTP/1.1 collector-1594.tvsquared.com/tv2trackext.js
IP 13.58.146.182:0
File type ASCII text, with very long lines (1176)
Hash 7fdec596c06366f1cc98bea9b8f33ba4
d38c2df40beea742cbbfdbd095ab9e2a825bae0f
6ef6c88f01ef0385baf68bf90ece814771097c5dcb151bb8d7e7f53b852d963e
GET /tv2trackext.js HTTP/1.1
Host: collector-1594.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Thu, 13 Oct 2022 06:18:32 GMT
ETag: "6305f9a4-2196"
Expires: Thu, 13 Oct 2022 06:28:32 GMT
Last-Modified: Wed, 24 Aug 2022 10:12:52 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8598
Connection: keep-alive
d9.flashtalking.com/lgc
54.155.218.181200 103 B IP 54.155.218.181:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26bd3efd41487f7fd34f0d702fcc26c5
9fc5b4999a901501779e232968e9950f6330c0ac
1e557fd6963aecaf5a7761af7b33f4997ba491cceb45dc57261488f38d39b756
POST /lgc HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1395
Origin: https://servedby.flashtalking.com
Connection: keep-alive
Referer: https://servedby.flashtalking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: https://servedby.flashtalking.com
Content-Type: application/json;charset=ISO-8859-1
Date: Thu, 13 Oct 2022 06:18:32 GMT
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
set-cookie: _D9J=f24a3299f3fe490b9bb96fd944343322; path=/; Max-Age=31536000; Expires=Fri, 13-Oct-2023 06:18:32 UTC; SameSite=None;Secure;Domain=flashtalking.com
Content-Length: 103
Connection: keep-alive
www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
104.110.14.92201 Created 18 B URL HTTP/1.1 www.secureserver.net/668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB
IP 104.110.14.92:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /668iQn9ykuIrURznww/upuDDtNJYt/dDswFj8m/BUoUBF/5wKHsB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
traceparent: 00-26c43775c8fd239783b80f7554f3272c-539e89a147d812b7-01
Content-Type: text/plain;charset=UTF-8
Content-Length: 3328
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~0~YAAQ3U0kFxj7oamDAQAAOJf+zwhU4W+DcOZGUkuAEh3TVtOum2aUBvuMmSvtF+vcTXp07QJXymdkRwSeh14OhPBHJ9KPsHQ6+iRLeGWDTEZ2pXZkJPEcZbCkwglfIJdSxdi6fGMgj4F8ddUK5/FKRlem+F1Kp0VWKzqo7HiIirm02PBS4mpO7HU0DbU2j/ZAE5JOjEr9JVfoeuc6Icroh/dbmkppaF33A2HaJdIWb02cbWsu6ou2kPT+C+ie2GcBPi3Ay7tbcj7++rvnOmH5G+D85fDneDp4pZIKtMuKLmzLGlCBrFesDBQSwhE7M2HjNvNFUiQKTrr/N4flwyXyEhk4nmM5b1NUYfaHEHEg4/0tydCy+JwHfvRiSu0Lh9ZhpY/dNsA+Ddfvx7CIFTlsyyMCcspnLmZW6NiBBEiD~-1~||1-lLEnHataDY-1-10-1000-2||~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; fb_sessiontraffic=S_TOUCH=10/13/2022%2006:18:31.301&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=10/12/2022%2023:18:31.300&pc=1; visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f; isc=PLPPT02003; OPTOUTMULTI=0:0%7Cc2:0%7Cc9:0%7Cc11:0; utag_main=v_id:0183cffe958c001aea1481fede1b00044005c00900918$_sn:1$_ss:0$_st:1665643711772$ses_id:1665641911693%3Bexp-session$_pn:1%3Bexp-session; _gcl_au=1.1.817777919.1665641912
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
x_req_id: b4f51bdf-f1ad-456a-baa6-22761ebecd29
Date: Thu, 13 Oct 2022 06:18:32 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.secureserver.net
Access-Control-Allow-Headers: Content-Type
X-ARC: 101
Set-Cookie: _abck=5C4BEDDEED706B32685F366B2005967A~0~YAAQ3U0kFxr7oamDAQAAHJj+zwiuGr9QFYv4OeduOy7y45k6m2SGmWLurpyaSZVJVpi64ZzcJ1PhQDetXU6+v02lP4H2Kf7hR8KI3TW0NvHIaL33xbPC2EbmpwmbOdDGvsm4ifdBb1PqcgLGZpihB82ZR3Npqa9h2vBEltHw6Ex4g519/Jf5lsZRDdCEz91U7NWSc1NothYe7m4VZmofSPr9SCgqCLcU0Tvl2U04My9ejCuhp3DzOF7k8w76y2l7rlgfEOWSrFKi0MxjrAJv3KQK65DcDcr1h9mBoE4iB6nBYtg6qcsEW7cFGpmQepfEnv5l04k46lueEtSnTi7Q6xeBWpldVhFTkafG7dw0WNk/MU5lqo4kzLI0dMHg2i2gRJOJhixXZxShEhsG/rk6zJtQpndz6eOOxlZrjm1B~-1~-1~-1; Domain=.secureserver.net; Path=/; Expires=Fri, 13 Oct 2023 06:18:32 GMT; Max-Age=31536000; Secure
servedby.flashtalking.com/track/116731;12362;403;16656419-1194-33EB-D59F-72711861BB27/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=616452.0928173192
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/track/116731;12362;403;16656419-1194-33EB-D59F-72711861BB27/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=616452.0928173192
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /track/116731;12362;403;16656419-1194-33EB-D59F-72711861BB27/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=616452.0928173192 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:32 GMT
Connection: Keep-Alive
Cache-Control: no-cache, no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app7.frk11
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
X-HW: 1665641912.dop068.sk1.shc,1665641912.dop068.sk1.t,1665641912.cds239.sk1.sc,1665641912.cds239.sk1.p
d9.flashtalking.com/lgc
54.155.218.181200 103 B IP 54.155.218.181:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26bd3efd41487f7fd34f0d702fcc26c5
9fc5b4999a901501779e232968e9950f6330c0ac
1e557fd6963aecaf5a7761af7b33f4997ba491cceb45dc57261488f38d39b756
POST /lgc HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1395
Origin: https://servedby.flashtalking.com
Connection: keep-alive
Referer: https://servedby.flashtalking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: https://servedby.flashtalking.com
Content-Type: application/json;charset=ISO-8859-1
Date: Thu, 13 Oct 2022 06:18:31 GMT
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
set-cookie: _D9J=f24a3299f3fe490b9bb96fd944343322; path=/; Max-Age=31536000; Expires=Fri, 13-Oct-2023 06:18:32 UTC; SameSite=None;Secure;Domain=flashtalking.com
