saumeechoa.com/4/1579719/
139.45.197.152301 Moved Permanently 162 B URL HTTP/1.1 saumeechoa.com/4/1579719/
IP 139.45.197.152:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /4/1579719/ HTTP/1.1
Host: saumeechoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 19 Sep 2022 10:11:58 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://saumeechoa.com/4/1579719/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3374
Expires: Mon, 19 Sep 2022 11:08:12 GMT
Date: Mon, 19 Sep 2022 10:11:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 09:12:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9iNPxAAVy4UiVQzROUgescpmD27-JTFdyEhihVuy1IWjxjOZcpBJvQ==
Age: 3558
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RliKvmOQNvbDuYAnX0cddsT5yYzsZp13YIWcrOaELb-a1Pr-gniaJA==
age: 20205
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c466982c266f892f22867bb1b546c10
c6271e34442bb88f59a91bd2ffc114cd398306e5
4d2d28e769ff7526e153b8abfb29e67cde4c84e7634ba3512bce07787d6b2362
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D2D28E769FF7526E153B8ABFB29E67CDE4C84E7634BA3512BCE07787D6B2362"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=589
Expires: Mon, 19 Sep 2022 10:21:47 GMT
Date: Mon, 19 Sep 2022 10:11:58 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
saumeechoa.com/favicon.ico
139.45.197.153204 No Content 0 B URL HTTP/2 saumeechoa.com/favicon.ico
IP 139.45.197.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: saumeechoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=addc324db8e8441ea54c455792520954; oaidts=1663582318
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 10:11:59 GMT
strict-transport-security: max-age=60
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 75925b52065e8c40d078aee85c947946
72219bfe4412de462135af38de924431a60cd5f5
e4931e694c717412c066464f1c206f1049ebe3fa70270dd550c84129e49b68bb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:11:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 06:25:21 GMT
Expires: Mon, 26 Sep 2022 06:25:20 GMT
Etag: "72219bfe4412de462135af38de924431a60cd5f5"
Cache-Control: max-age=590600,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74d18a567e16b512-OSL
ocsp.comodoca.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 2dabe3f61f52c9fbdcc8b212e3dee4fd
f999949d9f00711ab1add27c5cade97392a1ce4f
84fcd5be480f016967dad02b1ca2e2c8a86da68c775a15548c96c5c9ee409eb4
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:11:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 16:20:07 GMT
Expires: Sat, 24 Sep 2022 16:20:06 GMT
Etag: "f999949d9f00711ab1add27c5cade97392a1ce4f"
Cache-Control: max-age=456320,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 629
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74d18a56dd5ab503-OSL
my.rtmark.net/img.gif?f=merge&userId=addc324db8e8441ea54c455792520954
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=addc324db8e8441ea54c455792520954
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=addc324db8e8441ea54c455792520954 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:59 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=addc324db8e8441ea54c455792520954; expires=Tue, 19 Sep 2023 10:11:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:03:22 GMT
Cache-Control: max-age=3600
Expires: Mon, 19 Sep 2022 10:19:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dvP3rLdPicaToo2rXAke42LK3dgyVKL98kPpqZl1PWFBZ5oC52WH3A==
Age: 517
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 876
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:11:59 GMT
Last-Modified: Mon, 19 Sep 2022 09:57:23 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:11:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mahacet.com/discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1
5.9.96.241200 OK 8.4 kB URL HTTP/2 mahacet.com/discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1
IP 5.9.96.241:0
ASN #24940 Hetzner Online GmbH
Hash 8d1c0e35908823edb8e9fb0f50196265
b3c8083c048e8df7b69e4df3f4ce96fe2a240c89
372dbbd75f7e600f484f0a2db8638b41d2e74ebda8ed3f92eee18c74e235d6d8
GET /discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1 HTTP/1.1
Host: mahacet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:59 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 08:55:25 GMT
cache-control: max-age=300
expires: Mon, 19 Sep 2022 10:12:29 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-10193151-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-10193151-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 85dbbcdfb475438093d78a5584b3f5f9
0b12a212014215c83d7eece48c1f2ea24f94adb8
1d50e9d03cdb0cb92b423151b79181ff9216435899a1efef3cd85017bf2cb91f
GET /gtag/js?id=UA-10193151-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 Sep 2022 10:11:59 GMT
expires: Mon, 19 Sep 2022 10:11:59 GMT
cache-control: private, max-age=900
last-modified: Mon, 19 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42381
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:11:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.rtmark.net/p.js?f=sync&lr=1&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2
IP 139.45.195.8:0
Hash 50ddbff6dd8267c5925f72d28d9e3e3e
66883831e6bfc896216d0d9e25eb850aadc91511
fc1ba62996ffaf271c949fced99155b08a63c99dc87152a2fcb50c2ea9ffd93f
GET /p.js?f=sync&lr=1&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:59 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c90472d89a1b853ad1b912ffd0bc2007
2653296412e80a6bb4b3a411a6df576e7fea0741
1b5a0973707d5170d2e08e88dc5836a5b2d18d3a85dc37753c6fa96f76532f09
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:11:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 20:32:16 GMT
Expires: Sat, 24 Sep 2022 20:32:15 GMT
Etag: "2653296412e80a6bb4b3a411a6df576e7fea0741"
Cache-Control: max-age=468615,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74d18a58197bfac8-OSL
push.services.mozilla.com/
44.240.140.78101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.140.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GgTbnRE8PvmaYIJxLYphfQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EWvZwX7pj1/XJxjrFAlCjT1AKNc=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:11:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8b790d294c75698f440919fa4adf23d
09175e8bf2bdd8ee059bf8495758e457dca4a975
f6d2da5acd4c10b988ad3099f125ce5ce3ad1374213dc0e771c9d2865d2fd191
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6D2DA5ACD4C10B988AD3099F125CE5CE3AD1374213DC0E771C9D2865D2FD191"
Last-Modified: Sun, 18 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4031
Expires: Mon, 19 Sep 2022 11:19:10 GMT
Date: Mon, 19 Sep 2022 10:11:59 GMT
Connection: keep-alive
propeller-tracking.com/fv.js?t=102123
139.45.197.240200 OK 2.2 kB URL HTTP/2 propeller-tracking.com/fv.js?t=102123
IP 139.45.197.240:0
File type ASCII text, with very long lines (5213), with no line terminators
Hash 0254fb1dad74628b7ad0f97d304fac92
35f7af13a08eb87023ec7df4d3c35c21b2cde79d
47fb6ce428ca80ea69b772e4f66e4e5c622a4005db601746033d04511bd27536
GET /fv.js?t=102123 HTTP/1.1
Host: propeller-tracking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:59 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 1ced1b2e24b0b57d12349732d2f3ff84
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/www-player.css
216.58.211.14200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-player.css
IP 216.58.211.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3a057d9fa48ad6b735e91c1f7fd7909a
e6a67ab82ccccef2ff9c2a9675549db921d86a4d
62ace094defa260545fd5dad61759df34fe0ae1a8dc1f0cf40a70d28a04ea905
GET /s/player/a97e97de/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49363
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:35 GMT
expires: Sat, 16 Sep 2023 03:04:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/css
age: 284844
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
216.58.211.14200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.211.14:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:35 GMT
expires: Sat, 16 Sep 2023 03:04:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 284844
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.58.211.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 19 Sep 2022 08:29:41 GMT
expires: Mon, 19 Sep 2022 10:29:41 GMT
cache-control: public, max-age=7200
age: 6138
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
216.58.211.14200 OK 590 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (554)
Size 590 kB (589794 bytes)
Hash 2cf72d6908c8dfac7e8c8c5debe1bba0
69aef6123882a5df7a9460f8b69e16ef4312d757
b2beac7d81227b7916417f65959a82092770b53ab9f3add4d2603fbcf6838375
GET /s/player/a97e97de/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 589794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:13:47 GMT
expires: Sat, 16 Sep 2023 03:13:47 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 284292
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mahacet.com/favicon.ico
5.9.96.241200 OK 0 B IP 5.9.96.241:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: mahacet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:59 GMT
content-type: text/html; charset=UTF-8
content-length: 0
link: <https://mahacet.com/wp-json/>; rel="https://api.w.org/"
expires: Fri, 18 Nov 2022 10:11:59 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 280 B IP 172.64.155.188:0
Hash 553715c2896db4e1e8e4f6651a909fb3
00c2f2fcee92a14534d6ace08b6841b53e93501a
9acc5596f6b2598b4ca35c88e9e82c9bb9d75c0b4625860ad55055787d67bfdb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:11:59 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 21:53:47 GMT
Expires: Fri, 23 Sep 2022 21:53:46 GMT
Etag: "00c2f2fcee92a14534d6ace08b6841b53e93501a"
Cache-Control: max-age=387106,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74d18a5a6aceb512-OSL
www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
216.58.211.14200 OK 28 kB URL HTTP/2 www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
IP 216.58.211.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (60309)
Hash 302517d500f5327b57525be82591824f
966ca2224b4bbef6e1ca1c3b11f114ff9e90bed6
6da04114c552a0391bda34a750f8b1d71a57d8c84d1383145fa5bfb6f19b85a7
GET /embed/MRpqEcbnWdQ?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 19 Sep 2022 10:11:59 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=KsVhTsRcvOI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=2D1X5q9euSo; Domain=.youtube.com; Expires=Sat, 18-Mar-2023 10:11:59 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+578; expires=Wed, 18-Sep-2024 10:11:59 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
216.58.211.14200 OK 472 B URL HTTP/2 www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
IP 216.58.211.14:0
Hash 6f0747f732f05e110f9fe9938de620d3
d4e9a55014187d0d2af174e5c27d03cc10c6cb05
32a866308c9d930c425a8ced1974039a409528cb4a0bd07bfbe4d8cd39be9742
GET /s/player/a97e97de/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97939
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:35 GMT
expires: Sat, 16 Sep 2023 03:04:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 284844
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:11:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 164401
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:11:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6f0747f732f05e110f9fe9938de620d3
d4e9a55014187d0d2af174e5c27d03cc10c6cb05
32a866308c9d930c425a8ced1974039a409528cb4a0bd07bfbe4d8cd39be9742
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:11:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-10193151-1&cid=762906361.1663582301&jid=748792268&gjid=86334718&_gid=443893962.1663582301&_u=YEBAAUAAAAAAAC~&z=1211586879
142.251.1.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-10193151-1&cid=762906361.1663582301&jid=748792268&gjid=86334718&_gid=443893962.1663582301&_u=YEBAAUAAAAAAAC~&z=1211586879
IP 142.251.1.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-10193151-1&cid=762906361.1663582301&jid=748792268&gjid=86334718&_gid=443893962.1663582301&_u=YEBAAUAAAAAAAC~&z=1211586879 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://mahacet.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 19 Sep 2022 10:12:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2&ttl=&rurl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2&ttl=&rurl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2&ttl=&rurl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:00 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=c8b900294f684554bb35b5b0e6ecb1d4; expires=Tue, 19 Sep 2023 10:12:00 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ad.a-ads.com/2051809?size=728x90
136.243.3.135200 OK 568 kB URL HTTP/2 ad.a-ads.com/2051809?size=728x90
IP 136.243.3.135:0
ASN #24940 Hetzner Online GmbH
Size 568 kB (568177 bytes)
Hash 56b8e0c98f8c3cd6f2142fd90a14820e
22547aa04677431e70a3077402019a9725076edf
099b2a25657c28c6467862e5af863d489de62c542ca68d78008fd6d403e3ad76
GET /2051809?size=728x90 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:59 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://mahacet.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5cd63cb6d6ee0c229d42c30cea96385b
39b42291f5264020f2bb6f40bff517618aae0bcd
078d712d379fb57dce7db2075f83a1f4c65571e520f2cdbeccac3ddc008b05a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:00 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=mahacet.com&callback=_gfp_s_&client=ca-pub-5414070771498127
172.217.21.162200 OK 204 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=mahacet.com&callback=_gfp_s_&client=ca-pub-5414070771498127
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 87908955cdb10034e02caadc1140de95
48e75b9425b0891d57cd6ce8ffdf53e9f545ea80
71fd1645e38d5ae37260b33181cc14711a057a26fdac1f01468adfbef9608e19
GET /gampad/cookie.js?domain=mahacet.com&callback=_gfp_s_&client=ca-pub-5414070771498127 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:00 GMT
server: cafe
cache-control: private
content-length: 204
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:00 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5cd63cb6d6ee0c229d42c30cea96385b
39b42291f5264020f2bb6f40bff517618aae0bcd
078d712d379fb57dce7db2075f83a1f4c65571e520f2cdbeccac3ddc008b05a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ef491d15a0bde5279fa4fc8b426a9941
efd17fcc768356192e7ff660ecf77b5ca845ef77
43b144675694707debd0125a8e2a0acbc2a53ab34e33df0071ae8f0a2d0bfc05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:23 GMT
expires: Mon, 19 Sep 2022 10:14:23 GMT
cache-control: public, max-age=900
age: 757
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ef491d15a0bde5279fa4fc8b426a9941
efd17fcc768356192e7ff660ecf77b5ca845ef77
43b144675694707debd0125a8e2a0acbc2a53ab34e33df0071ae8f0a2d0bfc05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 19 Sep 2022 10:12:00 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4ee5c6443c11da4a5cf7ea801cd0c62f
e742a7ee1cbedf1a23a82361f3873dbc165f927c
e3682e49ed03efcf590a500154380807b54433f8344923e9017994bdf0d46924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36110)
Hash d348ea7c67cf70cc27add8ec15920c5f
46b2db74425f5c6c10c69831277b83c76c8c24b8
e9198b139add4e4683e04549366c63b57000c4e9d719c0e5820124d63d0fccff
GET /js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:09:26 GMT
expires: Thu, 14 Sep 2023 05:09:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Sep 2022 11:00:00 GMT
content-type: text/javascript
age: 450154
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c70ee3ed420e85c2eaf1666869c1188a
a6a0d8514bba1fa0679e12a2ad7294c969da7770
c3f17c5bf073c46c8b7d235d65d90982dd7abcbff7704657a19335c0f1d4fe5f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:00 GMT
server: ESF
cache-control: private
content-length: 31016
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 70f9595d3ff69b7cd89b24b56abdd7cc
09027fbaa6dfd33a97e836cd136c840f9ee763a2
44a5ee6a5a97426191dbbaf4e7a3d0ee154e1f192dd3c3cb3a11d74a702061eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eed36599724b02c61736ef5cebf3040b
aaa01755f0e96615159e0880b9d2e9c7dbe54a0c
017e0bc6c0ca49c88b0e21e1bf3be45c4c83974dc4ba5d90b6057310a5ff8fce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eed36599724b02c61736ef5cebf3040b
aaa01755f0e96615159e0880b9d2e9c7dbe54a0c
017e0bc6c0ca49c88b0e21e1bf3be45c4c83974dc4ba5d90b6057310a5ff8fce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/MRpqEcbnWdQ/maxresdefault.webp
142.250.74.86200 OK 66 kB URL HTTP/2 i.ytimg.com/vi_webp/MRpqEcbnWdQ/maxresdefault.webp
IP 142.250.74.86:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3c1f6fe8ab83efa0114f4e94c101349a
ca530bde74d42b0e669785e1c7ea0749aa2260b5
1e2dd26bc3ed674c89a55af10dcf567cac20dc0571cdd6bdb9b234f3f90ab1cc
GET /vi_webp/MRpqEcbnWdQ/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 66022
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:28:48 GMT
expires: Mon, 19 Sep 2022 11:28:48 GMT
cache-control: public, max-age=7200
etag: "1656001535"
content-type: image/webp
age: 2592
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 85a90b8e0126b27c0822c49645a463df
45792c551fabfa14db90396c2c34337929011a3b
13fe815828a5dc11870c98db4957f2f59aaf7e0eaec4028d3d88fb4b6e82588e
GET /pagead/js/r20220914/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9550
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:10:05 GMT
expires: Mon, 03 Oct 2022 10:10:05 GMT
cache-control: public, max-age=1209600
etag: 715955199520789971
content-type: text/javascript; charset=UTF-8
age: 115
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Mon, 19 Sep 2022 10:12:00 GMT
expires: Mon, 19 Sep 2022 10:12:00 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:24 GMT
expires: Mon, 03 Oct 2022 09:59:24 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 756
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ca3ab7a8411ba9c6350d504e65a95cc6
8b39f564b1b1cb1d262cb57b41a4bb5de331087f
cb51d72baec3c84ac94d419aab6d291b7596a9098525471fdb3fbbb6d34aa3db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 70f9595d3ff69b7cd89b24b56abdd7cc
09027fbaa6dfd33a97e836cd136c840f9ee763a2
44a5ee6a5a97426191dbbaf4e7a3d0ee154e1f192dd3c3cb3a11d74a702061eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu9VeU_ItGhTV5abv_ruXkrvLDUpiBrPHGfroZg4=s68-c-k-c0x00ffffff-no-rj
2.4 kB URL yt3.ggpht.com/ytc/AMLnZu9VeU_ItGhTV5abv_ruXkrvLDUpiBrPHGfroZg4=s68-c-k-c0x00ffffff-no-rj
IP :0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 311484db8a48fb9a6a46d6b48adfecab
5fcb17afb8df748d17b028ad6f120b7cab1ccc8a
c926d62d7a2613bb9d00e704ac77cfe8dadefdb920dc6cc6b5b134cfec3bd69d
GET /ytc/AMLnZu9VeU_ItGhTV5abv_ruXkrvLDUpiBrPHGfroZg4=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ca3ab7a8411ba9c6350d504e65a95cc6
8b39f564b1b1cb1d262cb57b41a4bb5de331087f
cb51d72baec3c84ac94d419aab6d291b7596a9098525471fdb3fbbb6d34aa3db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10717
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:12:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10717
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:12:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10717
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:12:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10717
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:12:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10717
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:12:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65ee14de38a7fcd768ede2f1915c74e4
85119aaf7195d59efc55e36d026bd026060195aa
62569b46e8af692f1d95d707ffdca24075ff6c68e68e13159ab7798b30a7755b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11712
x-amzn-requestid: d4547112-6faa-472e-ade1-bbbda9c3bea4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOSTFiXIAMFiLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790db-151bae0c351a94a40c48bfbc;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uRrPwbwQ6oBOYhMmxs6YquvIEBKaAC51d98J_5MWYkh-Q8Qg1LVdiw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "85119aaf7195d59efc55e36d026bd026060195aa"
content-type: image/jpeg
age: 44302
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4098577adb98eae5ba4a8b5e143df71
b0ad467f2837d103f8a96fb732bd34176c4c7110
83aa54020ffc684690dfb58d78608411de38ab02fee50808a8243c6b388e77c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5064
x-amzn-requestid: 985dbd5b-3e8a-4e22-a974-1effa6c99112
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOS8FyBoAMFrCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790df-201df5494f1513b91eefe9d5;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GIhj3a2-SwYu2w4mLx7JiIJzFfV82-Et89ORRsx5fsGOx9nttPlCxA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:13 GMT
etag: "b0ad467f2837d103f8a96fb732bd34176c4c7110"
content-type: image/jpeg
age: 44088
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da8b8819fc21dcfb224ce0e7ecdc6772
e460ad4376cd118a6fe8b6b050af9398117d9531
9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: e1792a3b-1893-48a6-8d01-463050259dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiGMYE3IoAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323ea4f-42ab13411e65943538101b11;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:15:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XmcyJv7bahHB4wMjFmgvh2fEkJJYLPhRrISZ_DczSErdEQjXIxWUvg==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:54:31 GMT
age: 22650
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1105b56cf779b6df1cbd081bbd0cda50
58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c
10c1f0433baf51e06565ff905688075aaba8fec0a8b3f9cef34168e297f94c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5866
x-amzn-requestid: 3a7db39d-cd4f-486f-954b-39fc7464706c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrNeAE67IAMFSoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63278f8c-66a419ac7fbd977f5f41061b;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TdVz72qdwMdsuW1WsOq1qEZk2vmbXJlbppLTTsZ9PlrmN7GEph0dyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c"
content-type: image/jpeg
age: 44302
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b174f977a78acf5f28935f44cac702d
7deb4e0fc838bcfffb532ff1f92f4036b35571f2
7e87fe13d3127a1c8e89f72c1455349d9edcb89eeb2a9b103d191095ddc69751
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5570
x-amzn-requestid: a20f5fb2-9c4a-4124-bc27-6b7cf99c5a73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn64FEKXoAMFbzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263e99-0edcfdf505c4467b31355e71;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Jp6TEMqaAAIs3jUsysER2sqaEob7LrzeR0vwp5I-gWSZsPxaFW4Vlg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:54:26 GMT
age: 44255
etag: "7deb4e0fc838bcfffb532ff1f92f4036b35571f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87bddc1f919e51c976d5377040861ea6
f5bf6c28f20414c7dd3ac1098defc46d3d68fd99
28541ca828b6358c8e6081e9f2022e7ad18a8adcb3df09a3fa079f32c08fcda6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10721
x-amzn-requestid: 5c3a2647-0af8-4cd2-8b68-df6606c6362e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yi1NMHVfoAMF-3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63243587-2b73a75b69570a1a144a5f73;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 08:36:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SpK-J7OfVkg8Gn_-wiaIKrqVl6t14P13ax8TPtsKDRXAVtHj9GWSwg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:43:59 GMT
age: 23282
etag: "f5bf6c28f20414c7dd3ac1098defc46d3d68fd99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/trackimp/N5295.134426.GOOGLEDISPLAYNETWOR/B26966257.323789788;dc_trk_aid=515909901;dc_trk_cid=163309495;ord=1693377237;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;ltd=?
216.58.207.198200 OK 42 B URL HTTP/2 ad.doubleclick.net/ddm/trackimp/N5295.134426.GOOGLEDISPLAYNETWOR/B26966257.323789788;dc_trk_aid=515909901;dc_trk_cid=163309495;ord=1693377237;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;ltd=?
IP 216.58.207.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/trackimp/N5295.134426.GOOGLEDISPLAYNETWOR/B26966257.323789788;dc_trk_aid=515909901;dc_trk_cid=163309495;ord=1693377237;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;ltd=? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:01 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstfqdWs81h8fr74pFcbGJjXAOHsCNJy_U23CC2xGZZEGrBaWc2dsudKC-JiRBPrNypbyjjbbTm24oOxcKENgWYKdqD7sgrjaDRk82bDCTELL322-L7TbaN9V3j37q1Sj4uu_9CMVj1MXdwZaEZ-K557Mm-Hh4e3XGe0MF9boD0l31RylyDnjNtiizjHKsO_8_qTHT3mqQr2cO_VLPGS2c4cfVJal8KpJiEPFxmTjJEnl_e5hl5QwAYv6-4CXhwCMDwpciwPzFId1n_WvvudaKnbgTn_r8ycn5RDwYkkKFm9IUQlet1VecXQk492CBHsS0ZbDAHjr7m4nMX0xqij_3Hp8RSLmgsn0b_ltWTccuRLco7FLodXutOj9TXS3jeGYtvrnYwXtF8ei4-ie7PJC_gFnHCBSeT4EyDg63SNDDO1c6uEQ2KLe32geQOWTXggJr5TzfwmoLwoYS-MzP4oIcrA-Ce02K1_NOrnrvjGwndNwR6_o5EhbWn-fnV7SXptQLyAcx0cAWPwcr9OyMQDeRn43F9973TwIeGxyEmAjL9vx2Ed6oJbBYju0ByzBzWrmxQZdR-jzbkatKoFfyWHITNbxvBqT43mehFQlfqClbM1kDTu5S7HGs25GeBESopnnTe819naoGMjszGjcnneHSZzxZYTU_11aQxV0egD06UA-mUFC2Lyv3xRiNTv6QsawCCPCHlcalyJs3ddASaq5Sn1vXNvmHmU585yycvFQSsvKQ9b86pOEvBWBEneAvpGgRWVByu60ubkTlbf6YJMQqcmmd1TKF-9LnoGwE-VG9AnAvZdJF78cSrJL4HhrFxmEH2ykk4E1bBQwdZy-7-JzPC8rbYl0Tc-2xgAh8VaADO5M3WkcSR9Eps7P1zODbQIK4p8314H4Ir8qyInW7yRa3IRHPTAe_nJGFSJ0RWaQNWgvkJLnmW722HgRBLcCdo5r_ubuhIqvinV33iR0rPIP6iiMJpbLlwFMI8Lm1i_USIeCFsib3HsAaYuk5NVj2WhSHMTtQtrN8g&sai=AMfl-YTSbTbbYTAw1Rxwy0Kl4YWwTe_g-3hyshVPtY493eolRj1uOTkfz918WTgE0o2RSUWXR3MtU_DDxMyN3FtsAqeF4Bah5DrJSHlsQE0iI1TDokbtotfpoHA8nYNf_fG4PLHUT5c4Koqbfwlv&sig=Cg0ArKJSzFYpRBb9BRhrEAE&cid=CAQSPgCsnQUx1oCfYU3iX_YrT4Mf86fp-RSNCSvEkcaEcI7UlDRwFouG83t8MNht_AJFvoVZBP4zOkSrcQ6KgdMYGAEgDg&id=lidar2&mcvt=1092&p=0,0,90,728&mtos=1092,1092,1092,1092,1092&tos=1092,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=2210784318&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582301112&rpt=1089&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstfqdWs81h8fr74pFcbGJjXAOHsCNJy_U23CC2xGZZEGrBaWc2dsudKC-JiRBPrNypbyjjbbTm24oOxcKENgWYKdqD7sgrjaDRk82bDCTELL322-L7TbaN9V3j37q1Sj4uu_9CMVj1MXdwZaEZ-K557Mm-Hh4e3XGe0MF9boD0l31RylyDnjNtiizjHKsO_8_qTHT3mqQr2cO_VLPGS2c4cfVJal8KpJiEPFxmTjJEnl_e5hl5QwAYv6-4CXhwCMDwpciwPzFId1n_WvvudaKnbgTn_r8ycn5RDwYkkKFm9IUQlet1VecXQk492CBHsS0ZbDAHjr7m4nMX0xqij_3Hp8RSLmgsn0b_ltWTccuRLco7FLodXutOj9TXS3jeGYtvrnYwXtF8ei4-ie7PJC_gFnHCBSeT4EyDg63SNDDO1c6uEQ2KLe32geQOWTXggJr5TzfwmoLwoYS-MzP4oIcrA-Ce02K1_NOrnrvjGwndNwR6_o5EhbWn-fnV7SXptQLyAcx0cAWPwcr9OyMQDeRn43F9973TwIeGxyEmAjL9vx2Ed6oJbBYju0ByzBzWrmxQZdR-jzbkatKoFfyWHITNbxvBqT43mehFQlfqClbM1kDTu5S7HGs25GeBESopnnTe819naoGMjszGjcnneHSZzxZYTU_11aQxV0egD06UA-mUFC2Lyv3xRiNTv6QsawCCPCHlcalyJs3ddASaq5Sn1vXNvmHmU585yycvFQSsvKQ9b86pOEvBWBEneAvpGgRWVByu60ubkTlbf6YJMQqcmmd1TKF-9LnoGwE-VG9AnAvZdJF78cSrJL4HhrFxmEH2ykk4E1bBQwdZy-7-JzPC8rbYl0Tc-2xgAh8VaADO5M3WkcSR9Eps7P1zODbQIK4p8314H4Ir8qyInW7yRa3IRHPTAe_nJGFSJ0RWaQNWgvkJLnmW722HgRBLcCdo5r_ubuhIqvinV33iR0rPIP6iiMJpbLlwFMI8Lm1i_USIeCFsib3HsAaYuk5NVj2WhSHMTtQtrN8g&sai=AMfl-YTSbTbbYTAw1Rxwy0Kl4YWwTe_g-3hyshVPtY493eolRj1uOTkfz918WTgE0o2RSUWXR3MtU_DDxMyN3FtsAqeF4Bah5DrJSHlsQE0iI1TDokbtotfpoHA8nYNf_fG4PLHUT5c4Koqbfwlv&sig=Cg0ArKJSzFYpRBb9BRhrEAE&cid=CAQSPgCsnQUx1oCfYU3iX_YrT4Mf86fp-RSNCSvEkcaEcI7UlDRwFouG83t8MNht_AJFvoVZBP4zOkSrcQ6KgdMYGAEgDg&id=lidar2&mcvt=1092&p=0,0,90,728&mtos=1092,1092,1092,1092,1092&tos=1092,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=2210784318&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582301112&rpt=1089&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstfqdWs81h8fr74pFcbGJjXAOHsCNJy_U23CC2xGZZEGrBaWc2dsudKC-JiRBPrNypbyjjbbTm24oOxcKENgWYKdqD7sgrjaDRk82bDCTELL322-L7TbaN9V3j37q1Sj4uu_9CMVj1MXdwZaEZ-K557Mm-Hh4e3XGe0MF9boD0l31RylyDnjNtiizjHKsO_8_qTHT3mqQr2cO_VLPGS2c4cfVJal8KpJiEPFxmTjJEnl_e5hl5QwAYv6-4CXhwCMDwpciwPzFId1n_WvvudaKnbgTn_r8ycn5RDwYkkKFm9IUQlet1VecXQk492CBHsS0ZbDAHjr7m4nMX0xqij_3Hp8RSLmgsn0b_ltWTccuRLco7FLodXutOj9TXS3jeGYtvrnYwXtF8ei4-ie7PJC_gFnHCBSeT4EyDg63SNDDO1c6uEQ2KLe32geQOWTXggJr5TzfwmoLwoYS-MzP4oIcrA-Ce02K1_NOrnrvjGwndNwR6_o5EhbWn-fnV7SXptQLyAcx0cAWPwcr9OyMQDeRn43F9973TwIeGxyEmAjL9vx2Ed6oJbBYju0ByzBzWrmxQZdR-jzbkatKoFfyWHITNbxvBqT43mehFQlfqClbM1kDTu5S7HGs25GeBESopnnTe819naoGMjszGjcnneHSZzxZYTU_11aQxV0egD06UA-mUFC2Lyv3xRiNTv6QsawCCPCHlcalyJs3ddASaq5Sn1vXNvmHmU585yycvFQSsvKQ9b86pOEvBWBEneAvpGgRWVByu60ubkTlbf6YJMQqcmmd1TKF-9LnoGwE-VG9AnAvZdJF78cSrJL4HhrFxmEH2ykk4E1bBQwdZy-7-JzPC8rbYl0Tc-2xgAh8VaADO5M3WkcSR9Eps7P1zODbQIK4p8314H4Ir8qyInW7yRa3IRHPTAe_nJGFSJ0RWaQNWgvkJLnmW722HgRBLcCdo5r_ubuhIqvinV33iR0rPIP6iiMJpbLlwFMI8Lm1i_USIeCFsib3HsAaYuk5NVj2WhSHMTtQtrN8g&sai=AMfl-YTSbTbbYTAw1Rxwy0Kl4YWwTe_g-3hyshVPtY493eolRj1uOTkfz918WTgE0o2RSUWXR3MtU_DDxMyN3FtsAqeF4Bah5DrJSHlsQE0iI1TDokbtotfpoHA8nYNf_fG4PLHUT5c4Koqbfwlv&sig=Cg0ArKJSzFYpRBb9BRhrEAE&cid=CAQSPgCsnQUx1oCfYU3iX_YrT4Mf86fp-RSNCSvEkcaEcI7UlDRwFouG83t8MNht_AJFvoVZBP4zOkSrcQ6KgdMYGAEgDg&id=lidar2&mcvt=1092&p=0,0,90,728&mtos=1092,1092,1092,1092,1092&tos=1092,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=2210784318&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582301112&rpt=1089&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=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
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=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
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=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 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstoc_6v7NmGesVrYQYt98QRuVkj1aH0lPuhZ-LCXCpv5GkVFZHpKwv-6WT8Qmx4r7F6SjgnKHKpGKD5u4ub67lDEA-IHoNTYsEMSKJmDoGy34CYdGEZQ5FN0wiQs0kB7uJ9qbwqAjJns8HNEQ0L0zZcxoa_q_JxM6H_RAiZlhyoURwtOTh0WIPqZa_VVL6fXrZMssWA8qQdk6CkTrj6YYyyIKaVj30z9WVlDfptOIr8L5O9w2h975kv16idgMd8p52tOFqoSL1zep1_s3EI095W-pJ_f10HVWs7xlEvNa6pp6KQ3HfPKFq35pU5u0mQj41as2nwbn3VLsqpGI9ImerG5FrrMJ9qSdbd7ru2ElzCfiKhUdiX6L4Lmz9yeTi8-nNwAlSahDyXbXP8k_6kMfHEDn5m7QtGCOSVLyudlFKljGIjBoW5kWl3odf73NStDOGJqCiUFjqrdnqmu9__g4Q1djLNGRKXL6rpys7-lkA5OSR77D1lF5CWk4pxqX3b229kuGHyLd3PUDRp5vPb9bUt3v4hay9q4Js3i1F3-9Tj4Bso6Prh214B_FEDGB_0cvCBHku3o9gIV1Ng4zO27-dJdR2JcE1vUxEW1ozXI2kJcS-aw3QV13Rpy2AEKx7v_lhkPbeDlVWLi-qQcBdUIztmdt_uKpY7aDsU3RB9Z46-oWm2z9h1imVgypKRnwnuUEE1Y2cKk3Bbxe1LshyEeKSCJJICgC5qKIF_RJxsqO-Jqx-JcHr7SU0xjGoPu97kDkrPQSOi7kp2BTMdppFqyO1aQuBI-jpWXReIidKX_MsXUmCNGz2flJ0tdUR67hNK5-snec3jRzaiRzZI8jiWBs933sqNoo2awOkAYVO0FVO1DhwRLCPEgNMD6qIHvwNJyC-4AqM0i97BVIaeRYKZBaNxIt9WRLI21eDUj2DrGZh30LiFIasCPDg4DZ4bdv3-R2uYMah3DV11Q32HqjtZJPKRcjCCLCb8oUArK9hIH16_mJ05xWypTOP9sljN8TdwptP0kH4rDm8&sai=AMfl-YRTQSVyuZYgw9coiJAwLoxIuy4uMHuuhErz7y8Ly-_0HOa-Y-4k6hwIimFocQ3JOPsd6SQUPR_c4A561a9q6ONnqGxVYskbB4rSPBQQ-Qk4BBnf_7kv8f0KyKUje9SHDW29Z7SoKNDUNAB3&sig=Cg0ArKJSzO_UdhePwSIJEAE&cid=CAQSPgCsnQUxfbjG7MwgvKgYrLnV990QN4ghy8eVfOXcAt0uGWL43oUhntf-62FPkHEGmM-TKs53C7jyx9cjV7q_GAEgDg&id=lidar2&mcvt=1227&p=0,0,90,728&mtos=1227,1227,1227,1227,1227&tos=1227,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582301107&rpt=1101&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstoc_6v7NmGesVrYQYt98QRuVkj1aH0lPuhZ-LCXCpv5GkVFZHpKwv-6WT8Qmx4r7F6SjgnKHKpGKD5u4ub67lDEA-IHoNTYsEMSKJmDoGy34CYdGEZQ5FN0wiQs0kB7uJ9qbwqAjJns8HNEQ0L0zZcxoa_q_JxM6H_RAiZlhyoURwtOTh0WIPqZa_VVL6fXrZMssWA8qQdk6CkTrj6YYyyIKaVj30z9WVlDfptOIr8L5O9w2h975kv16idgMd8p52tOFqoSL1zep1_s3EI095W-pJ_f10HVWs7xlEvNa6pp6KQ3HfPKFq35pU5u0mQj41as2nwbn3VLsqpGI9ImerG5FrrMJ9qSdbd7ru2ElzCfiKhUdiX6L4Lmz9yeTi8-nNwAlSahDyXbXP8k_6kMfHEDn5m7QtGCOSVLyudlFKljGIjBoW5kWl3odf73NStDOGJqCiUFjqrdnqmu9__g4Q1djLNGRKXL6rpys7-lkA5OSR77D1lF5CWk4pxqX3b229kuGHyLd3PUDRp5vPb9bUt3v4hay9q4Js3i1F3-9Tj4Bso6Prh214B_FEDGB_0cvCBHku3o9gIV1Ng4zO27-dJdR2JcE1vUxEW1ozXI2kJcS-aw3QV13Rpy2AEKx7v_lhkPbeDlVWLi-qQcBdUIztmdt_uKpY7aDsU3RB9Z46-oWm2z9h1imVgypKRnwnuUEE1Y2cKk3Bbxe1LshyEeKSCJJICgC5qKIF_RJxsqO-Jqx-JcHr7SU0xjGoPu97kDkrPQSOi7kp2BTMdppFqyO1aQuBI-jpWXReIidKX_MsXUmCNGz2flJ0tdUR67hNK5-snec3jRzaiRzZI8jiWBs933sqNoo2awOkAYVO0FVO1DhwRLCPEgNMD6qIHvwNJyC-4AqM0i97BVIaeRYKZBaNxIt9WRLI21eDUj2DrGZh30LiFIasCPDg4DZ4bdv3-R2uYMah3DV11Q32HqjtZJPKRcjCCLCb8oUArK9hIH16_mJ05xWypTOP9sljN8TdwptP0kH4rDm8&sai=AMfl-YRTQSVyuZYgw9coiJAwLoxIuy4uMHuuhErz7y8Ly-_0HOa-Y-4k6hwIimFocQ3JOPsd6SQUPR_c4A561a9q6ONnqGxVYskbB4rSPBQQ-Qk4BBnf_7kv8f0KyKUje9SHDW29Z7SoKNDUNAB3&sig=Cg0ArKJSzO_UdhePwSIJEAE&cid=CAQSPgCsnQUxfbjG7MwgvKgYrLnV990QN4ghy8eVfOXcAt0uGWL43oUhntf-62FPkHEGmM-TKs53C7jyx9cjV7q_GAEgDg&id=lidar2&mcvt=1227&p=0,0,90,728&mtos=1227,1227,1227,1227,1227&tos=1227,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582301107&rpt=1101&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstoc_6v7NmGesVrYQYt98QRuVkj1aH0lPuhZ-LCXCpv5GkVFZHpKwv-6WT8Qmx4r7F6SjgnKHKpGKD5u4ub67lDEA-IHoNTYsEMSKJmDoGy34CYdGEZQ5FN0wiQs0kB7uJ9qbwqAjJns8HNEQ0L0zZcxoa_q_JxM6H_RAiZlhyoURwtOTh0WIPqZa_VVL6fXrZMssWA8qQdk6CkTrj6YYyyIKaVj30z9WVlDfptOIr8L5O9w2h975kv16idgMd8p52tOFqoSL1zep1_s3EI095W-pJ_f10HVWs7xlEvNa6pp6KQ3HfPKFq35pU5u0mQj41as2nwbn3VLsqpGI9ImerG5FrrMJ9qSdbd7ru2ElzCfiKhUdiX6L4Lmz9yeTi8-nNwAlSahDyXbXP8k_6kMfHEDn5m7QtGCOSVLyudlFKljGIjBoW5kWl3odf73NStDOGJqCiUFjqrdnqmu9__g4Q1djLNGRKXL6rpys7-lkA5OSR77D1lF5CWk4pxqX3b229kuGHyLd3PUDRp5vPb9bUt3v4hay9q4Js3i1F3-9Tj4Bso6Prh214B_FEDGB_0cvCBHku3o9gIV1Ng4zO27-dJdR2JcE1vUxEW1ozXI2kJcS-aw3QV13Rpy2AEKx7v_lhkPbeDlVWLi-qQcBdUIztmdt_uKpY7aDsU3RB9Z46-oWm2z9h1imVgypKRnwnuUEE1Y2cKk3Bbxe1LshyEeKSCJJICgC5qKIF_RJxsqO-Jqx-JcHr7SU0xjGoPu97kDkrPQSOi7kp2BTMdppFqyO1aQuBI-jpWXReIidKX_MsXUmCNGz2flJ0tdUR67hNK5-snec3jRzaiRzZI8jiWBs933sqNoo2awOkAYVO0FVO1DhwRLCPEgNMD6qIHvwNJyC-4AqM0i97BVIaeRYKZBaNxIt9WRLI21eDUj2DrGZh30LiFIasCPDg4DZ4bdv3-R2uYMah3DV11Q32HqjtZJPKRcjCCLCb8oUArK9hIH16_mJ05xWypTOP9sljN8TdwptP0kH4rDm8&sai=AMfl-YRTQSVyuZYgw9coiJAwLoxIuy4uMHuuhErz7y8Ly-_0HOa-Y-4k6hwIimFocQ3JOPsd6SQUPR_c4A561a9q6ONnqGxVYskbB4rSPBQQ-Qk4BBnf_7kv8f0KyKUje9SHDW29Z7SoKNDUNAB3&sig=Cg0ArKJSzO_UdhePwSIJEAE&cid=CAQSPgCsnQUxfbjG7MwgvKgYrLnV990QN4ghy8eVfOXcAt0uGWL43oUhntf-62FPkHEGmM-TKs53C7jyx9cjV7q_GAEgDg&id=lidar2&mcvt=1227&p=0,0,90,728&mtos=1227,1227,1227,1227,1227&tos=1227,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582301107&rpt=1101&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAAIEAwBAoNEDkhAAAAAAAwckAwBAoNEDohAAAAAABAckAwBAoNEDshAAAAAACUkEAwBAoNEDwhAAAAAACQkkAwBAoNED0hAAAAAACUkkAwBAoNED4hAAAAAABonkAwBAoNED8hAAAAAABonkAwBAoNEEAhAAAAAACMnkAwBBIaQ0oyYW00clBvUG9DRlF4YkdBb2RKNmdOMWciEXRleHQvZWRpdG9yaWFsX3YxKBU=