Content-Length: 103
Connection: keep-alive
collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=636537&h=6&m=18&s=32&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=41859c6b3fe4eade&_idts=1665641912&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=2229
13.58.146.182200 OK 42 B URL HTTP/1.1 collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=636537&h=6&m=18&s=32&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=41859c6b3fe4eade&_idts=1665641912&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=2229
IP 13.58.146.182:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=636537&h=6&m=18&s=32&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=41859c6b3fe4eade&_idts=1665641912&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=2229 HTTP/1.1
Host: collector-1594.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 13 Oct 2022 06:18:32 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: c94b7126-2d99-4962-b4f4-8f0bb7f76baa
Server: nginx
Content-Length: 42
Connection: keep-alive
collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=425286&h=6&m=18&s=32&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=41859c6b3fe4eade&_idts=1665641912&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024>_ms=2229
13.58.146.182200 OK 42 B URL HTTP/1.1 collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=425286&h=6&m=18&s=32&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=41859c6b3fe4eade&_idts=1665641912&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024>_ms=2229
IP 13.58.146.182:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=425286&h=6&m=18&s=32&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=41859c6b3fe4eade&_idts=1665641912&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024>_ms=2229 HTTP/1.1
Host: collector-1594.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 13 Oct 2022 06:18:32 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 9bd62edb-f1ee-4670-8524-6589f164b643
Server: nginx
Content-Length: 42
Connection: keep-alive
servedby.flashtalking.com/track/116731;12362;403;16656419-1195-1650-2ABD-14AC8244A69A/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=407597.82143814705
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/track/116731;12362;403;16656419-1195-1650-2ABD-14AC8244A69A/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=407597.82143814705
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /track/116731;12362;403;16656419-1195-1650-2ABD-14AC8244A69A/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=407597.82143814705 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:32 GMT
Connection: Keep-Alive
Cache-Control: no-cache, no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app67.frk11
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
X-HW: 1665641912.dop210.sk1.shc,1665641912.dop210.sk1.t,1665641912.cds206.sk1.sc,1665641912.cds206.sk1.p
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4f6313a1417b096fb092f3d28a765787
8513b2f92ca42a7487bbbebb14c1db2c4b0ee836
5f6a80401a2ab3ba5c41facff4135f7a1d6b4bbba10ea5bb39634ada50fb1fd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5793
Cache-Control: max-age=132172
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Etag: "6346f863-1d7"
Expires: Fri, 14 Oct 2022 19:01:24 GMT
Last-Modified: Wed, 12 Oct 2022 17:24:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 13 Oct 2022 04:41:09 GMT
expires: Thu, 13 Oct 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 5843
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 46c70f9d0d2a64a20cf33d9c91c0a1cd
40a91dd6187a0864b43cd492b1f25bf6aa393476
023fa75ce207f40303c4b9a10e45354c0dc4cbc48d8de2ec3450dbd29aca09f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5712
Cache-Control: max-age=166989
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Etag: "634780b5-1d7"
Expires: Sat, 15 Oct 2022 04:41:41 GMT
Last-Modified: Thu, 13 Oct 2022 03:06:29 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
cdn.krxd.net/controltag/ux5pjwjr7.js
151.101.86.133200 OK 6.2 kB URL HTTP/2 cdn.krxd.net/controltag/ux5pjwjr7.js
IP 151.101.86.133:0
File type ASCII text, with very long lines (20241)
Hash 3200fa7eed05dc39eb0937f13443af3c
f8a61a43bc48da72aae267e0ffc9d7047378e339
5f77a47572936d53d7024fd025810d748c46e492d689529b2dafd34b4bc5aee7
GET /controltag/ux5pjwjr7.js HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
etag: "99d798ef5d8aa89356feda894c39bb6513eaaa04"
x-app-cache: HIT
cache-control: public, max-age=1200
x-response-time: 0
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_config_service_ash_prod
via: 1.1 varnish, 1.1 varnish
x-do-esi: esi
accept-ranges: bytes
date: Thu, 13 Oct 2022 06:18:32 GMT
age: 681
x-served-by: config-service-a003-ash-prod.krxd.net, cache-iad-kjyo7100077-IAD, cache-bma1676-BMA
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 17, 1
x-timer: S1665641913.600492,VS0,VE1
vary: Accept-Encoding
content-length: 6234
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0bb2377f88725b00f1813824f8af12b7
52b7feb03f8201a7640c77261089f86cd69f233b
8e3603c91a7408abaa1c83d502a01b71d8c0bbcf824d210d5cf9722ee886792f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr?id=284067518410183&ev=PageView&dpo=LDU&dpoco=0&dpost=0&noscript=1
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr?id=284067518410183&ev=PageView&dpo=LDU&dpoco=0&dpost=0&noscript=1