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAAIEAwBAoNEDkhAAAAAAAwckAwBAoNEDohAAAAAABAckAwBAoNEDshAAAAAACUkEAwBAoNEDwhAAAAAACQkkAwBAoNED0hAAAAAACUkkAwBAoNED4hAAAAAABonkAwBAoNED8hAAAAAABonkAwBAoNEEAhAAAAAACMnkAwBBIaQ0oyYW00clBvUG9DRlF4YkdBb2RKNmdOMWciEXRleHQvZWRpdG9yaWFsX3YxKBU=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAAIEAwBAoNEDkhAAAAAAAwckAwBAoNEDohAAAAAABAckAwBAoNEDshAAAAAACUkEAwBAoNEDwhAAAAAACQkkAwBAoNED0hAAAAAACUkkAwBAoNED4hAAAAAABonkAwBAoNED8hAAAAAABonkAwBAoNEEAhAAAAAACMnkAwBBIaQ0oyYW00clBvUG9DRlF4YkdBb2RKNmdOMWciEXRleHQvZWRpdG9yaWFsX3YxKBU= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=102123&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 10:12:02 GMT
access-control-allow-origin: https://mahacet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 1ff67c3a1af6b185620fd7135939e238
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220914&st=env
142.250.74.130200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220914&st=env
IP 142.250.74.130:0
File type JSON data\012- , ASCII text, with very long lines (14777), with no line terminators
Hash 6eb863ba4be0e8c8f900f51786aa8cc9
90d1a97dddfe3ec1ebcf29a3dc38fd0f89c32d96
bdd61122f3cfaf8ab9bb9d23f8f44514255e7197f20befde7540eb355daf33bd
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220914&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:02 GMT
server: cafe
cache-control: private
content-length: 11222
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mahacet.com/discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1
5.9.96.241200 OK 63 kB URL HTTP/2 mahacet.com/discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1
IP 5.9.96.241:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3461), with CRLF, LF line terminators
Hash 16eaad4d7a0abe3722c7eb6cb47d2941
a2dbe8396391e6bac60df8de63727a69950b61f0
66f040f8d699a15fa3bc77b5eb43cf18275ee904bca316ba58c233411f21c32f
GET /discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1 HTTP/1.1
Host: mahacet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.2.762906361.1663582301; _gid=GA1.2.443893962.1663582301; _gat_gtag_UA_10193151_1=1; __gads=ID=72f02f674833c99a-2211742b25ce004b:T=1663582320:RT=1663582320:S=ALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:02 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 08:55:25 GMT
cache-control: max-age=300
expires: Mon, 19 Sep 2022 10:12:29 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssDtPcVDxqGLtGVhzP__dohk8GaJKCyefO543F9ad5FmJjliSdCVRrtZBcwTkSMIZali68REFNdqTdPaRqh_imHqS4NHbHw8Sr1TbvpMgsO5yrMq7_iAcqefSVfVbe40Eh221Fhj4gsw-n4Bk71L9u1Dx9oeivsGJAnytyT951RsXBE-AOsBbzZOZmK8Vu5IVs7jR4aQwWrm5Xwp3ksSTO0TDPIA7RcH0LA_X88kVM_wVBlZynOR1diINAMfTHUg2veW2GEvzFqZzeN0AiuJPe7T5-DX1gIsRB0q2h7iEXmTZT-2YeOUSR-U8pta4ESlEJAvmRTre-5F4HQOMzet83554oXv3gwXsw2MMe3W_NOotBHqkU-BiJDCylfvPfx5kgsKCtECH9WqxzAOKG78-HJ_Hr5z6UHTdKXa79gZR2DsAy7eexTq-sCbhtL4huRQR7xoteHcLciyS-DX5ZQn1sUXQG_bH9yoWHL6i4oWpHN4br_fjCIZrR7h8STiwPdyZfHD4lH4MzGKt9LDHu6BOOH9SXBid3FZsOJUNw0l-YS1yH3h0WmQvAOIeBNTvKakhY25gS3brC5iJ-w1WNkucF3MsvH66pNn7-RFlwUEaW4BTs_S6uSoGPQrPQdXkOQdOUZit-O3M1h9TVMThPYtrH3RJrLywd7a8DCXf5RhAGVQx_uHcPTcibR62U8BUk_yh1Lm12OHZ7F9NihFVm0i5ylLzZG-dF04os9SiRgFlNPtdUXgtMbCw_xyMC75SglZV4Y4Rsgru8S0VSgX3Nvbf10-LbVey-CNL1WlTNZxSg5uqVN6N16vCJu6laT9JKQ3d-dgkzQAo43h85n2GY_q0_XoF-VNznep-fMH0jpAqPOcnZu_A9DI5w0ibzuK7_v2F5qya65uyazUmzBnH9yG1a4wLKOjKpTGfWbZ2NYQ8EakRPt1WmAAmVDtsgzbM9l6OuEqy4sV-snYIOlIMY8fX3hLJIYJRvQZ5W4UTbMLl3uSqbxlWWaQkI-BnlLFKQ9Q_DxkMx6NgLLyg&sai=AMfl-YQhhRMSXcZm4a3XucuPyUNBt6UI2vK4itjPaFktNz2bDEF1VoV_YXWicE87SSNRa78TwCuazc6vmm4mo5DuQMZWQ3lfs0aLBVhiZShsxB0Nf9FrgApfFGykudMRIGWKUENpEcPTkqhV00fH&sig=Cg0ArKJSzFzapNMEODqSEAE&cid=CAQSPgCsnQUx18S6TrLkeqPYS83HVhqFzwuy7GvpQagxwfqYwV6WJ02oY7_ynvM4x-gkKWe__lA7Am5CKMpJc2ERGAEgDg&id=lidar2&mcvt=1014&p=0,0,250,970&mtos=1014,1014,1014,1014,1014&tos=1014,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1268289179&rs=2&la=1&cr=0&vs=4&r=v&rst=1663582301103&rpt=1205&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssDtPcVDxqGLtGVhzP__dohk8GaJKCyefO543F9ad5FmJjliSdCVRrtZBcwTkSMIZali68REFNdqTdPaRqh_imHqS4NHbHw8Sr1TbvpMgsO5yrMq7_iAcqefSVfVbe40Eh221Fhj4gsw-n4Bk71L9u1Dx9oeivsGJAnytyT951RsXBE-AOsBbzZOZmK8Vu5IVs7jR4aQwWrm5Xwp3ksSTO0TDPIA7RcH0LA_X88kVM_wVBlZynOR1diINAMfTHUg2veW2GEvzFqZzeN0AiuJPe7T5-DX1gIsRB0q2h7iEXmTZT-2YeOUSR-U8pta4ESlEJAvmRTre-5F4HQOMzet83554oXv3gwXsw2MMe3W_NOotBHqkU-BiJDCylfvPfx5kgsKCtECH9WqxzAOKG78-HJ_Hr5z6UHTdKXa79gZR2DsAy7eexTq-sCbhtL4huRQR7xoteHcLciyS-DX5ZQn1sUXQG_bH9yoWHL6i4oWpHN4br_fjCIZrR7h8STiwPdyZfHD4lH4MzGKt9LDHu6BOOH9SXBid3FZsOJUNw0l-YS1yH3h0WmQvAOIeBNTvKakhY25gS3brC5iJ-w1WNkucF3MsvH66pNn7-RFlwUEaW4BTs_S6uSoGPQrPQdXkOQdOUZit-O3M1h9TVMThPYtrH3RJrLywd7a8DCXf5RhAGVQx_uHcPTcibR62U8BUk_yh1Lm12OHZ7F9NihFVm0i5ylLzZG-dF04os9SiRgFlNPtdUXgtMbCw_xyMC75SglZV4Y4Rsgru8S0VSgX3Nvbf10-LbVey-CNL1WlTNZxSg5uqVN6N16vCJu6laT9JKQ3d-dgkzQAo43h85n2GY_q0_XoF-VNznep-fMH0jpAqPOcnZu_A9DI5w0ibzuK7_v2F5qya65uyazUmzBnH9yG1a4wLKOjKpTGfWbZ2NYQ8EakRPt1WmAAmVDtsgzbM9l6OuEqy4sV-snYIOlIMY8fX3hLJIYJRvQZ5W4UTbMLl3uSqbxlWWaQkI-BnlLFKQ9Q_DxkMx6NgLLyg&sai=AMfl-YQhhRMSXcZm4a3XucuPyUNBt6UI2vK4itjPaFktNz2bDEF1VoV_YXWicE87SSNRa78TwCuazc6vmm4mo5DuQMZWQ3lfs0aLBVhiZShsxB0Nf9FrgApfFGykudMRIGWKUENpEcPTkqhV00fH&sig=Cg0ArKJSzFzapNMEODqSEAE&cid=CAQSPgCsnQUx18S6TrLkeqPYS83HVhqFzwuy7GvpQagxwfqYwV6WJ02oY7_ynvM4x-gkKWe__lA7Am5CKMpJc2ERGAEgDg&id=lidar2&mcvt=1014&p=0,0,250,970&mtos=1014,1014,1014,1014,1014&tos=1014,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1268289179&rs=2&la=1&cr=0&vs=4&r=v&rst=1663582301103&rpt=1205&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjssDtPcVDxqGLtGVhzP__dohk8GaJKCyefO543F9ad5FmJjliSdCVRrtZBcwTkSMIZali68REFNdqTdPaRqh_imHqS4NHbHw8Sr1TbvpMgsO5yrMq7_iAcqefSVfVbe40Eh221Fhj4gsw-n4Bk71L9u1Dx9oeivsGJAnytyT951RsXBE-AOsBbzZOZmK8Vu5IVs7jR4aQwWrm5Xwp3ksSTO0TDPIA7RcH0LA_X88kVM_wVBlZynOR1diINAMfTHUg2veW2GEvzFqZzeN0AiuJPe7T5-DX1gIsRB0q2h7iEXmTZT-2YeOUSR-U8pta4ESlEJAvmRTre-5F4HQOMzet83554oXv3gwXsw2MMe3W_NOotBHqkU-BiJDCylfvPfx5kgsKCtECH9WqxzAOKG78-HJ_Hr5z6UHTdKXa79gZR2DsAy7eexTq-sCbhtL4huRQR7xoteHcLciyS-DX5ZQn1sUXQG_bH9yoWHL6i4oWpHN4br_fjCIZrR7h8STiwPdyZfHD4lH4MzGKt9LDHu6BOOH9SXBid3FZsOJUNw0l-YS1yH3h0WmQvAOIeBNTvKakhY25gS3brC5iJ-w1WNkucF3MsvH66pNn7-RFlwUEaW4BTs_S6uSoGPQrPQdXkOQdOUZit-O3M1h9TVMThPYtrH3RJrLywd7a8DCXf5RhAGVQx_uHcPTcibR62U8BUk_yh1Lm12OHZ7F9NihFVm0i5ylLzZG-dF04os9SiRgFlNPtdUXgtMbCw_xyMC75SglZV4Y4Rsgru8S0VSgX3Nvbf10-LbVey-CNL1WlTNZxSg5uqVN6N16vCJu6laT9JKQ3d-dgkzQAo43h85n2GY_q0_XoF-VNznep-fMH0jpAqPOcnZu_A9DI5w0ibzuK7_v2F5qya65uyazUmzBnH9yG1a4wLKOjKpTGfWbZ2NYQ8EakRPt1WmAAmVDtsgzbM9l6OuEqy4sV-snYIOlIMY8fX3hLJIYJRvQZ5W4UTbMLl3uSqbxlWWaQkI-BnlLFKQ9Q_DxkMx6NgLLyg&sai=AMfl-YQhhRMSXcZm4a3XucuPyUNBt6UI2vK4itjPaFktNz2bDEF1VoV_YXWicE87SSNRa78TwCuazc6vmm4mo5DuQMZWQ3lfs0aLBVhiZShsxB0Nf9FrgApfFGykudMRIGWKUENpEcPTkqhV00fH&sig=Cg0ArKJSzFzapNMEODqSEAE&cid=CAQSPgCsnQUx18S6TrLkeqPYS83HVhqFzwuy7GvpQagxwfqYwV6WJ02oY7_ynvM4x-gkKWe__lA7Am5CKMpJc2ERGAEgDg&id=lidar2&mcvt=1014&p=0,0,250,970&mtos=1014,1014,1014,1014,1014&tos=1014,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1268289179&rs=2&la=1&cr=0&vs=4&r=v&rst=1663582301103&rpt=1205&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unphionetor.com/vb?t=102123&bid=undefined&aid=undefined&tp=3861
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vb?t=102123&bid=undefined&aid=undefined&tp=3861
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vb?t=102123&bid=undefined&aid=undefined&tp=3861 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 10:12:02 GMT
access-control-allow-origin: https://mahacet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: e1909344d83f4056bacfee18ccb90c58
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvEIuVSZPGH-Ljo91HuxQHYZuNEOjhNl0MX8pLSMQ4y6G7pnoDigPMH9Es1fEXnaL3VUbpvNzeDL7_B7SEd9W7GBLF39om8eqv3tqiU2Dvwx7mQP-AFYHazXgWBDS10cp8-jI-atS7a-orDmrHS2mUu4TH1_d_KF36YtA&sai=AMfl-YSvHJ8A59c1WhXQgIxInaFdz4W-kKYkBYE27cFVEHHI1mIll5Mg9rQE5Nvb57GOe1oyKSA3FsmL-QgtWLatxF-0HTMlr1SvXNAAIL-uiJnQoCu1AVuLHKLj57xh75A&sig=Cg0ArKJSzGJLnq_XZxE8EAE&cid=CAQSPgCsnQUxik_TUUwMGPeSp8akEdhMQ2BHFg1ZhXrV7wVWfl1WqXEXE_S36BgPtPXCujUzRA1idL7EWxTUuW1pGAEgDg&id=lidartos&mcvt=859&p=0,0,90,728&mtos=859,859,859,859,859&tos=859,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=643801748&rs=2&la=0&cr=0&vs=3&r=b&rst=1663582301092&rpt=1522&ec=0&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvEIuVSZPGH-Ljo91HuxQHYZuNEOjhNl0MX8pLSMQ4y6G7pnoDigPMH9Es1fEXnaL3VUbpvNzeDL7_B7SEd9W7GBLF39om8eqv3tqiU2Dvwx7mQP-AFYHazXgWBDS10cp8-jI-atS7a-orDmrHS2mUu4TH1_d_KF36YtA&sai=AMfl-YSvHJ8A59c1WhXQgIxInaFdz4W-kKYkBYE27cFVEHHI1mIll5Mg9rQE5Nvb57GOe1oyKSA3FsmL-QgtWLatxF-0HTMlr1SvXNAAIL-uiJnQoCu1AVuLHKLj57xh75A&sig=Cg0ArKJSzGJLnq_XZxE8EAE&cid=CAQSPgCsnQUxik_TUUwMGPeSp8akEdhMQ2BHFg1ZhXrV7wVWfl1WqXEXE_S36BgPtPXCujUzRA1idL7EWxTUuW1pGAEgDg&id=lidartos&mcvt=859&p=0,0,90,728&mtos=859,859,859,859,859&tos=859,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=643801748&rs=2&la=0&cr=0&vs=3&r=b&rst=1663582301092&rpt=1522&ec=0&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsvEIuVSZPGH-Ljo91HuxQHYZuNEOjhNl0MX8pLSMQ4y6G7pnoDigPMH9Es1fEXnaL3VUbpvNzeDL7_B7SEd9W7GBLF39om8eqv3tqiU2Dvwx7mQP-AFYHazXgWBDS10cp8-jI-atS7a-orDmrHS2mUu4TH1_d_KF36YtA&sai=AMfl-YSvHJ8A59c1WhXQgIxInaFdz4W-kKYkBYE27cFVEHHI1mIll5Mg9rQE5Nvb57GOe1oyKSA3FsmL-QgtWLatxF-0HTMlr1SvXNAAIL-uiJnQoCu1AVuLHKLj57xh75A&sig=Cg0ArKJSzGJLnq_XZxE8EAE&cid=CAQSPgCsnQUxik_TUUwMGPeSp8akEdhMQ2BHFg1ZhXrV7wVWfl1WqXEXE_S36BgPtPXCujUzRA1idL7EWxTUuW1pGAEgDg&id=lidartos&mcvt=859&p=0,0,90,728&mtos=859,859,859,859,859&tos=859,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=643801748&rs=2&la=0&cr=0&vs=3&r=b&rst=1663582301092&rpt=1522&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstC_qHhUO2rxmXH2bMmHTTd0aPadc_zwb5-5GcLsrf6RuzDwVWFfSDMzu5vU_0FLnN4429nmshx-TttKwmGFTGiwgx9sLOkTOsXLvA9qXIgBg9kIfKVJsWer2ioIanauF0slVoXlkiQ6e36TX4mNym6bb-Sjj4zmBIvnUxKB4u8PeENjfjLWLwZ_Ib5NbiK5qQNd3nuNSSEAwfimRAcqlnXawuagM_xeu0zh0W33MqICplhOf-DHmuuO-o3s8rOXixRY845RE_Jc0paCW1majLJD_HJpdHo5vT3FP85p6EEeRDevlmFfzmgqNfrUZ-lpO1pFi3jHv2ClvpS20BNG0Q6CNKjz_lm26dwo2ZibNQ8NgIpWDdqBudCm5rwucKIpmUm7pE0IzGf_lwYmp4cv13U3ZhbiZPwX3UC8PAWHnz9SeCjdOUJLislSbp_PWxsL68aMR3xcTJS7PP_GH-LBCaePStBtdlOVcFpxBaFRkrZBS3RQQg7Qsfh_WKc5iChBAWWbEybCE-fIuAMrMeLkwhYdmEkn71ohxc6emZ4Bu-Fqg3I85T9-QsFqv8Rpr-rGt-J_d128E0_Jl1SCosfiefLpoldalT0IvreEept-DTkpw8wAitkiOptnNyoaewx1EyOSUzdCUaCjEU7VlqCGqw1_xt0IsHWQcpee4nu8o5dxOZyhlg-dSb7eZVuSJa77RB1SXkp9iiTbA9y5EG1OnoeaVf8S6cjTG7zjXqIVIZ5lg5awHCUwnuXZiyF-t8xRPkCL6uRfDzBiBnehpEt3iTbXOiQ5VF3jMU5EYh7RkUIyMQ2YWFvyTQCMelcSDJeqdcohBsVQzSZq32psX6cY_ieDEoe8aMwhvTIz8WJei7yEH6FtXBdQcyj255HCO_xJhXH18nMOBsLo_DZ_wlLoYyfeeSYBsNr8GfWW6jClrw3JQRPfiKNPsedshZS9PMznfd9BOe-usMUq9SgcLB8Lbe2uJJtpOr3VsjBNupy4ucE8kJ12wt8_FzuT6nSrR0mtMqmfff7Uyo&sai=AMfl-YRZ8cPHO7taQdtZxSaLKS3P24ZTB-XkpnCeJSIeueOwvhvtMBpPv9RcIIDIiFiAsdjiZlYgIxUJyoIlqvbCI1icOYwtiTq_T-T8k0b-r_NcN_MmlY2q7tmp3leMhL1OIDa5ioaPJ2YFbk1p&sig=Cg0ArKJSzBOYK52PiKRPEAE&cid=CAQSPgCsnQUxaIYzsr0cYthEVtyn2-obDRynpswvLtT0w0EBGHHqYbcENEMQvx9CN9uZHuzb0W8Tnchgp98mvPBAGAEgDg&id=lidartos&mcvt=1359&p=0,0,90,728&mtos=1359,1359,1359,1359,1359&tos=1359,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=850080377&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301097&rpt=1120&ec=0&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstC_qHhUO2rxmXH2bMmHTTd0aPadc_zwb5-5GcLsrf6RuzDwVWFfSDMzu5vU_0FLnN4429nmshx-TttKwmGFTGiwgx9sLOkTOsXLvA9qXIgBg9kIfKVJsWer2ioIanauF0slVoXlkiQ6e36TX4mNym6bb-Sjj4zmBIvnUxKB4u8PeENjfjLWLwZ_Ib5NbiK5qQNd3nuNSSEAwfimRAcqlnXawuagM_xeu0zh0W33MqICplhOf-DHmuuO-o3s8rOXixRY845RE_Jc0paCW1majLJD_HJpdHo5vT3FP85p6EEeRDevlmFfzmgqNfrUZ-lpO1pFi3jHv2ClvpS20BNG0Q6CNKjz_lm26dwo2ZibNQ8NgIpWDdqBudCm5rwucKIpmUm7pE0IzGf_lwYmp4cv13U3ZhbiZPwX3UC8PAWHnz9SeCjdOUJLislSbp_PWxsL68aMR3xcTJS7PP_GH-LBCaePStBtdlOVcFpxBaFRkrZBS3RQQg7Qsfh_WKc5iChBAWWbEybCE-fIuAMrMeLkwhYdmEkn71ohxc6emZ4Bu-Fqg3I85T9-QsFqv8Rpr-rGt-J_d128E0_Jl1SCosfiefLpoldalT0IvreEept-DTkpw8wAitkiOptnNyoaewx1EyOSUzdCUaCjEU7VlqCGqw1_xt0IsHWQcpee4nu8o5dxOZyhlg-dSb7eZVuSJa77RB1SXkp9iiTbA9y5EG1OnoeaVf8S6cjTG7zjXqIVIZ5lg5awHCUwnuXZiyF-t8xRPkCL6uRfDzBiBnehpEt3iTbXOiQ5VF3jMU5EYh7RkUIyMQ2YWFvyTQCMelcSDJeqdcohBsVQzSZq32psX6cY_ieDEoe8aMwhvTIz8WJei7yEH6FtXBdQcyj255HCO_xJhXH18nMOBsLo_DZ_wlLoYyfeeSYBsNr8GfWW6jClrw3JQRPfiKNPsedshZS9PMznfd9BOe-usMUq9SgcLB8Lbe2uJJtpOr3VsjBNupy4ucE8kJ12wt8_FzuT6nSrR0mtMqmfff7Uyo&sai=AMfl-YRZ8cPHO7taQdtZxSaLKS3P24ZTB-XkpnCeJSIeueOwvhvtMBpPv9RcIIDIiFiAsdjiZlYgIxUJyoIlqvbCI1icOYwtiTq_T-T8k0b-r_NcN_MmlY2q7tmp3leMhL1OIDa5ioaPJ2YFbk1p&sig=Cg0ArKJSzBOYK52PiKRPEAE&cid=CAQSPgCsnQUxaIYzsr0cYthEVtyn2-obDRynpswvLtT0w0EBGHHqYbcENEMQvx9CN9uZHuzb0W8Tnchgp98mvPBAGAEgDg&id=lidartos&mcvt=1359&p=0,0,90,728&mtos=1359,1359,1359,1359,1359&tos=1359,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=850080377&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301097&rpt=1120&ec=0&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstC_qHhUO2rxmXH2bMmHTTd0aPadc_zwb5-5GcLsrf6RuzDwVWFfSDMzu5vU_0FLnN4429nmshx-TttKwmGFTGiwgx9sLOkTOsXLvA9qXIgBg9kIfKVJsWer2ioIanauF0slVoXlkiQ6e36TX4mNym6bb-Sjj4zmBIvnUxKB4u8PeENjfjLWLwZ_Ib5NbiK5qQNd3nuNSSEAwfimRAcqlnXawuagM_xeu0zh0W33MqICplhOf-DHmuuO-o3s8rOXixRY845RE_Jc0paCW1majLJD_HJpdHo5vT3FP85p6EEeRDevlmFfzmgqNfrUZ-lpO1pFi3jHv2ClvpS20BNG0Q6CNKjz_lm26dwo2ZibNQ8NgIpWDdqBudCm5rwucKIpmUm7pE0IzGf_lwYmp4cv13U3ZhbiZPwX3UC8PAWHnz9SeCjdOUJLislSbp_PWxsL68aMR3xcTJS7PP_GH-LBCaePStBtdlOVcFpxBaFRkrZBS3RQQg7Qsfh_WKc5iChBAWWbEybCE-fIuAMrMeLkwhYdmEkn71ohxc6emZ4Bu-Fqg3I85T9-QsFqv8Rpr-rGt-J_d128E0_Jl1SCosfiefLpoldalT0IvreEept-DTkpw8wAitkiOptnNyoaewx1EyOSUzdCUaCjEU7VlqCGqw1_xt0IsHWQcpee4nu8o5dxOZyhlg-dSb7eZVuSJa77RB1SXkp9iiTbA9y5EG1OnoeaVf8S6cjTG7zjXqIVIZ5lg5awHCUwnuXZiyF-t8xRPkCL6uRfDzBiBnehpEt3iTbXOiQ5VF3jMU5EYh7RkUIyMQ2YWFvyTQCMelcSDJeqdcohBsVQzSZq32psX6cY_ieDEoe8aMwhvTIz8WJei7yEH6FtXBdQcyj255HCO_xJhXH18nMOBsLo_DZ_wlLoYyfeeSYBsNr8GfWW6jClrw3JQRPfiKNPsedshZS9PMznfd9BOe-usMUq9SgcLB8Lbe2uJJtpOr3VsjBNupy4ucE8kJ12wt8_FzuT6nSrR0mtMqmfff7Uyo&sai=AMfl-YRZ8cPHO7taQdtZxSaLKS3P24ZTB-XkpnCeJSIeueOwvhvtMBpPv9RcIIDIiFiAsdjiZlYgIxUJyoIlqvbCI1icOYwtiTq_T-T8k0b-r_NcN_MmlY2q7tmp3leMhL1OIDa5ioaPJ2YFbk1p&sig=Cg0ArKJSzBOYK52PiKRPEAE&cid=CAQSPgCsnQUxaIYzsr0cYthEVtyn2-obDRynpswvLtT0w0EBGHHqYbcENEMQvx9CN9uZHuzb0W8Tnchgp98mvPBAGAEgDg&id=lidartos&mcvt=1359&p=0,0,90,728&mtos=1359,1359,1359,1359,1359&tos=1359,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=850080377&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301097&rpt=1120&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssDtPcVDxqGLtGVhzP__dohk8GaJKCyefO543F9ad5FmJjliSdCVRrtZBcwTkSMIZali68REFNdqTdPaRqh_imHqS4NHbHw8Sr1TbvpMgsO5yrMq7_iAcqefSVfVbe40Eh221Fhj4gsw-n4Bk71L9u1Dx9oeivsGJAnytyT951RsXBE-AOsBbzZOZmK8Vu5IVs7jR4aQwWrm5Xwp3ksSTO0TDPIA7RcH0LA_X88kVM_wVBlZynOR1diINAMfTHUg2veW2GEvzFqZzeN0AiuJPe7T5-DX1gIsRB0q2h7iEXmTZT-2YeOUSR-U8pta4ESlEJAvmRTre-5F4HQOMzet83554oXv3gwXsw2MMe3W_NOotBHqkU-BiJDCylfvPfx5kgsKCtECH9WqxzAOKG78-HJ_Hr5z6UHTdKXa79gZR2DsAy7eexTq-sCbhtL4huRQR7xoteHcLciyS-DX5ZQn1sUXQG_bH9yoWHL6i4oWpHN4br_fjCIZrR7h8STiwPdyZfHD4lH4MzGKt9LDHu6BOOH9SXBid3FZsOJUNw0l-YS1yH3h0WmQvAOIeBNTvKakhY25gS3brC5iJ-w1WNkucF3MsvH66pNn7-RFlwUEaW4BTs_S6uSoGPQrPQdXkOQdOUZit-O3M1h9TVMThPYtrH3RJrLywd7a8DCXf5RhAGVQx_uHcPTcibR62U8BUk_yh1Lm12OHZ7F9NihFVm0i5ylLzZG-dF04os9SiRgFlNPtdUXgtMbCw_xyMC75SglZV4Y4Rsgru8S0VSgX3Nvbf10-LbVey-CNL1WlTNZxSg5uqVN6N16vCJu6laT9JKQ3d-dgkzQAo43h85n2GY_q0_XoF-VNznep-fMH0jpAqPOcnZu_A9DI5w0ibzuK7_v2F5qya65uyazUmzBnH9yG1a4wLKOjKpTGfWbZ2NYQ8EakRPt1WmAAmVDtsgzbM9l6OuEqy4sV-snYIOlIMY8fX3hLJIYJRvQZ5W4UTbMLl3uSqbxlWWaQkI-BnlLFKQ9Q_DxkMx6NgLLyg&sai=AMfl-YQhhRMSXcZm4a3XucuPyUNBt6UI2vK4itjPaFktNz2bDEF1VoV_YXWicE87SSNRa78TwCuazc6vmm4mo5DuQMZWQ3lfs0aLBVhiZShsxB0Nf9FrgApfFGykudMRIGWKUENpEcPTkqhV00fH&sig=Cg0ArKJSzFzapNMEODqSEAE&cid=CAQSPgCsnQUx18S6TrLkeqPYS83HVhqFzwuy7GvpQagxwfqYwV6WJ02oY7_ynvM4x-gkKWe__lA7Am5CKMpJc2ERGAEgDg&id=lidartos&mcvt=1079&p=0,0,250,970&mtos=1079,1079,1079,1079,1079&tos=1079,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1268289179&rs=2&la=1&cr=0&vs=4&r=b&rst=1663582301103&rpt=1205&ec=0&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssDtPcVDxqGLtGVhzP__dohk8GaJKCyefO543F9ad5FmJjliSdCVRrtZBcwTkSMIZali68REFNdqTdPaRqh_imHqS4NHbHw8Sr1TbvpMgsO5yrMq7_iAcqefSVfVbe40Eh221Fhj4gsw-n4Bk71L9u1Dx9oeivsGJAnytyT951RsXBE-AOsBbzZOZmK8Vu5IVs7jR4aQwWrm5Xwp3ksSTO0TDPIA7RcH0LA_X88kVM_wVBlZynOR1diINAMfTHUg2veW2GEvzFqZzeN0AiuJPe7T5-DX1gIsRB0q2h7iEXmTZT-2YeOUSR-U8pta4ESlEJAvmRTre-5F4HQOMzet83554oXv3gwXsw2MMe3W_NOotBHqkU-BiJDCylfvPfx5kgsKCtECH9WqxzAOKG78-HJ_Hr5z6UHTdKXa79gZR2DsAy7eexTq-sCbhtL4huRQR7xoteHcLciyS-DX5ZQn1sUXQG_bH9yoWHL6i4oWpHN4br_fjCIZrR7h8STiwPdyZfHD4lH4MzGKt9LDHu6BOOH9SXBid3FZsOJUNw0l-YS1yH3h0WmQvAOIeBNTvKakhY25gS3brC5iJ-w1WNkucF3MsvH66pNn7-RFlwUEaW4BTs_S6uSoGPQrPQdXkOQdOUZit-O3M1h9TVMThPYtrH3RJrLywd7a8DCXf5RhAGVQx_uHcPTcibR62U8BUk_yh1Lm12OHZ7F9NihFVm0i5ylLzZG-dF04os9SiRgFlNPtdUXgtMbCw_xyMC75SglZV4Y4Rsgru8S0VSgX3Nvbf10-LbVey-CNL1WlTNZxSg5uqVN6N16vCJu6laT9JKQ3d-dgkzQAo43h85n2GY_q0_XoF-VNznep-fMH0jpAqPOcnZu_A9DI5w0ibzuK7_v2F5qya65uyazUmzBnH9yG1a4wLKOjKpTGfWbZ2NYQ8EakRPt1WmAAmVDtsgzbM9l6OuEqy4sV-snYIOlIMY8fX3hLJIYJRvQZ5W4UTbMLl3uSqbxlWWaQkI-BnlLFKQ9Q_DxkMx6NgLLyg&sai=AMfl-YQhhRMSXcZm4a3XucuPyUNBt6UI2vK4itjPaFktNz2bDEF1VoV_YXWicE87SSNRa78TwCuazc6vmm4mo5DuQMZWQ3lfs0aLBVhiZShsxB0Nf9FrgApfFGykudMRIGWKUENpEcPTkqhV00fH&sig=Cg0ArKJSzFzapNMEODqSEAE&cid=CAQSPgCsnQUx18S6TrLkeqPYS83HVhqFzwuy7GvpQagxwfqYwV6WJ02oY7_ynvM4x-gkKWe__lA7Am5CKMpJc2ERGAEgDg&id=lidartos&mcvt=1079&p=0,0,250,970&mtos=1079,1079,1079,1079,1079&tos=1079,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1268289179&rs=2&la=1&cr=0&vs=4&r=b&rst=1663582301103&rpt=1205&ec=0&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjssDtPcVDxqGLtGVhzP__dohk8GaJKCyefO543F9ad5FmJjliSdCVRrtZBcwTkSMIZali68REFNdqTdPaRqh_imHqS4NHbHw8Sr1TbvpMgsO5yrMq7_iAcqefSVfVbe40Eh221Fhj4gsw-n4Bk71L9u1Dx9oeivsGJAnytyT951RsXBE-AOsBbzZOZmK8Vu5IVs7jR4aQwWrm5Xwp3ksSTO0TDPIA7RcH0LA_X88kVM_wVBlZynOR1diINAMfTHUg2veW2GEvzFqZzeN0AiuJPe7T5-DX1gIsRB0q2h7iEXmTZT-2YeOUSR-U8pta4ESlEJAvmRTre-5F4HQOMzet83554oXv3gwXsw2MMe3W_NOotBHqkU-BiJDCylfvPfx5kgsKCtECH9WqxzAOKG78-HJ_Hr5z6UHTdKXa79gZR2DsAy7eexTq-sCbhtL4huRQR7xoteHcLciyS-DX5ZQn1sUXQG_bH9yoWHL6i4oWpHN4br_fjCIZrR7h8STiwPdyZfHD4lH4MzGKt9LDHu6BOOH9SXBid3FZsOJUNw0l-YS1yH3h0WmQvAOIeBNTvKakhY25gS3brC5iJ-w1WNkucF3MsvH66pNn7-RFlwUEaW4BTs_S6uSoGPQrPQdXkOQdOUZit-O3M1h9TVMThPYtrH3RJrLywd7a8DCXf5RhAGVQx_uHcPTcibR62U8BUk_yh1Lm12OHZ7F9NihFVm0i5ylLzZG-dF04os9SiRgFlNPtdUXgtMbCw_xyMC75SglZV4Y4Rsgru8S0VSgX3Nvbf10-LbVey-CNL1WlTNZxSg5uqVN6N16vCJu6laT9JKQ3d-dgkzQAo43h85n2GY_q0_XoF-VNznep-fMH0jpAqPOcnZu_A9DI5w0ibzuK7_v2F5qya65uyazUmzBnH9yG1a4wLKOjKpTGfWbZ2NYQ8EakRPt1WmAAmVDtsgzbM9l6OuEqy4sV-snYIOlIMY8fX3hLJIYJRvQZ5W4UTbMLl3uSqbxlWWaQkI-BnlLFKQ9Q_DxkMx6NgLLyg&sai=AMfl-YQhhRMSXcZm4a3XucuPyUNBt6UI2vK4itjPaFktNz2bDEF1VoV_YXWicE87SSNRa78TwCuazc6vmm4mo5DuQMZWQ3lfs0aLBVhiZShsxB0Nf9FrgApfFGykudMRIGWKUENpEcPTkqhV00fH&sig=Cg0ArKJSzFzapNMEODqSEAE&cid=CAQSPgCsnQUx18S6TrLkeqPYS83HVhqFzwuy7GvpQagxwfqYwV6WJ02oY7_ynvM4x-gkKWe__lA7Am5CKMpJc2ERGAEgDg&id=lidartos&mcvt=1079&p=0,0,250,970&mtos=1079,1079,1079,1079,1079&tos=1079,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1268289179&rs=2&la=1&cr=0&vs=4&r=b&rst=1663582301103&rpt=1205&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstoc_6v7NmGesVrYQYt98QRuVkj1aH0lPuhZ-LCXCpv5GkVFZHpKwv-6WT8Qmx4r7F6SjgnKHKpGKD5u4ub67lDEA-IHoNTYsEMSKJmDoGy34CYdGEZQ5FN0wiQs0kB7uJ9qbwqAjJns8HNEQ0L0zZcxoa_q_JxM6H_RAiZlhyoURwtOTh0WIPqZa_VVL6fXrZMssWA8qQdk6CkTrj6YYyyIKaVj30z9WVlDfptOIr8L5O9w2h975kv16idgMd8p52tOFqoSL1zep1_s3EI095W-pJ_f10HVWs7xlEvNa6pp6KQ3HfPKFq35pU5u0mQj41as2nwbn3VLsqpGI9ImerG5FrrMJ9qSdbd7ru2ElzCfiKhUdiX6L4Lmz9yeTi8-nNwAlSahDyXbXP8k_6kMfHEDn5m7QtGCOSVLyudlFKljGIjBoW5kWl3odf73NStDOGJqCiUFjqrdnqmu9__g4Q1djLNGRKXL6rpys7-lkA5OSR77D1lF5CWk4pxqX3b229kuGHyLd3PUDRp5vPb9bUt3v4hay9q4Js3i1F3-9Tj4Bso6Prh214B_FEDGB_0cvCBHku3o9gIV1Ng4zO27-dJdR2JcE1vUxEW1ozXI2kJcS-aw3QV13Rpy2AEKx7v_lhkPbeDlVWLi-qQcBdUIztmdt_uKpY7aDsU3RB9Z46-oWm2z9h1imVgypKRnwnuUEE1Y2cKk3Bbxe1LshyEeKSCJJICgC5qKIF_RJxsqO-Jqx-JcHr7SU0xjGoPu97kDkrPQSOi7kp2BTMdppFqyO1aQuBI-jpWXReIidKX_MsXUmCNGz2flJ0tdUR67hNK5-snec3jRzaiRzZI8jiWBs933sqNoo2awOkAYVO0FVO1DhwRLCPEgNMD6qIHvwNJyC-4AqM0i97BVIaeRYKZBaNxIt9WRLI21eDUj2DrGZh30LiFIasCPDg4DZ4bdv3-R2uYMah3DV11Q32HqjtZJPKRcjCCLCb8oUArK9hIH16_mJ05xWypTOP9sljN8TdwptP0kH4rDm8&sai=AMfl-YRTQSVyuZYgw9coiJAwLoxIuy4uMHuuhErz7y8Ly-_0HOa-Y-4k6hwIimFocQ3JOPsd6SQUPR_c4A561a9q6ONnqGxVYskbB4rSPBQQ-Qk4BBnf_7kv8f0KyKUje9SHDW29Z7SoKNDUNAB3&sig=Cg0ArKJSzO_UdhePwSIJEAE&cid=CAQSPgCsnQUxfbjG7MwgvKgYrLnV990QN4ghy8eVfOXcAt0uGWL43oUhntf-62FPkHEGmM-TKs53C7jyx9cjV7q_GAEgDg&id=lidartos&mcvt=1376&p=0,0,90,728&mtos=1376,1376,1376,1376,1376&tos=1376,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301107&rpt=1101&ec=0&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstoc_6v7NmGesVrYQYt98QRuVkj1aH0lPuhZ-LCXCpv5GkVFZHpKwv-6WT8Qmx4r7F6SjgnKHKpGKD5u4ub67lDEA-IHoNTYsEMSKJmDoGy34CYdGEZQ5FN0wiQs0kB7uJ9qbwqAjJns8HNEQ0L0zZcxoa_q_JxM6H_RAiZlhyoURwtOTh0WIPqZa_VVL6fXrZMssWA8qQdk6CkTrj6YYyyIKaVj30z9WVlDfptOIr8L5O9w2h975kv16idgMd8p52tOFqoSL1zep1_s3EI095W-pJ_f10HVWs7xlEvNa6pp6KQ3HfPKFq35pU5u0mQj41as2nwbn3VLsqpGI9ImerG5FrrMJ9qSdbd7ru2ElzCfiKhUdiX6L4Lmz9yeTi8-nNwAlSahDyXbXP8k_6kMfHEDn5m7QtGCOSVLyudlFKljGIjBoW5kWl3odf73NStDOGJqCiUFjqrdnqmu9__g4Q1djLNGRKXL6rpys7-lkA5OSR77D1lF5CWk4pxqX3b229kuGHyLd3PUDRp5vPb9bUt3v4hay9q4Js3i1F3-9Tj4Bso6Prh214B_FEDGB_0cvCBHku3o9gIV1Ng4zO27-dJdR2JcE1vUxEW1ozXI2kJcS-aw3QV13Rpy2AEKx7v_lhkPbeDlVWLi-qQcBdUIztmdt_uKpY7aDsU3RB9Z46-oWm2z9h1imVgypKRnwnuUEE1Y2cKk