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr?id=284067518410183&ev=PageView&dpo=LDU&dpoco=0&dpost=0&noscript=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Thu, 13 Oct 2022 06:18:32 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79977c7bc9cdb494524025717bf2c569
b86f52cf6a603616fef330fe9e98f55c74930bbe
82e13d71a32fbda036f96c091cc2181e1acb13519fcbe5669a87750dc67f7389
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=11310F0FABD366E918261D33AA26677B; domain=.bing.com; expires=Tue, 07-Nov-2023 06:18:32 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 81263D5A68F341919D5A203F3B50AB61 Ref B: OSL30EDGE0517 Ref C: 2022-10-13T06:18:32Z
date: Thu, 13 Oct 2022 06:18:32 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 46c70f9d0d2a64a20cf33d9c91c0a1cd
40a91dd6187a0864b43cd492b1f25bf6aa393476
023fa75ce207f40303c4b9a10e45354c0dc4cbc48d8de2ec3450dbd29aca09f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5712
Cache-Control: max-age=166989
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Etag: "634780b5-1d7"
Expires: Sat, 15 Oct 2022 04:41:41 GMT
Last-Modified: Thu, 13 Oct 2022 03:06:29 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=godaddy_adh&google_hm=qKRhifQjWj2AK0PLRLFtLw
142.250.74.98302 Found 306 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=godaddy_adh&google_hm=qKRhifQjWj2AK0PLRLFtLw
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5e50ba4fd22cb0388032c91d90748446
a45e5bb878b200b4f36a4dd2aa9016f2287a1152
fc06f015e4bc0bc2128851a8f7596ba00a3d7f44fb3c785ba40de5aec4288b87
GET /pixel?google_nid=godaddy_adh&google_hm=qKRhifQjWj2AK0PLRLFtLw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=godaddy_adh&google_hm=qKRhifQjWj2AK0PLRLFtLw&google_tc=
date: Thu, 13 Oct 2022 06:18:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 306
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 13-Oct-2022 06:33:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79977c7bc9cdb494524025717bf2c569
b86f52cf6a603616fef330fe9e98f55c74930bbe
82e13d71a32fbda036f96c091cc2181e1acb13519fcbe5669a87750dc67f7389
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=9153196704737;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
216.58.207.198302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=9153196704737;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
IP 216.58.207.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=8316070;type=retar0;cat=ret-page;ord=9153196704737;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 13 Oct 2022 06:18:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=9153196704737;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 13-Oct-2022 06:33:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=AX34UZzap
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=AX34UZzap
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3203&partner_device_id=AX34UZzap HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 13 Oct 2022 06:18:32 GMT
strict-transport-security: max-age=31536000
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1665641912634;Expires=Mon, 12 Dec 2022 06:18:32 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=c9dbc5a2-97cc-45f5-86c1-15e2d6ae962f;Expires=Mon, 12 Dec 2022 06:18:32 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3203&partner_device_id=AX34UZzap
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_cCpILcXLHy2kXOd&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web
104.17.208.240200 OK 1.5 kB URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_cCpILcXLHy2kXOd&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web
IP 104.17.208.240:0
File type JSON data\012- , ASCII text, with very long lines (11482), with no line terminators
Hash 3fef780a87bd579d8a304741c8841c49
3ff8e725642ef305aaf151b368e80cdefb850467
3760dd93e350de19e03156665da97089f58b541c97b488c9b5bc67baa8be118c
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_cCpILcXLHy2kXOd&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 161
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:32 GMT
content-type: application/json
cf-ray: 7595f55e5e58b4fd-OSL
access-control-allow-origin: https://www.secureserver.net
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: b959d74c7e3f7cca
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4f6313a1417b096fb092f3d28a765787
8513b2f92ca42a7487bbbebb14c1db2c4b0ee836
5f6a80401a2ab3ba5c41facff4135f7a1d6b4bbba10ea5bb39634ada50fb1fd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5793
Cache-Control: max-age=132172
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Etag: "6346f863-1d7"
Expires: Fri, 14 Oct 2022 19:01:24 GMT
Last-Modified: Wed, 12 Oct 2022 17:24:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=zX3fUZztp
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=zX3fUZztp
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3203&partner_device_id=zX3fUZztp HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 13 Oct 2022 06:18:32 GMT
strict-transport-security: max-age=31536000
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1665641912649;Expires=Mon, 12 Dec 2022 06:18:32 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=2613703d-4e9f-4c11-a3e3-dc2ae3289566;Expires=Mon, 12 Dec 2022 06:18:32 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3203&partner_device_id=zX3fUZztp
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
216.58.207.198302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
IP 216.58.207.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 13 Oct 2022 06:18:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 13-Oct-2022 06:33:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7819db7b5768fe648b1aed362e9e45bf
03b464aab657bdc96e593b387bd47843ae9f1f30
0c2917ebec107eb55994aa414720ac821ceeca3140c8119de383d3bb0393e739
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 13:42:56 GMT
Expires: Wed, 19 Oct 2022 13:42:55 GMT
Etag: "03b464aab657bdc96e593b387bd47843ae9f1f30"
Cache-Control: max-age=544462,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7595f5620992b4f4-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0bb2377f88725b00f1813824f8af12b7
52b7feb03f8201a7640c77261089f86cd69f233b
8e3603c91a7408abaa1c83d502a01b71d8c0bbcf824d210d5cf9722ee886792f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 46c70f9d0d2a64a20cf33d9c91c0a1cd
40a91dd6187a0864b43cd492b1f25bf6aa393476
023fa75ce207f40303c4b9a10e45354c0dc4cbc48d8de2ec3450dbd29aca09f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5712
Cache-Control: max-age=166989
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Etag: "634780b5-1d7"
Expires: Sat, 15 Oct 2022 04:41:41 GMT
Last-Modified: Thu, 13 Oct 2022 03:06:29 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79977c7bc9cdb494524025717bf2c569
b86f52cf6a603616fef330fe9e98f55c74930bbe
82e13d71a32fbda036f96c091cc2181e1acb13519fcbe5669a87750dc67f7389
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&gjid=547169065&_gid=98754238.1665641913&_u=4GBAAUAAAAAAACABI~&z=1556016690
173.194.73.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&gjid=547169065&_gid=98754238.1665641913&_u=4GBAAUAAAAAAACABI~&z=1556016690
IP 173.194.73.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&gjid=547169065&_gid=98754238.1665641913&_u=4GBAAUAAAAAAACABI~&z=1556016690 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.secureserver.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 13 Oct 2022 06:18:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
di.rlcdn.com/459769.gif?partner_uid=STV-81459054-1%3A41859c6b3fe4eade
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 di.rlcdn.com/459769.gif?partner_uid=STV-81459054-1%3A41859c6b3fe4eade
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /459769.gif?partner_uid=STV-81459054-1%3A41859c6b3fe4eade HTTP/1.1
Host: di.rlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Thu, 13 Oct 2022 06:18:32 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.krxd.net/ctjs/controltag.js.d58f47095e6041e576ee04944cca45da
151.101.86.133200 OK 85 kB URL HTTP/2 cdn.krxd.net/ctjs/controltag.js.d58f47095e6041e576ee04944cca45da
IP 151.101.86.133:0
File type ASCII text, with very long lines (65439)
Hash d58f47095e6041e576ee04944cca45da
265282d9373a6b3076d6afe6e6a357a000b6841e
9d81ace3b73ea9d8adc98d8c8d331d0335794bee2e667a84d3ec8b503b2b8be4
GET /ctjs/controltag.js.d58f47095e6041e576ee04944cca45da HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 09:41:11 GMT
etag: "d58f47095e6041e576ee04944cca45da"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=315360000
content-encoding: gzip
expires: Fri, 01 Oct 2032 09:41:10 GMT
content-type: application/javascript
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_Controltag_S3
accept-ranges: bytes
date: Thu, 13 Oct 2022 06:18:32 GMT
via: 1.1 varnish
age: 748495
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 141087
x-timer: S1665641913.833659,VS0,VE0
content-length: 84766
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=4007276&Ver=2&mid=a2855ef1-600f-4a0e-8cc8-52a172dd4586&sid=dcb8f1404abe11eda5b49ddca8bd5c90&vid=dcb921504abe11ed9cfb234212dce324&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Worldkast%20Technologies,%20LLC&p=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&r=http%3A%2F%2Fgrupofiducia.com%2F<=2664&evt=pageLoad&sv=1&rn=719433
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=4007276&Ver=2&mid=a2855ef1-600f-4a0e-8cc8-52a172dd4586&sid=dcb8f1404abe11eda5b49ddca8bd5c90&vid=dcb921504abe11ed9cfb234212dce324&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Worldkast%20Technologies,%20LLC&p=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&r=http%3A%2F%2Fgrupofiducia.com%2F<=2664&evt=pageLoad&sv=1&rn=719433
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=4007276&Ver=2&mid=a2855ef1-600f-4a0e-8cc8-52a172dd4586&sid=dcb8f1404abe11eda5b49ddca8bd5c90&vid=dcb921504abe11ed9cfb234212dce324&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Worldkast%20Technologies,%20LLC&p=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&r=http%3A%2F%2Fgrupofiducia.com%2F<=2664&evt=pageLoad&sv=1&rn=719433 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=360A243FE26C6970149F3603E39968B6; domain=.bing.com; expires=Tue, 07-Nov-2023 06:18:32 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B40FB5B23FAD4C23B16165D4EE2118D2 Ref B: OSL30EDGE0517 Ref C: 2022-10-13T06:18:32Z
date: Thu, 13 Oct 2022 06:18:32 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b45218c3e6c8d13b6c913cc1e7cd903c
dc8c263c7731305b2ecc26fea7fed1e23836c89c
51ca3e057d20fe75012336be49d053f115423fe3960da7cefcf6ad3362dc6214
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 430e4cc047424e1bcb03b580568e8e8c
5cc536c7ebb6321ac952d3e7cf8b49e5446bd69e
aff0bac80a62f9afd7d96e90d5eaf1a34485c24131ae33ccecb2343e4291dc85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c009ebc7f8428a2b42bfded02ce064b
aacd16236c8c8522b789e7f1a719ddd4221e9e09