3Bbxe1LshyEeKSCJJICgC5qKIF_RJxsqO-Jqx-JcHr7SU0xjGoPu97kDkrPQSOi7kp2BTMdppFqyO1aQuBI-jpWXReIidKX_MsXUmCNGz2flJ0tdUR67hNK5-snec3jRzaiRzZI8jiWBs933sqNoo2awOkAYVO0FVO1DhwRLCPEgNMD6qIHvwNJyC-4AqM0i97BVIaeRYKZBaNxIt9WRLI21eDUj2DrGZh30LiFIasCPDg4DZ4bdv3-R2uYMah3DV11Q32HqjtZJPKRcjCCLCb8oUArK9hIH16_mJ05xWypTOP9sljN8TdwptP0kH4rDm8&sai=AMfl-YRTQSVyuZYgw9coiJAwLoxIuy4uMHuuhErz7y8Ly-_0HOa-Y-4k6hwIimFocQ3JOPsd6SQUPR_c4A561a9q6ONnqGxVYskbB4rSPBQQ-Qk4BBnf_7kv8f0KyKUje9SHDW29Z7SoKNDUNAB3&sig=Cg0ArKJSzO_UdhePwSIJEAE&cid=CAQSPgCsnQUxfbjG7MwgvKgYrLnV990QN4ghy8eVfOXcAt0uGWL43oUhntf-62FPkHEGmM-TKs53C7jyx9cjV7q_GAEgDg&id=lidartos&mcvt=1376&p=0,0,90,728&mtos=1376,1376,1376,1376,1376&tos=1376,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301107&rpt=1101&ec=0&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstoc_6v7NmGesVrYQYt98QRuVkj1aH0lPuhZ-LCXCpv5GkVFZHpKwv-6WT8Qmx4r7F6SjgnKHKpGKD5u4ub67lDEA-IHoNTYsEMSKJmDoGy34CYdGEZQ5FN0wiQs0kB7uJ9qbwqAjJns8HNEQ0L0zZcxoa_q_JxM6H_RAiZlhyoURwtOTh0WIPqZa_VVL6fXrZMssWA8qQdk6CkTrj6YYyyIKaVj30z9WVlDfptOIr8L5O9w2h975kv16idgMd8p52tOFqoSL1zep1_s3EI095W-pJ_f10HVWs7xlEvNa6pp6KQ3HfPKFq35pU5u0mQj41as2nwbn3VLsqpGI9ImerG5FrrMJ9qSdbd7ru2ElzCfiKhUdiX6L4Lmz9yeTi8-nNwAlSahDyXbXP8k_6kMfHEDn5m7QtGCOSVLyudlFKljGIjBoW5kWl3odf73NStDOGJqCiUFjqrdnqmu9__g4Q1djLNGRKXL6rpys7-lkA5OSR77D1lF5CWk4pxqX3b229kuGHyLd3PUDRp5vPb9bUt3v4hay9q4Js3i1F3-9Tj4Bso6Prh214B_FEDGB_0cvCBHku3o9gIV1Ng4zO27-dJdR2JcE1vUxEW1ozXI2kJcS-aw3QV13Rpy2AEKx7v_lhkPbeDlVWLi-qQcBdUIztmdt_uKpY7aDsU3RB9Z46-oWm2z9h1imVgypKRnwnuUEE1Y2cKk3Bbxe1LshyEeKSCJJICgC5qKIF_RJxsqO-Jqx-JcHr7SU0xjGoPu97kDkrPQSOi7kp2BTMdppFqyO1aQuBI-jpWXReIidKX_MsXUmCNGz2flJ0tdUR67hNK5-snec3jRzaiRzZI8jiWBs933sqNoo2awOkAYVO0FVO1DhwRLCPEgNMD6qIHvwNJyC-4AqM0i97BVIaeRYKZBaNxIt9WRLI21eDUj2DrGZh30LiFIasCPDg4DZ4bdv3-R2uYMah3DV11Q32HqjtZJPKRcjCCLCb8oUArK9hIH16_mJ05xWypTOP9sljN8TdwptP0kH4rDm8&sai=AMfl-YRTQSVyuZYgw9coiJAwLoxIuy4uMHuuhErz7y8Ly-_0HOa-Y-4k6hwIimFocQ3JOPsd6SQUPR_c4A561a9q6ONnqGxVYskbB4rSPBQQ-Qk4BBnf_7kv8f0KyKUje9SHDW29Z7SoKNDUNAB3&sig=Cg0ArKJSzO_UdhePwSIJEAE&cid=CAQSPgCsnQUxfbjG7MwgvKgYrLnV990QN4ghy8eVfOXcAt0uGWL43oUhntf-62FPkHEGmM-TKs53C7jyx9cjV7q_GAEgDg&id=lidartos&mcvt=1376&p=0,0,90,728&mtos=1376,1376,1376,1376,1376&tos=1376,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301107&rpt=1101&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstfqdWs81h8fr74pFcbGJjXAOHsCNJy_U23CC2xGZZEGrBaWc2dsudKC-JiRBPrNypbyjjbbTm24oOxcKENgWYKdqD7sgrjaDRk82bDCTELL322-L7TbaN9V3j37q1Sj4uu_9CMVj1MXdwZaEZ-K557Mm-Hh4e3XGe0MF9boD0l31RylyDnjNtiizjHKsO_8_qTHT3mqQr2cO_VLPGS2c4cfVJal8KpJiEPFxmTjJEnl_e5hl5QwAYv6-4CXhwCMDwpciwPzFId1n_WvvudaKnbgTn_r8ycn5RDwYkkKFm9IUQlet1VecXQk492CBHsS0ZbDAHjr7m4nMX0xqij_3Hp8RSLmgsn0b_ltWTccuRLco7FLodXutOj9TXS3jeGYtvrnYwXtF8ei4-ie7PJC_gFnHCBSeT4EyDg63SNDDO1c6uEQ2KLe32geQOWTXggJr5TzfwmoLwoYS-MzP4oIcrA-Ce02K1_NOrnrvjGwndNwR6_o5EhbWn-fnV7SXptQLyAcx0cAWPwcr9OyMQDeRn43F9973TwIeGxyEmAjL9vx2Ed6oJbBYju0ByzBzWrmxQZdR-jzbkatKoFfyWHITNbxvBqT43mehFQlfqClbM1kDTu5S7HGs25GeBESopnnTe819naoGMjszGjcnneHSZzxZYTU_11aQxV0egD06UA-mUFC2Lyv3xRiNTv6QsawCCPCHlcalyJs3ddASaq5Sn1vXNvmHmU585yycvFQSsvKQ9b86pOEvBWBEneAvpGgRWVByu60ubkTlbf6YJMQqcmmd1TKF-9LnoGwE-VG9AnAvZdJF78cSrJL4HhrFxmEH2ykk4E1bBQwdZy-7-JzPC8rbYl0Tc-2xgAh8VaADO5M3WkcSR9Eps7P1zODbQIK4p8314H4Ir8qyInW7yRa3IRHPTAe_nJGFSJ0RWaQNWgvkJLnmW722HgRBLcCdo5r_ubuhIqvinV33iR0rPIP6iiMJpbLlwFMI8Lm1i_USIeCFsib3HsAaYuk5NVj2WhSHMTtQtrN8g&sai=AMfl-YTSbTbbYTAw1Rxwy0Kl4YWwTe_g-3hyshVPtY493eolRj1uOTkfz918WTgE0o2RSUWXR3MtU_DDxMyN3FtsAqeF4Bah5DrJSHlsQE0iI1TDokbtotfpoHA8nYNf_fG4PLHUT5c4Koqbfwlv&sig=Cg0ArKJSzFYpRBb9BRhrEAE&cid=CAQSPgCsnQUx1oCfYU3iX_YrT4Mf86fp-RSNCSvEkcaEcI7UlDRwFouG83t8MNht_AJFvoVZBP4zOkSrcQ6KgdMYGAEgDg&id=lidartos&mcvt=1385&p=0,0,90,728&mtos=1385,1385,1385,1385,1385&tos=1385,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=2210784318&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301112&rpt=1089&ec=0&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstfqdWs81h8fr74pFcbGJjXAOHsCNJy_U23CC2xGZZEGrBaWc2dsudKC-JiRBPrNypbyjjbbTm24oOxcKENgWYKdqD7sgrjaDRk82bDCTELL322-L7TbaN9V3j37q1Sj4uu_9CMVj1MXdwZaEZ-K557Mm-Hh4e3XGe0MF9boD0l31RylyDnjNtiizjHKsO_8_qTHT3mqQr2cO_VLPGS2c4cfVJal8KpJiEPFxmTjJEnl_e5hl5QwAYv6-4CXhwCMDwpciwPzFId1n_WvvudaKnbgTn_r8ycn5RDwYkkKFm9IUQlet1VecXQk492CBHsS0ZbDAHjr7m4nMX0xqij_3Hp8RSLmgsn0b_ltWTccuRLco7FLodXutOj9TXS3jeGYtvrnYwXtF8ei4-ie7PJC_gFnHCBSeT4EyDg63SNDDO1c6uEQ2KLe32geQOWTXggJr5TzfwmoLwoYS-MzP4oIcrA-Ce02K1_NOrnrvjGwndNwR6_o5EhbWn-fnV7SXptQLyAcx0cAWPwcr9OyMQDeRn43F9973TwIeGxyEmAjL9vx2Ed6oJbBYju0ByzBzWrmxQZdR-jzbkatKoFfyWHITNbxvBqT43mehFQlfqClbM1kDTu5S7HGs25GeBESopnnTe819naoGMjszGjcnneHSZzxZYTU_11aQxV0egD06UA-mUFC2Lyv3xRiNTv6QsawCCPCHlcalyJs3ddASaq5Sn1vXNvmHmU585yycvFQSsvKQ9b86pOEvBWBEneAvpGgRWVByu60ubkTlbf6YJMQqcmmd1TKF-9LnoGwE-VG9AnAvZdJF78cSrJL4HhrFxmEH2ykk4E1bBQwdZy-7-JzPC8rbYl0Tc-2xgAh8VaADO5M3WkcSR9Eps7P1zODbQIK4p8314H4Ir8qyInW7yRa3IRHPTAe_nJGFSJ0RWaQNWgvkJLnmW722HgRBLcCdo5r_ubuhIqvinV33iR0rPIP6iiMJpbLlwFMI8Lm1i_USIeCFsib3HsAaYuk5NVj2WhSHMTtQtrN8g&sai=AMfl-YTSbTbbYTAw1Rxwy0Kl4YWwTe_g-3hyshVPtY493eolRj1uOTkfz918WTgE0o2RSUWXR3MtU_DDxMyN3FtsAqeF4Bah5DrJSHlsQE0iI1TDokbtotfpoHA8nYNf_fG4PLHUT5c4Koqbfwlv&sig=Cg0ArKJSzFYpRBb9BRhrEAE&cid=CAQSPgCsnQUx1oCfYU3iX_YrT4Mf86fp-RSNCSvEkcaEcI7UlDRwFouG83t8MNht_AJFvoVZBP4zOkSrcQ6KgdMYGAEgDg&id=lidartos&mcvt=1385&p=0,0,90,728&mtos=1385,1385,1385,1385,1385&tos=1385,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=2210784318&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301112&rpt=1089&ec=0&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstfqdWs81h8fr74pFcbGJjXAOHsCNJy_U23CC2xGZZEGrBaWc2dsudKC-JiRBPrNypbyjjbbTm24oOxcKENgWYKdqD7sgrjaDRk82bDCTELL322-L7TbaN9V3j37q1Sj4uu_9CMVj1MXdwZaEZ-K557Mm-Hh4e3XGe0MF9boD0l31RylyDnjNtiizjHKsO_8_qTHT3mqQr2cO_VLPGS2c4cfVJal8KpJiEPFxmTjJEnl_e5hl5QwAYv6-4CXhwCMDwpciwPzFId1n_WvvudaKnbgTn_r8ycn5RDwYkkKFm9IUQlet1VecXQk492CBHsS0ZbDAHjr7m4nMX0xqij_3Hp8RSLmgsn0b_ltWTccuRLco7FLodXutOj9TXS3jeGYtvrnYwXtF8ei4-ie7PJC_gFnHCBSeT4EyDg63SNDDO1c6uEQ2KLe32geQOWTXggJr5TzfwmoLwoYS-MzP4oIcrA-Ce02K1_NOrnrvjGwndNwR6_o5EhbWn-fnV7SXptQLyAcx0cAWPwcr9OyMQDeRn43F9973TwIeGxyEmAjL9vx2Ed6oJbBYju0ByzBzWrmxQZdR-jzbkatKoFfyWHITNbxvBqT43mehFQlfqClbM1kDTu5S7HGs25GeBESopnnTe819naoGMjszGjcnneHSZzxZYTU_11aQxV0egD06UA-mUFC2Lyv3xRiNTv6QsawCCPCHlcalyJs3ddASaq5Sn1vXNvmHmU585yycvFQSsvKQ9b86pOEvBWBEneAvpGgRWVByu60ubkTlbf6YJMQqcmmd1TKF-9LnoGwE-VG9AnAvZdJF78cSrJL4HhrFxmEH2ykk4E1bBQwdZy-7-JzPC8rbYl0Tc-2xgAh8VaADO5M3WkcSR9Eps7P1zODbQIK4p8314H4Ir8qyInW7yRa3IRHPTAe_nJGFSJ0RWaQNWgvkJLnmW722HgRBLcCdo5r_ubuhIqvinV33iR0rPIP6iiMJpbLlwFMI8Lm1i_USIeCFsib3HsAaYuk5NVj2WhSHMTtQtrN8g&sai=AMfl-YTSbTbbYTAw1Rxwy0Kl4YWwTe_g-3hyshVPtY493eolRj1uOTkfz918WTgE0o2RSUWXR3MtU_DDxMyN3FtsAqeF4Bah5DrJSHlsQE0iI1TDokbtotfpoHA8nYNf_fG4PLHUT5c4Koqbfwlv&sig=Cg0ArKJSzFYpRBb9BRhrEAE&cid=CAQSPgCsnQUx1oCfYU3iX_YrT4Mf86fp-RSNCSvEkcaEcI7UlDRwFouG83t8MNht_AJFvoVZBP4zOkSrcQ6KgdMYGAEgDg&id=lidartos&mcvt=1385&p=0,0,90,728&mtos=1385,1385,1385,1385,1385&tos=1385,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=2210784318&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301112&rpt=1089&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjss0bkacuRbvjbmWARBJrkADtU11T3zKmxeakDMbHk0r4pfT--BK6l652jLH-o-B_OnMLjnQQ_EAmOC8W16kXD2rFYc82TbGbWC9Jxnl0ArPelRr8UN9qZyAJgej9zzkCw5Rg6dG7p9X6TRoAIz2yXOlPEpMzrhwufvmIA&sai=AMfl-YRIqqmcx3Uu5C3CTky4eTFjvKIlIXsQcTE7huyqmIQJ-AC9-6vfLlhNrnKXyJCMWdIuxgJkeHS4sBvVTY8x-EKUBQhwisMY5_bDwmmySugBt3zBnSCDJbpZC75Y46k&sig=Cg0ArKJSzCHQKo-fHNmkEAE&cid=CAQSPgCsnQUxqkEyoVGbwWYNOqsElcA5F3GEnhH-aA4D_kJwXZRHI-btaKOJv76H7-UruNUXao_Py0PctlUSNWMtGAEgDg&id=lidartos&mcvt=1103&p=0,0,581,155&mtos=1103,1103,1103,1103,1103&tos=1103,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1843790409&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301129&rpt=1173&ec=0&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjss0bkacuRbvjbmWARBJrkADtU11T3zKmxeakDMbHk0r4pfT--BK6l652jLH-o-B_OnMLjnQQ_EAmOC8W16kXD2rFYc82TbGbWC9Jxnl0ArPelRr8UN9qZyAJgej9zzkCw5Rg6dG7p9X6TRoAIz2yXOlPEpMzrhwufvmIA&sai=AMfl-YRIqqmcx3Uu5C3CTky4eTFjvKIlIXsQcTE7huyqmIQJ-AC9-6vfLlhNrnKXyJCMWdIuxgJkeHS4sBvVTY8x-EKUBQhwisMY5_bDwmmySugBt3zBnSCDJbpZC75Y46k&sig=Cg0ArKJSzCHQKo-fHNmkEAE&cid=CAQSPgCsnQUxqkEyoVGbwWYNOqsElcA5F3GEnhH-aA4D_kJwXZRHI-btaKOJv76H7-UruNUXao_Py0PctlUSNWMtGAEgDg&id=lidartos&mcvt=1103&p=0,0,581,155&mtos=1103,1103,1103,1103,1103&tos=1103,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1843790409&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301129&rpt=1173&ec=0&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjss0bkacuRbvjbmWARBJrkADtU11T3zKmxeakDMbHk0r4pfT--BK6l652jLH-o-B_OnMLjnQQ_EAmOC8W16kXD2rFYc82TbGbWC9Jxnl0ArPelRr8UN9qZyAJgej9zzkCw5Rg6dG7p9X6TRoAIz2yXOlPEpMzrhwufvmIA&sai=AMfl-YRIqqmcx3Uu5C3CTky4eTFjvKIlIXsQcTE7huyqmIQJ-AC9-6vfLlhNrnKXyJCMWdIuxgJkeHS4sBvVTY8x-EKUBQhwisMY5_bDwmmySugBt3zBnSCDJbpZC75Y46k&sig=Cg0ArKJSzCHQKo-fHNmkEAE&cid=CAQSPgCsnQUxqkEyoVGbwWYNOqsElcA5F3GEnhH-aA4D_kJwXZRHI-btaKOJv76H7-UruNUXao_Py0PctlUSNWMtGAEgDg&id=lidartos&mcvt=1103&p=0,0,581,155&mtos=1103,1103,1103,1103,1103&tos=1103,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1843790409&rs=2&la=0&cr=0&vs=4&r=b&rst=1663582301129&rpt=1173&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsshNtfZIFCfGqxLnVzREw9pPZgF8-EY1C9HgFtV0TZjMY5fXf768h_sXdsvRD9vTcQslb-HtqsqnmaFY51HPnCM89aPejhlhSdCrJSBBZ2EygmRxv49D_Nvv9oKYucoNjW56PFxnB4&sai=AMfl-YQSpyvY5YOFPB1lejWd01vRM24qkSFYrdBIhchjLMtrxr2rIEZ3AYKWYbKq48nUfYE0IHRQrv6Cce9BDW-l0clicsCzZ8e-OxiVxr-vF347WVyHTTQmR7B4KBmgtow&sig=Cg0ArKJSzEEV7D-NexPtEAE&cid=CAQSPgCsnQUxQ2Exl3vmZTLXfz_zNG-lmmwT7kexqXGNMinJnEXgeFTvQRzvCW0nqoKFYAZgg_S6_XEvxdXFAoSrGAEgDg&id=lidartos&mcvt=315&p=0,0,600,160&mtos=315,315,315,315,315&tos=315,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1520397898&rs=2&la=0&cr=0&vs=3&r=b&rst=1663582301388&rpt=1948&ec=0&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsshNtfZIFCfGqxLnVzREw9pPZgF8-EY1C9HgFtV0TZjMY5fXf768h_sXdsvRD9vTcQslb-HtqsqnmaFY51HPnCM89aPejhlhSdCrJSBBZ2EygmRxv49D_Nvv9oKYucoNjW56PFxnB4&sai=AMfl-YQSpyvY5YOFPB1lejWd01vRM24qkSFYrdBIhchjLMtrxr2rIEZ3AYKWYbKq48nUfYE0IHRQrv6Cce9BDW-l0clicsCzZ8e-OxiVxr-vF347WVyHTTQmR7B4KBmgtow&sig=Cg0ArKJSzEEV7D-NexPtEAE&cid=CAQSPgCsnQUxQ2Exl3vmZTLXfz_zNG-lmmwT7kexqXGNMinJnEXgeFTvQRzvCW0nqoKFYAZgg_S6_XEvxdXFAoSrGAEgDg&id=lidartos&mcvt=315&p=0,0,600,160&mtos=315,315,315,315,315&tos=315,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1520397898&rs=2&la=0&cr=0&vs=3&r=b&rst=1663582301388&rpt=1948&ec=0&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsshNtfZIFCfGqxLnVzREw9pPZgF8-EY1C9HgFtV0TZjMY5fXf768h_sXdsvRD9vTcQslb-HtqsqnmaFY51HPnCM89aPejhlhSdCrJSBBZ2EygmRxv49D_Nvv9oKYucoNjW56PFxnB4&sai=AMfl-YQSpyvY5YOFPB1lejWd01vRM24qkSFYrdBIhchjLMtrxr2rIEZ3AYKWYbKq48nUfYE0IHRQrv6Cce9BDW-l0clicsCzZ8e-OxiVxr-vF347WVyHTTQmR7B4KBmgtow&sig=Cg0ArKJSzEEV7D-NexPtEAE&cid=CAQSPgCsnQUxQ2Exl3vmZTLXfz_zNG-lmmwT7kexqXGNMinJnEXgeFTvQRzvCW0nqoKFYAZgg_S6_XEvxdXFAoSrGAEgDg&id=lidartos&mcvt=315&p=0,0,600,160&mtos=315,315,315,315,315&tos=315,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1520397898&rs=2&la=0&cr=0&vs=3&r=b&rst=1663582301388&rpt=1948&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=0&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&wgl=1&dt=1663582300829&bpp=1&bdt=820&idt=230&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=eLmO45WkzZ&p=https%3A//mahacet.com&dtd=292