de21ff625e09b453b11b74ab831ea1ecdc36b84cf3dec26d2074ed097f74bdc3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&_u=4GBAAUAAAAAAACABI~&z=1873904199
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&_u=4GBAAUAAAAAAACABI~&z=1873904199
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&_u=4GBAAUAAAAAAACABI~&z=1873904199 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 13 Oct 2022 06:18:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c009ebc7f8428a2b42bfded02ce064b
aacd16236c8c8522b789e7f1a719ddd4221e9e09
de21ff625e09b453b11b74ab831ea1ecdc36b84cf3dec26d2074ed097f74bdc3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&_u=4GBAAUAAAAAAACABI~&z=1873904199
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&_u=4GBAAUAAAAAAACABI~&z=1873904199
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=26781085.1665641913&jid=1937749279&_u=4GBAAUAAAAAAACABI~&z=1873904199 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 13 Oct 2022 06:18:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.secureserver.net
104.17.208.240200 OK 19 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.secureserver.net
IP 104.17.208.240:0
File type ASCII text, with very long lines (62689), with no line terminators
Hash 303b9760a9bb85eafcc1a27ae8502d49
a1f3e0a8f02c12265fc82a9f2225a36f6574b354
3e17271ae13e6ec2f7d39a6edc4ae76d7bbd675d828c9c70607acee8ec09fe10
GET /dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.secureserver.net HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:32 GMT
content-type: application/javascript
cf-ray: 7595f55dfde8b4fd-OSL
access-control-allow-origin: *
age: 178715
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"f7f2-18381245af8"
last-modified: Tue, 27 Sep 2022 22:49:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=63474
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
142.250.74.66302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 13 Oct 2022 06:18:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7819db7b5768fe648b1aed362e9e45bf
03b464aab657bdc96e593b387bd47843ae9f1f30
0c2917ebec107eb55994aa414720ac821ceeca3140c8119de383d3bb0393e739
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 13:42:56 GMT
Expires: Wed, 19 Oct 2022 13:42:55 GMT
Etag: "03b464aab657bdc96e593b387bd47843ae9f1f30"
Cache-Control: max-age=544462,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7595f562ba32b4f4-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 430e4cc047424e1bcb03b580568e8e8c
5cc536c7ebb6321ac952d3e7cf8b49e5446bd69e
aff0bac80a62f9afd7d96e90d5eaf1a34485c24131ae33ccecb2343e4291dc85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gui.secureserver.net/pcjson/salesheader?plId=457669&shopperId=&sid=
104.110.14.92200 OK 368 B URL HTTP/1.1 gui.secureserver.net/pcjson/salesheader?plId=457669&shopperId=&sid=
IP 104.110.14.92:0
File type JSON data\012- , ASCII text, with very long lines (368), with no line terminators
Hash 51ac16850161fd5d40cb247effd2bd88
219a589bb89697c64db5b145b56cc76a1a876039
d2eb333c83b13b0ab5a97dc501b05ad32ed63df4d24ee4182c16d18d415cdcc4
GET /pcjson/salesheader?plId=457669&shopperId=&sid= HTTP/1.1
Host: gui.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Origin: https://www.secureserver.net
Connection: keep-alive
Cookie: market=en-US; currency=USD; _abck=5C4BEDDEED706B32685F366B2005967A~-1~YAAQ3U0kFw77oamDAQAAKJL+zwh00yJmuQtbgYv/s7kGd/qE57e0KFkXWyiKlsVZoLUG2RCHVC98gKwtr9CbjhTy/qLsxkqvBS4JgE4/VafdviI25AZMw7xerRjDdH+tk5gtN/NnLs+LgJxW4bFp0EhFcpNlXmDCY6J4PYg6jylEy4T759DnBHOBMxj/7kL5nU0+yMKI3hO9mQfd1Z9iJ4T7CLqRnib2SIJRLpIp3NKy5CrppgVALPkXN+qCvMNIqFeI0kPJGqPPA7wjrblUG2Hk2RfVUGNe2nThjwnUdd7fLuvzN7ILeYNEw0W409yx4qeFlLc0NjxfyZcthBqN18ET3wbpmuerkPR/fsbwjDYwHN4cKZjSN+ou/xfuOezQscXCqKneQIe4UUSFRC6zNA==~-1~-1~-1; ak_bmsc=42EBCAD1814382AE650F216B7A4C219F~000000000000000000000000000000~YAAQ3U0kFwz7oamDAQAA4JH+zxHTZ+R9VA0Bupb57KwlB+jKuITK4LQdvo35dscDZblbYmAwf6ufHBblY+MflMee+h7HXLFsKEST/Du/R8nG+9CU60y8FXMhgvroq/yJeGZCNuaQZyJIefahChMJlXGPVr1LLNzSyq1mXkiTSl+EN4sMzshSkOlc+JL4gEYtwWcT8ETOFbgni70DY/qmVQF02kGcfAt49iNmrZ+/H+CJdBiFTSMDR09YwRVyAswGjqRJVi5O0sRGFRP+NK7EuknRlSWCxHErW4SIVW3EiEkzGsM96K+OlQsw7X8X/tv7PYNwnQwX63wabV6H++bl+Si79mN7ewp3IQy0rtrWRNRMBcU9p0JHpvEyjaOppQPPETQi6sw=; bm_sz=1B16AB72790A4C6DCBCF68302A416B51~YAAQ3U0kFw37oamDAQAA4JH+zxGqXhnmmPTTOa8YkNZM+p6X8mEP2gMWQUQi02KSoNCJ1W3oHuG0YMfBEAJGhQdVxoAdBVt4bRm0870EMsdmzlOZgrgjTEhOB3cZ6DYU5EC+00/kcbAZbAhnbsM2+fWiSbg0q/xAagx45kvpi0B45me43oMGPd/bhuXwsQqbh/fOER37GhuFcTN7jhC1gKNso4HRPJ6TkLECOa+LRAO8vAz2kk3s28QqKMLavwbXIzt9m93pe37bu194RSnImbUUF7wwvgBT9fUkXoDc8L9GGlagkFAZcM0=~3421762~3224113; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f; fb_sessiontraffic=S_TOUCH=10/13/2022%2006:18:31.301&pathway=a8a46189-f423-5a3d-802b-43cb44b16d2f&V_DATE=10/12/2022%2023:18:31.300&pc=1; visitor=vid=a8a46189-f423-5a3d-802b-43cb44b16d2f; isc=PLPPT02003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: no-store, must-revalidate, no-cache, max-age=0
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5
P3P: policyref="/w3c/p3p.xml", CP="COM CNT DEM FIN GOV INT NAV ONL PHY PRE PUR STA UNI IDC CAO OTI DSP COR CUR OUR IND", policyref="/w3c/p3p.xml", CP="COM CNT DEM FIN GOV INT NAV ONL PHY PRE PUR STA UNI IDC CAO OTI DSP COR CUR i OUR IND"
Content-Length: 368
Date: Thu, 13 Oct 2022 06:18:33 GMT
Connection: keep-alive
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: x-requested-with, content-type, accept, origin, authorization, x-csrftoken
Access-Control-Allow-Methods: GET,POST,PUT,PATCH,DELETE