142.250.74.130200 OK 214 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=0&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&wgl=1&dt=1663582300829&bpp=1&bdt=820&idt=230&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=eLmO45WkzZ&p=https%3A//mahacet.com&dtd=292
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 602822b0ecb3b76bb615ab5a8bb450a2
65a6c45c37f8894f53cb9b634a871be08150d2f1
824f006567c0f576a65b8d6da3db1678cf83b267336006854d3ffeb64745cb41
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=0&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&wgl=1&dt=1663582300829&bpp=1&bdt=820&idt=230&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=eLmO45WkzZ&p=https%3A//mahacet.com&dtd=292 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:02 GMT
server: cafe
content-length: 214
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:02 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=0&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&wgl=1&dt=1663582300829&bpp=1&bdt=819&idt=237&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=qSNdvY76tv&p=https%3A//mahacet.com&dtd=296
142.250.74.130200 OK 213 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=0&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&wgl=1&dt=1663582300829&bpp=1&bdt=819&idt=237&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=qSNdvY76tv&p=https%3A//mahacet.com&dtd=296
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 0c14e8dfdd15f65fe05f498921b4e04d
fc05b2a8a20860b2c1650c1df4207c789c51052d
e83d0e741a3668c58517e424cfca1a8fb7d15c0dafb862f350908d2f5ba953b3
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=0&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&wgl=1&dt=1663582300829&bpp=1&bdt=819&idt=237&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=qSNdvY76tv&p=https%3A//mahacet.com&dtd=296 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:02 GMT
server: cafe
content-length: 213
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:02 GMT
cache-control: private
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=803467372&adf=943920009&w=728&lmt=1663577725&psa=0&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582300832&bpp=2&bdt=823&idt=2676&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C300x250%2C155x600%2C160x600&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&psts=APxP-9BoBPMjxoCbM_3BwAJ6lcq3aYuLTyKR1S7z9pmEdyLYzokIk42zKvo8umm-19pYN6sdo7x4LU04j4nDFL1QxA%2CAPxP-9BM4Ib1BDoYy4ZVQZvzLq4dydbK7l_dOGnCtGCiduxeui6O9rkIN-BQ2pCaRW1GJYtvXUwK8PWf93JSWOY%2CAPxP-9C4eLP7JDBgSeWbRvACaQgKNZqHBAQIGQg_7eeuv-61BADoB_Ds2-q5t0omnGjnJuMa4vfPfozFLRSOKw%2CAPxP-9AtRF-PcV1Y4OJ2YHuG1H5NZcSwz3M0sblHrePGquq8pH4wvoR9GbdZqh8A1itnqJSTXjHUo5t3fypS7ASL%2CAPxP-9BCZKLLxlRyAj3wE7Ymk6lHzgWbadt6vgqIISsjfb4Hp9bhinfYWDSXC5vO6ROPtJmxP3PpV2RAStdt_Q%2CAPxP-9DGZUsFsK0tjrGR_YqiHgeKBxL_0CYnaF9z0_67JiwKT313hJfi9gt2aBiPPETjCpTpS6KCq_N-nOGAct1Vqw%2CAPxP-9BpC7YHEt01P2iAE1zF_Z6PtDeljVhAB19EROZV2mkZLpaaf9huFlmcNucGKaUHj2WmbJor1wWJo0gs5gw&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=12&uci=a!c&fsb=1&xpc=iHSCPtB89e&p=https%3A//mahacet.com&dtd=2712
142.250.74.130200 OK 29 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=803467372&adf=943920009&w=728&lmt=1663577725&psa=0&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582300832&bpp=2&bdt=823&idt=2676&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C300x250%2C155x600%2C160x600&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&psts=APxP-9BoBPMjxoCbM_3BwAJ6lcq3aYuLTyKR1S7z9pmEdyLYzokIk42zKvo8umm-19pYN6sdo7x4LU04j4nDFL1QxA%2CAPxP-9BM4Ib1BDoYy4ZVQZvzLq4dydbK7l_dOGnCtGCiduxeui6O9rkIN-BQ2pCaRW1GJYtvXUwK8PWf93JSWOY%2CAPxP-9C4eLP7JDBgSeWbRvACaQgKNZqHBAQIGQg_7eeuv-61BADoB_Ds2-q5t0omnGjnJuMa4vfPfozFLRSOKw%2CAPxP-9AtRF-PcV1Y4OJ2YHuG1H5NZcSwz3M0sblHrePGquq8pH4wvoR9GbdZqh8A1itnqJSTXjHUo5t3fypS7ASL%2CAPxP-9BCZKLLxlRyAj3wE7Ymk6lHzgWbadt6vgqIISsjfb4Hp9bhinfYWDSXC5vO6ROPtJmxP3PpV2RAStdt_Q%2CAPxP-9DGZUsFsK0tjrGR_YqiHgeKBxL_0CYnaF9z0_67JiwKT313hJfi9gt2aBiPPETjCpTpS6KCq_N-nOGAct1Vqw%2CAPxP-9BpC7YHEt01P2iAE1zF_Z6PtDeljVhAB19EROZV2mkZLpaaf9huFlmcNucGKaUHj2WmbJor1wWJo0gs5gw&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=12&uci=a!c&fsb=1&xpc=iHSCPtB89e&p=https%3A//mahacet.com&dtd=2712
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 627fd847c000fb9bf73919ba553ea6d5
16e96018f23edb87c52c00c38188e7babd910c5b
36378430b5cbdf241b821d572dc38fe43d70bb3b241b90f6e77b28f06ada2bb0
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=803467372&adf=943920009&w=728&lmt=1663577725&psa=0&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582300832&bpp=2&bdt=823&idt=2676&shv=r20220914&mjsv=m202209080103&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C300x250%2C155x600%2C160x600&nras=1&correlator=3335511342657&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582301&ga_hid=262992594&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44767668%2C31069178%2C31069642%2C31060047%2C31068921&oid=2&psts=APxP-9BoBPMjxoCbM_3BwAJ6lcq3aYuLTyKR1S7z9pmEdyLYzokIk42zKvo8umm-19pYN6sdo7x4LU04j4nDFL1QxA%2CAPxP-9BM4Ib1BDoYy4ZVQZvzLq4dydbK7l_dOGnCtGCiduxeui6O9rkIN-BQ2pCaRW1GJYtvXUwK8PWf93JSWOY%2CAPxP-9C4eLP7JDBgSeWbRvACaQgKNZqHBAQIGQg_7eeuv-61BADoB_Ds2-q5t0omnGjnJuMa4vfPfozFLRSOKw%2CAPxP-9AtRF-PcV1Y4OJ2YHuG1H5NZcSwz3M0sblHrePGquq8pH4wvoR9GbdZqh8A1itnqJSTXjHUo5t3fypS7ASL%2CAPxP-9BCZKLLxlRyAj3wE7Ymk6lHzgWbadt6vgqIISsjfb4Hp9bhinfYWDSXC5vO6ROPtJmxP3PpV2RAStdt_Q%2CAPxP-9DGZUsFsK0tjrGR_YqiHgeKBxL_0CYnaF9z0_67JiwKT313hJfi9gt2aBiPPETjCpTpS6KCq_N-nOGAct1Vqw%2CAPxP-9BpC7YHEt01P2iAE1zF_Z6PtDeljVhAB19EROZV2mkZLpaaf9huFlmcNucGKaUHj2WmbJor1wWJo0gs5gw&pvsid=1681771763840021&tmod=439035109&nvt=1&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=12&uci=a!c&fsb=1&xpc=iHSCPtB89e&p=https%3A//mahacet.com&dtd=2712 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:02 GMT
server: cafe
content-length: 28980
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:02 GMT
cache-control: private
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.googletagmanager.com/gtag/js?id=UA-10193151-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-10193151-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 90c0c50dbba5afeb956cff202b48ff95
e6b09bc3505aa3fe03b752fa0a29c1737ddbcb72
a23be40ba8f5a1a46f528d4229258987bb88868a9d06b898a2644ed4124bf95f
GET /gtag/js?id=UA-10193151-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 Sep 2022 10:12:02 GMT
expires: Mon, 19 Sep 2022 10:12:02 GMT
cache-control: private, max-age=900
last-modified: Mon, 19 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42395
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 19 Sep 2022 10:12:02 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.youtube.com/api/stats/atr?ns=yt&el=embedded&cpn=i5Em6jOjtABfjB8r&ver=2&cmt=0&fs=0&rt=0&euri=https%3A%2F%2Fmahacet.com%2F&lact=2302&cl=474659921&mos=0&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20220914.01.01&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&epm=1&hl=en_US&cr=NO&len=252&fexp=23983296%2C24001373%2C24002022%2C24002025%2C24004644%2C24007246%2C24080738%2C24135310%2C24169501%2C24226335%2C24231053%2C24248385%2C24255165%2C24260441%2C24268154%2C24269957%2C24276631%2C24280303%2C24282153%2C39322399&feature=oembed&muted=0&docid=MRpqEcbnWdQ
216.58.211.14204 No Content 0 B URL HTTP/2 www.youtube.com/api/stats/atr?ns=yt&el=embedded&cpn=i5Em6jOjtABfjB8r&ver=2&cmt=0&fs=0&rt=0&euri=https%3A%2F%2Fmahacet.com%2F&lact=2302&cl=474659921&mos=0&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20220914.01.01&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&epm=1&hl=en_US&cr=NO&len=252&fexp=23983296%2C24001373%2C24002022%2C24002025%2C24004644%2C24007246%2C24080738%2C24135310%2C24169501%2C24226335%2C24231053%2C24248385%2C24255165%2C24260441%2C24268154%2C24269957%2C24276631%2C24280303%2C24282153%2C39322399&feature=oembed&muted=0&docid=MRpqEcbnWdQ
IP 216.58.211.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/stats/atr?ns=yt&el=embedded&cpn=i5Em6jOjtABfjB8r&ver=2&cmt=0&fs=0&rt=0&euri=https%3A%2F%2Fmahacet.com%2F&lact=2302&cl=474659921&mos=0&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20220914.01.01&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&epm=1&hl=en_US&cr=NO&len=252&fexp=23983296%2C24001373%2C24002022%2C24002025%2C24004644%2C24007246%2C24080738%2C24135310%2C24169501%2C24226335%2C24231053%2C24248385%2C24255165%2C24260441%2C24268154%2C24269957%2C24276631%2C24280303%2C24282153%2C39322399&feature=oembed&muted=0&docid=MRpqEcbnWdQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgsyRDFYNXE5ZXVTbyjvgKGZBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20220914.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1663582301181&flash=0&frm=2&u_tz&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C770%2C433&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 1732
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
date: Mon, 19 Sep 2022 10:12:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
216.58.211.14200 OK 31 B URL HTTP/2 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 216.58.211.14:0
File type JSON data\012- , ASCII text
Hash 0517a608635a116d279530f9e79f46c6
d039de7440a05934e6a9f517ef98c460efa701c4
fcdc48636aaf6e5c6123f43decdec565c7a7614a1729283815ecdfb7ae1bef63
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1663582303618
Content-Type: application/json
X-Goog-Visitor-Id: CgsyRDFYNXE5ZXVTbyjvgKGZBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20220914.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1663582300748&flash=0&frm=2&u_tz&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C770%2C433&vis=1&wgl=true&ca_type=image
Content-Length: 667
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 19 Sep 2022 10:12:03 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+788; expires=Wed, 18-Sep-2024 10:12:02 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f5226d7613c4b543a407be3d5b884fb4