Access-Control-Allow-Origin: https://www.secureserver.net
Timing-Allow-Origin: *
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8581b38d6af468da492cee959a3a9974
f69ae1224de4aec60d7995598fcbda0999c48faf
26f4f88712ee36797e12feea5ed32faa9d440447e931796cacfe0d2b1616d15b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26F4F88712EE36797E12FEEA5ED32FAA9D440447E931796CACFE0D2B1616D15B"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17086
Expires: Thu, 13 Oct 2022 11:03:19 GMT
Date: Thu, 13 Oct 2022 06:18:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8581b38d6af468da492cee959a3a9974
f69ae1224de4aec60d7995598fcbda0999c48faf
26f4f88712ee36797e12feea5ed32faa9d440447e931796cacfe0d2b1616d15b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26F4F88712EE36797E12FEEA5ED32FAA9D440447E931796CACFE0D2B1616D15B"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17086
Expires: Thu, 13 Oct 2022 11:03:19 GMT
Date: Thu, 13 Oct 2022 06:18:33 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash a395e140eb831ae44e245f2c5dfee69f
66ca1e09f6e471cbbc1864eeb131cfe7b9ebf4b8
2186459261bff22aa0174c0eb1a62990d1f87f4e0a73129a4f6cb8fa6744f49c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=105391
Date: Thu, 13 Oct 2022 06:18:33 GMT
Etag: "634698e2-1d7"
Expires: Fri, 14 Oct 2022 11:35:04 GMT
Last-Modified: Wed, 12 Oct 2022 10:37:22 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GxnR21SRFIOJnHw7idGmLblluQfpeTNnWdtBNwQ_ay5Haq0LiWHYcw==
Age: 3462
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3004a422fa41f1445377829d44ba6400
e386901844a90ff43475b5e583f075843646d8e9
0be0da406b3575bd85a233f6b5415d3529ad90be690abe1de9aba19b237eb8cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6385
Cache-Control: max-age=85638
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:33 GMT
Etag: "6346404e-1d7"
Expires: Fri, 14 Oct 2022 06:05:51 GMT
Last-Modified: Wed, 12 Oct 2022 04:19:26 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cc44655d2bdc87da19a680100d3beab5
0cdddcf914407995adc42f9a049082d0a5775d3a
6ca5b08feb49d9105794e8c2a2db96cf7858959d63b08678ce7de2f3d88512ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5920
Cache-Control: max-age=171526
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:33 GMT
Etag: "6347919f-1d7"
Expires: Sat, 15 Oct 2022 05:57:19 GMT
Last-Modified: Thu, 13 Oct 2022 04:18:39 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cc44655d2bdc87da19a680100d3beab5
0cdddcf914407995adc42f9a049082d0a5775d3a
6ca5b08feb49d9105794e8c2a2db96cf7858959d63b08678ce7de2f3d88512ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6580
Cache-Control: max-age=172186
Content-Type: application/ocsp-response
Date: Thu, 13 Oct 2022 06:18:33 GMT
Etag: "6347919f-1d7"
Expires: Sat, 15 Oct 2022 06:08:19 GMT
Last-Modified: Thu, 13 Oct 2022 04:18:39 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
142.250.74.130200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=4821170659329;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 13 Oct 2022 06:18:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=9153196704737;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
142.250.74.130200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=9153196704737;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=9153196704737;gtm=2odaa0;auiddc=817777919.1665641912;u13=a8a46189-f423-5a3d-802b-43cb44b16d2f;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=a8a46189-f423-5a3d-802b-43cb44b16d2f;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 13 Oct 2022 06:18:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
consumer.krxd.net/consent/get/d3f5ea67-4486-480d-a551-8cc4bc815ae7?idt=device&dt=kxcookie&_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_consent_get_0
151.101.86.133200 OK 186 B URL HTTP/2 consumer.krxd.net/consent/get/d3f5ea67-4486-480d-a551-8cc4bc815ae7?idt=device&dt=kxcookie&_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_consent_get_0
IP 151.101.86.133:0
File type ASCII text, with no line terminators
Hash 505658116cbcd5524fa0146cb870951e
e1f9266568c62edfcaabf60142519de5a797bf61
c478e0843de164ad6314bee7979999cf9d40138b497f5110fb023b576846c055
GET /consent/get/d3f5ea67-4486-480d-a551-8cc4bc815ae7?idt=device&dt=kxcookie&_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_consent_get_0 HTTP/1.1
Host: consumer.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cache-control: max-age=1800
content-encoding: gzip
x-age: 0
accept-ranges: bytes
date: Thu, 13 Oct 2022 06:18:33 GMT
via: 1.1 varnish
age: 0
x-served-by: consumer-a011-ash-prod.krxd.net, cache-bma1676-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1665641913.288332,VS0,VE104
vary: Accept-Encoding
content-length: 186
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/4007276
13.107.213.53200 OK 2.4 kB URL HTTP/2 www.clarity.ms/tag/uet/4007276
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (2447), with no line terminators
Hash 010ca09d53ddf0ac27a8a21687edc5a1
04b2ee50932a06fcfbfd77d8092320080eb23d58
31e93d1f06be6372878b09f627a5ec50bf8dd055adae8aaa5da450de9f68e3a7
GET /tag/uet/4007276 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 2447
content-type: application/x-javascript
expires: -1
set-cookie: CLID=96595411a69147c28bef948546cb0dbf.20221013.20231013; expires=Fri, 13 Oct 2023 06:18:33 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:3f60b293-70d6-4805-b0bb-3484f0a73bf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0ua1HYwAAAAApCgSGycfOR6CNctJzjyblU1ZHMjBFREdFMDUyMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 13 Oct 2022 06:18:32 GMT