1517f7478d655a2819409923550e59611d084310
b08b7a4499d4a7337755fac0983d34e8289a6665c8e315acd9c4772ac349a9e6
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1146
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:03 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
my.rtmark.net/p.js?f=sync&lr=1&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2
IP 139.45.195.8:0
Hash 50ddbff6dd8267c5925f72d28d9e3e3e
66883831e6bfc896216d0d9e25eb850aadc91511
fc1ba62996ffaf271c949fced99155b08a63c99dc87152a2fcb50c2ea9ffd93f
GET /p.js?f=sync&lr=1&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Cookie: ID=c8b900294f684554bb35b5b0e6ecb1d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:03 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=102123
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=102123
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=102123 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 10:12:03 GMT
access-control-allow-origin: https://mahacet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 945de191d5f12f11b4533003faba9b8a
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127
142.250.74.130200 OK 53 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127
IP 142.250.74.130:0
File type ASCII text, with very long lines (5047)
Hash e361aa568a4771ec479cea036fdeda9c
7fc3fbe34c5a8dcf710ff9698fa36539f7d5fdcb
d5c039c0ece647544bf75177f663b99cf8cf2135a6133975ebe950926a673718
GET /pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Mon, 19 Sep 2022 10:12:03 GMT
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 5981755384072987368
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 52794
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mahacet.com/favicon.ico
5.9.96.241200 OK 0 B IP 5.9.96.241:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: mahacet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/discovery-plus-voucher-coupon-code.html?utm_source=Google&utm_medium=Social&rdk=rk1
Cookie: _ga=GA1.2.762906361.1663582301; _gid=GA1.2.443893962.1663582301; _gat_gtag_UA_10193151_1=1; __gads=ID=72f02f674833c99a-2211742b25ce004b:T=1663582320:RT=1663582320:S=ALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:03 GMT
content-type: text/html; charset=UTF-8
content-length: 0
link: <https://mahacet.com/wp-json/>; rel="https://api.w.org/"
expires: Fri, 18 Nov 2022 10:12:03 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: STALE
x-server-powered-by: Engintron
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/www-player.css
216.58.211.14200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-player.css
IP 216.58.211.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3a057d9fa48ad6b735e91c1f7fd7909a
e6a67ab82ccccef2ff9c2a9675549db921d86a4d
62ace094defa260545fd5dad61759df34fe0ae1a8dc1f0cf40a70d28a04ea905
GET /s/player/a97e97de/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49363
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:35 GMT
expires: Sat, 16 Sep 2023 03:04:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/css
age: 284848
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
216.58.211.14200 OK 98 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (570)
Hash 66779b8011cd9ebfa3cb7a6de301d00d
a85da451fc25564d8b0a7287ea67e644790d1a3e
75228478dd647670e9d3aeae17d741abd5f5a07d739127dfbfeded437927d7fa
GET /s/player/a97e97de/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97939
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:35 GMT
expires: Sat, 16 Sep 2023 03:04:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 284848
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
216.58.211.14200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.211.14:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:35 GMT
expires: Sat, 16 Sep 2023 03:04:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 284848
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 164405
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
216.58.211.14200 OK 590 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (554)
Size 590 kB (589794 bytes)
Hash 2cf72d6908c8dfac7e8c8c5debe1bba0
69aef6123882a5df7a9460f8b69e16ef4312d757
b2beac7d81227b7916417f65959a82092770b53ab9f3add4d2603fbcf6838375
GET /s/player/a97e97de/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 589794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:13:47 GMT
expires: Sat, 16 Sep 2023 03:13:47 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 284296
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5414070771498127&plah=mahacet.com
142.250.74.130200 OK 125 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5414070771498127&plah=mahacet.com
IP 142.250.74.130:0
File type ASCII text, with very long lines (5015)
Size 125 kB (124739 bytes)
Hash 0e8990a0b1f149338317d5a34ec9fd6b
d21b1c95acb095f32bec0545b6190cd444885e34
f4c612f3aac9245d63dea07b7b558fd5384e8236569748a5e78fab662d6ea039
GET /pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5414070771498127&plah=mahacet.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 19 Sep 2022 10:12:03 GMT
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 14486005987656794365
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 124739
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&tn=DIV&id=side_left_ad&ign=false&pw=1280&ph=939&x=0&y=0
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&tn=DIV&id=side_left_ad&ign=false&pw=1280&ph=939&x=0&y=0
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&tn=DIV&id=side_left_ad&ign=false&pw=1280&ph=939&x=0&y=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.a-ads.com/2051809?size=728x90
136.243.3.135200 OK 4.7 kB URL HTTP/2 ad.a-ads.com/2051809?size=728x90
IP 136.243.3.135:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Hash b138ac6da39d7496eda87ae51e221bf2
8f3e671a5f0e956bfa41a17846ed71faec2b1d66
2ff71aecaa32bf70c9de62309ccaaef80c7401cf155df823c74df61d76616d58
GET /2051809?size=728x90 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:03 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://mahacet.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=mahacet.com&callback=_gfp_s_&client=ca-pub-5414070771498127&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ
172.217.21.162200 OK 32 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=mahacet.com&callback=_gfp_s_&client=ca-pub-5414070771498127&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash e003723bb43e8e216426c5cd897b3a9f
85f6260d04937794cddbf58b46caa5dd7a7dd489
ebb110f380b85f1eadd52e180b12c2ad3c10bba0edddda63a3a79d4ca3673b78
GET /gampad/cookie.js?domain=mahacet.com&callback=_gfp_s_&client=ca-pub-5414070771498127&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
cache-control: private
content-length: 32
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.google-analytics.com/analytics.js
216.58.211.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 19 Sep 2022 08:29:41 GMT
expires: Mon, 19 Sep 2022 10:29:41 GMT
cache-control: public, max-age=7200
age: 6142
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j96&a=969623720&t=pageview&_s=1&dl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&ul=en-us&de=UTF-8&dt=Discovery%20Plus%20Voucher%20Coupon%20Code%20For%20Rs%2050%20Discount%20On&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=QACAAUAB~&jid=&gjid=&cid=762906361.1663582301&tid=UA-10193151-1&_gid=443893962.1663582301>m=2ou9e0&z=1869295101
216.58.211.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&a=969623720&t=pageview&_s=1&dl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&ul=en-us&de=UTF-8&dt=Discovery%20Plus%20Voucher%20Coupon%20Code%20For%20Rs%2050%20Discount%20On&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=QACAAUAB~&jid=&gjid=&cid=762906361.1663582301&tid=UA-10193151-1&_gid=443893962.1663582301>m=2ou9e0&z=1869295101
IP 216.58.211.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j96&a=969623720&t=pageview&_s=1&dl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1&ul=en-us&de=UTF-8&dt=Discovery%20Plus%20Voucher%20Coupon%20Code%20For%20Rs%2050%20Discount%20On&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=QACAAUAB~&jid=&gjid=&cid=762906361.1663582301&tid=UA-10193151-1&_gid=443893962.1663582301>m=2ou9e0&z=1869295101 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Sun, 18 Sep 2022 11:05:13 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 83210
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.a-ads.com/a-ads-banners/416538/728x90?region=eu-central-1
136.243.3.135200 OK 442 kB URL HTTP/2 static.a-ads.com/a-ads-banners/416538/728x90?region=eu-central-1
IP 136.243.3.135:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 728 x 90\012- data
Size 442 kB (442038 bytes)
Hash f28650fd359b52ff7f087b57510c6de4
7dd06c7bb313de73ed6f7f36c92e1c53bf36764a
e142f5f210f767389e3c66c13f80eb9460980e3b71446c24bc5e33bff6bb383f
GET /a-ads-banners/416538/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:03 GMT
content-type: image/gif
content-length: 442038
x-amz-id-2: neMGNqTyafKxbVgcJhKwgKJESGtj4mA442oEPy70cEiZbhkSANnMpanMhPJ0R19m6Ea/J/Piioc=
x-amz-request-id: KWKPJEBQTQR0GF4G
x-amz-replication-status: COMPLETED
last-modified: Sun, 18 Sep 2022 16:00:09 GMT
etag: "f28650fd359b52ff7f087b57510c6de4"
cache-control: max-age=315360000
x-amz-version-id: ulaAxle5Ijj_mNPfNQ.L_ApnyuyAGN1Q
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2&ttl=&rurl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2&ttl=&rurl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=90168112b3ddf305f921e6f3de58e4fa045a948b2938945af70cbf81702a28a2&ttl=&rurl=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Cookie: ID=c8b900294f684554bb35b5b0e6ecb1d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:03 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=c8b900294f684554bb35b5b0e6ecb1d4; expires=Tue, 19 Sep 2023 10:12:03 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&adk=1812271804&adf=3025194257&lmt=1663577725&plat=1%3A16777216%2C2%3A16777216%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&ea=0&pra=5&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&dt=1663582304005&bpp=10&bdt=421&idt=228&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&nras=1&correlator=7793780139441&frm=20&pv=2&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=272
142.250.74.130200 OK 45 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&adk=1812271804&adf=3025194257&lmt=1663577725&plat=1%3A16777216%2C2%3A16777216%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&ea=0&pra=5&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&dt=1663582304005&bpp=10&bdt=421&idt=228&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&nras=1&correlator=7793780139441&frm=20&pv=2&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=272