X-Firefox-Spdy: h2
beacon.krxd.net/event.gif?event_id=NrBzCIr2&event_type=default&_kuid=kppidff_PIou-fGd
52.48.197.119204 No Content 0 B URL HTTP/2 beacon.krxd.net/event.gif?event_id=NrBzCIr2&event_type=default&_kuid=kppidff_PIou-fGd
IP 52.48.197.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.gif?event_id=NrBzCIr2&event_type=default&_kuid=kppidff_PIou-fGd HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 13 Oct 2022 06:18:33 GMT
set-cookie: _kuid_=PIou-1lR; Expires=Tue, 11-Apr-23 06:18:33 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
e_NrBzCIr2^_kuid|kppidff_PIou-fGd=1665641913; Expires=Sat, 15-Oct-22 06:18:33 GMT; Max-Age=172800; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n004-dub-prod.krxd.net
x-request-time: D=49 t=1665641913
X-Firefox-Spdy: h2
3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
44.234.208.169200 OK 0 B URL HTTP/2 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
IP 44.234.208.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /intake/v2/rum/events HTTP/1.1
Host: 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.secureserver.net/
Origin: https://www.secureserver.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Content-Type, Content-Encoding, Accept
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: https://www.secureserver.net
access-control-expose-headers: Etag
access-control-max-age: 3600
date: Thu, 13 Oct 2022 06:18:33 GMT
vary: Origin
x-cloud-request-id: _heJuIb5RX218wrBiWqVJw
x-content-type-options: nosniff
x-found-handling-cluster: 3ac0518ee77644c287234980668228e1
x-found-handling-instance: instance-0000000017
content-length: 0
X-Firefox-Spdy: h2
3gntiugefk.execute-api.us-west-2.amazonaws.com/prod/v1/events?google_error=3
52.10.203.109200 OK 2 B URL HTTP/2 3gntiugefk.execute-api.us-west-2.amazonaws.com/prod/v1/events?google_error=3
IP 52.10.203.109:0
File type ASCII text, with no line terminators
Hash 9d4568c009d203ab10e33ea9953a0264
dd29ecf524b030a65261e3059c48ab9e1ecb2585
12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126
GET /prod/v1/events?google_error=3 HTTP/1.1
Host: 3gntiugefk.execute-api.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:33 GMT
content-type: application/json
content-length: 2
x-amzn-requestid: 9b378079-f25b-4085-8c93-b9ee78ee8037
x-amz-apigw-id: Z7gVAHD2vHcFzSw=
x-amzn-trace-id: Root=1-6347adb9-41f858ca5f13849b729a30e8;Sampled=0
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.42/clarity.js
13.107.213.53200 OK 23 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.42/clarity.js
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (54141)
Hash f016daac053b80575e11e20b6644142b
bc23277b8eae567b77c3dfc3f03b91fb054feda7
ee91529c076bf5e87a26b3c045e0b6e63326e6aa871dafea1c1509f73454123d
GET /eus2/s/0.6.42/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 23382
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8da7270bdf0d4"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0ua1HYwAAAAD0OcT4I5ZBS7Hk/zBcsLoAU1ZHMjBFREdFMDUyMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 13 Oct 2022 06:18:33 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=676DB9D983D3472F8DF129971957EEA8&RedC=c.clarity.ms&MXFR=2389ED2233CF67863C00FF1E37CF6934
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=2389ED2233CF67863C00FF1E37CF6934; domain=.clarity.ms; expires=Tue, 07-Nov-2023 06:18:33 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 13 Oct 2022 06:18:32 GMT
content-length: 0
X-Firefox-Spdy: h2
beacon.krxd.net/optout_check?_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_optOutCheck
52.48.197.119200 OK 62 B URL HTTP/2 beacon.krxd.net/optout_check?_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_optOutCheck
IP 52.48.197.119:0
File type ASCII text, with no line terminators
Hash a0520b2d63bf47fc5251dd7914e82310
a9fe0a62ab8bccd5ad6ce264a4da01f902e30fa5
9809085b9cca779ef02ad8dee06b80d1708ef1f09b5f00939b03e97e1669f53b
GET /optout_check?_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_optOutCheck HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:33 GMT
content-type: text/javascript
cache-control: private, max-age=0, s-max-age=0
x-served-by: beacon-n016-dub-prod.krxd.net
x-request-time: D=37 t=1665641913
X-Firefox-Spdy: h2
3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
44.234.208.169202 Accepted 0 B URL HTTP/2 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
IP 44.234.208.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 39418
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: https://www.secureserver.net
date: Thu, 13 Oct 2022 06:18:33 GMT
x-cloud-request-id: 7_0iptLqTlSm_zim1OPaDg
x-content-type-options: nosniff
x-found-handling-cluster: 3ac0518ee77644c287234980668228e1
x-found-handling-instance: instance-0000000016
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=676DB9D983D3472F8DF129971957EEA8&MUID=20F45562082C64BC2BD8475E09D96527
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=676DB9D983D3472F8DF129971957EEA8&MUID=20F45562082C64BC2BD8475E09D96527
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=676DB9D983D3472F8DF129971957EEA8&MUID=20F45562082C64BC2BD8475E09D96527 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 13-Oct-2022 06:28:34 GMT; path=/; SameSite=None; Secure;
date: Thu, 13 Oct 2022 06:18:33 GMT
content-length: 42
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 7bf7496d3a7a33f4a8c54f7c85edb551
40b1db6ca36ca1630f82c2f65a77f823f09a4cbb
62db93362f9957f632b92300ba83f7b16bef7b4756ad026c281a1da704120ebd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 13 Oct 2022 06:18:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 12 Oct 2022 20:35:40 GMT
Expires: Thu, 13 Oct 2022 20:35:40 GMT
ETag: "40b1db6ca36ca1630f82c2f65a77f823f09a4cbb"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 71879
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
date: Thu, 13 Oct 2022 06:18:34 GMT
X-Firefox-Spdy: h2
digitalcare.godaddy.com/dc-apis/messaging-bundle/bundle.js?env=prod&market=en-US
104.110.8.38500 Internal Server Error 0 B URL HTTP/2 digitalcare.godaddy.com/dc-apis/messaging-bundle/bundle.js?env=prod&market=en-US
IP 104.110.8.38:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dc-apis/messaging-bundle/bundle.js?env=prod&market=en-US HTTP/1.1
Host: digitalcare.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
content-length: 0
vary: Origin
strict-transport-security: max-age=15724800; includeSubDomains
expires: Thu, 13 Oct 2022 06:18:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 13 Oct 2022 06:18:35 GMT
set-cookie: CESSID=e5715e24-2a84-469a-ac3b-8ce229227c19; Path=/; Domain=godaddy.com
server-timing: cdn-cache; desc=MISS, edge; dur=2275, origin; dur=198
x-arc: 30
X-Firefox-Spdy: h2
3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
44.234.208.169202 Accepted 0 B URL HTTP/2 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
IP 44.234.208.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 1064
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: https://www.secureserver.net
date: Thu, 13 Oct 2022 06:18:35 GMT
x-cloud-request-id: mJRdJjrnSyqpLcIa4dEXvw
x-content-type-options: nosniff
x-found-handling-cluster: 3ac0518ee77644c287234980668228e1
x-found-handling-instance: instance-0000000016
content-length: 0
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js
142.250.74.164200 OK 0 B URL HTTP/2 www.google.com/adsense/domains/caf.js
IP 142.250.74.164:0
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 13 Oct 2022 06:18:27 GMT
expires: Thu, 13 Oct 2022 06:18:27 GMT
cache-control: private, max-age=3600
etag: "11059703472354090869"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js
23.36.79.16200 OK 0 B URL HTTP/2 img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
GET /parking-lander/static/js/2.5940ae1c.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ft4hH0fy+dFAnl68G4QyXJ3pS5VY+/K35zEViDI+w7z+sTosafl2fAW4g9NrUhyUgJ7JKbozLe8=
x-amz-request-id: FBDK3VS1K6HF0NCR
last-modified: Fri, 16 Sep 2022 17:52:00 GMT
etag: "04bb6e8d9135d976f28e9ba68fbc6f67"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4zafttojs22R6rxiZs_M0ICLL.vyZxyd
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 13 Oct 2023 06:18:27 GMT
date: Thu, 13 Oct 2022 06:18:27 GMT
content-length: 135541
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702
209.197.3.19200 OK 0 B URL HTTP/1.1 servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702
IP 209.197.3.19:0
GET /container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.4235418596889702 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:31 GMT
Connection: close
Cache-Control: no-cache, no-store
Content-Type: text/html
Server: prod-xre-app11.frk11
Pragma: no-cache
X-HW: 1665641911.dop205.sk1.t,1665641911.cds217.sk1.shn,1665641911.dop205.sk1.t,1665641911.cds018.sk1.sc,1665641911.cds018.sk1.p
servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563
209.197.3.19200 OK 0 B URL HTTP/1.1 servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563
IP 209.197.3.19:0
GET /container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.6845664425779563 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2022 06:18:31 GMT
Connection: close
Cache-Control: no-cache, no-store
Content-Type: text/html
Server: prod-xre-app5.frk11
Pragma: no-cache
X-HW: 1665641911.dop009.sk1.t,1665641911.cds204.sk1.shn,1665641911.dop009.sk1.t,1665641911.cds203.sk1.sc,1665641911.cds203.sk1.p
znccpilcxlhy2kxod-godaddy.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_cCpILcXLHy2kXOd&Q_LOC=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
104.17.208.240200 OK 0 B URL HTTP/2 znccpilcxlhy2kxod-godaddy.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_cCpILcXLHy2kXOd&Q_LOC=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 104.17.208.240:0
GET /WRSiteInterceptEngine/?Q_ZID=ZN_cCpILcXLHy2kXOd&Q_LOC=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: znccpilcxlhy2kxod-godaddy.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:31 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 7595f55dcdbcb4fd-OSL
access-control-allow-origin: *
age: 191162
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-JXQqjSXWuLuEFHoMKD0qAckifak"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
beacon.krxd.net/optout_check?_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_optOutCheck
52.48.197.119200 OK 0 B URL HTTP/2 beacon.krxd.net/optout_check?_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_optOutCheck
IP 52.48.197.119:0
GET /optout_check?_kuid=kppidff_PIou-fGd&callback=Krux.ns._default.kxjsonp_optOutCheck HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 13 Oct 2022 06:18:33 GMT
content-type: text/javascript
cache-control: private, max-age=0, s-max-age=0
x-served-by: beacon-n001-dub-prod.krxd.net
x-request-time: D=33 t=1665641913
X-Firefox-Spdy: h2