IP 142.250.74.130:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash ce26e983c19ff4c688fca538cad1421e
ab66259fe69835ea66a1b8d0b870e8580e7ca93e
7d5fa8e7c46f7de3970f23ff864e89428566c75e71e366b976cf4d7a55c849ae
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&adk=1812271804&adf=3025194257&lmt=1663577725&plat=1%3A16777216%2C2%3A16777216%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&ea=0&pra=5&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&dt=1663582304005&bpp=10&bdt=421&idt=228&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&nras=1&correlator=7793780139441&frm=20&pv=2&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=272 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 45422
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Mon, 19 Sep 2022 10:12:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:23 GMT
expires: Mon, 19 Sep 2022 10:14:23 GMT
cache-control: public, max-age=900
age: 760
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=850080377&adf=3262010199&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=2&bdt=439&idt=314&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=96&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=3&uci=a!3&fsb=1&xpc=g8nmtAujMg&p=https%3A//mahacet.com&dtd=369
142.250.74.130200 OK 213 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=850080377&adf=3262010199&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=2&bdt=439&idt=314&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=96&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=3&uci=a!3&fsb=1&xpc=g8nmtAujMg&p=https%3A//mahacet.com&dtd=369
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash ec87669a26434d95b9921cae950bd61d
faca300079b190274c46191d024ddb9822d1d4bc
4fe72a9c4c633b4eb388e5c854f82fba45772bab96b3a2b9add44dcf461b3db6
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=850080377&adf=3262010199&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=2&bdt=439&idt=314&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=96&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=3&uci=a!3&fsb=1&xpc=g8nmtAujMg&p=https%3A//mahacet.com&dtd=369 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 213
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=643801748&adf=4123637310&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=3&bdt=439&idt=306&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=540&ady=0&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=2&uci=a!2&fsb=1&xpc=7OAtW6XcJX&p=https%3A//mahacet.com&dtd=363
142.250.74.130200 OK 32 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=643801748&adf=4123637310&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=3&bdt=439&idt=306&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=540&ady=0&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=2&uci=a!2&fsb=1&xpc=7OAtW6XcJX&p=https%3A//mahacet.com&dtd=363
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (60334)
Hash 88d5f14847260609638675a6d4d2b106
f8f20cd7bc114a2d992e5c597e78def18dc68f5e
cf3ae364c2fc2a589a63299e4be0d7b048d24573f35452922a1e933e60aee153
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=643801748&adf=4123637310&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=3&bdt=439&idt=306&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=540&ady=0&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=2&uci=a!2&fsb=1&xpc=7OAtW6XcJX&p=https%3A//mahacet.com&dtd=363 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 32072
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=1646902164&adf=3671705910&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=1&bdt=439&idt=319&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=663&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=5&uci=a!5&fsb=1&xpc=DxyujwjHWF&p=https%3A//mahacet.com&dtd=380
142.250.74.130200 OK 33 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=1646902164&adf=3671705910&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=1&bdt=439&idt=319&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=663&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=5&uci=a!5&fsb=1&xpc=DxyujwjHWF&p=https%3A//mahacet.com&dtd=380
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash 5e5a1005a6d35c40a3131b49ea7eafef
0b7462b8aea62be95b6e6192076d90b9ab1e93ff
853b61539077d89b69619b64a6921f928818a30707b84c13d8c6ddb9a518914c
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=1646902164&adf=3671705910&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=1&bdt=439&idt=319&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=663&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=5&uci=a!5&fsb=1&xpc=DxyujwjHWF&p=https%3A//mahacet.com&dtd=380 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 33091
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d49753137719be0613b6a4a5b987ffad
c4fe60ec81db9198a2b99949e2b09f5c000dbed7
1eb4ccf08d147382f4a10ba6f212eb85099427810465eb88dd73eb89ec901d4d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:03 GMT
server: ESF
cache-control: private
content-length: 30775
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/8jEuNRvllEtFmLzioZdbHhRQ_2cTQWhd6LiOGRrTeiw.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/8jEuNRvllEtFmLzioZdbHhRQ_2cTQWhd6LiOGRrTeiw.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35918)
Hash b600177efe473664fb627ad35ffbc4db
b85f65be40c923277d1455e64a33966ee9fa0838
ec20323b3d03a9e3cb135ab17c27cee75eab248b40f3ebed5062d80ef18f961f
GET /js/th/8jEuNRvllEtFmLzioZdbHhRQ_2cTQWhd6LiOGRrTeiw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:03:05 GMT
expires: Thu, 14 Sep 2023 05:03:05 GMT
cache-control: public, max-age=31536000
age: 450538
last-modified: Mon, 29 Aug 2022 11:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=2210784318&adf=2841456516&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304026&bpp=2&bdt=442&idt=417&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=64&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=6&uci=a!6&fsb=1&xpc=3mJ0WXTR4Q&p=https%3A//mahacet.com&dtd=507
142.250.74.130200 OK 213 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=2210784318&adf=2841456516&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304026&bpp=2&bdt=442&idt=417&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=64&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=6&uci=a!6&fsb=1&xpc=3mJ0WXTR4Q&p=https%3A//mahacet.com&dtd=507
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash f25ec5037d908e155ca0bf0aab099187
73855555fa8a8b692614a481c903368e6e75fa74
35c645a9883635d6f3bfc74f197d6995d9df3417e5a9135f8f8f470d592c33b1
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=2210784318&adf=2841456516&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304026&bpp=2&bdt=442&idt=417&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=64&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=6&uci=a!6&fsb=1&xpc=3mJ0WXTR4Q&p=https%3A//mahacet.com&dtd=507 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:03 GMT
server: cafe
content-length: 213
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:03 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id?slf_rd=1
142.250.74.130200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 142.250.74.130:0
Hash a85fe14f7d3b1ff1bde23e9a37544292
5ea38ac45c83c82abf358cabed3dbbd818eef22c
f56aae0c6ba8bdeae897fe4223150d15a528144878553ec311ffc3eab3a00372
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Mon, 19 Sep 2022 10:12:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=60&slotname=2982789661&adk=1755673931&adf=2270175593&pi=t.ma~as.2982789661&w=468&lmt=1663577725&psa=1&format=468x60&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304026&bpp=2&bdt=443&idt=423&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=74&ady=1557&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=7&uci=a!7&btvi=1&fsb=1&xpc=oJf13sn4n6&p=https%3A//mahacet.com&dtd=513
142.250.74.130200 OK 212 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=60&slotname=2982789661&adk=1755673931&adf=2270175593&pi=t.ma~as.2982789661&w=468&lmt=1663577725&psa=1&format=468x60&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304026&bpp=2&bdt=443&idt=423&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=74&ady=1557&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=7&uci=a!7&btvi=1&fsb=1&xpc=oJf13sn4n6&p=https%3A//mahacet.com&dtd=513
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash ee474ee83178a37f09ada34cf76386b1
47f92efa10edd652b189e0f051056f021b985d79
e01ef76df803d913baad14d1ae4f5c4a41e3057ab1fe05a8cad40e328ed3a87b
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=60&slotname=2982789661&adk=1755673931&adf=2270175593&pi=t.ma~as.2982789661&w=468&lmt=1663577725&psa=1&format=468x60&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304026&bpp=2&bdt=443&idt=423&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=74&ady=1557&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=7&uci=a!7&btvi=1&fsb=1&xpc=oJf13sn4n6&p=https%3A//mahacet.com&dtd=513 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:04 GMT
server: cafe
content-length: 212
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu9VeU_ItGhTV5abv_ruXkrvLDUpiBrPHGfroZg4=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu9VeU_ItGhTV5abv_ruXkrvLDUpiBrPHGfroZg4=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 311484db8a48fb9a6a46d6b48adfecab
5fcb17afb8df748d17b028ad6f120b7cab1ccc8a
c926d62d7a2613bb9d00e704ac77cfe8dadefdb920dc6cc6b5b134cfec3bd69d
GET /ytc/AMLnZu9VeU_ItGhTV5abv_ruXkrvLDUpiBrPHGfroZg4=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2447
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:27:44 GMT
expires: Tue, 20 Sep 2022 09:27:44 GMT
cache-control: public, max-age=86400, no-transform
etag: "v4f"
content-type: image/jpeg
age: 2660
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
i.ytimg.com/vi_webp/MRpqEcbnWdQ/maxresdefault.webp
142.250.74.86200 OK 66 kB URL HTTP/2 i.ytimg.com/vi_webp/MRpqEcbnWdQ/maxresdefault.webp
IP 142.250.74.86:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3c1f6fe8ab83efa0114f4e94c101349a
ca530bde74d42b0e669785e1c7ea0749aa2260b5
1e2dd26bc3ed674c89a55af10dcf567cac20dc0571cdd6bdb9b234f3f90ab1cc
GET /vi_webp/MRpqEcbnWdQ/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 66022
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:28:48 GMT
expires: Mon, 19 Sep 2022 11:28:48 GMT
cache-control: public, max-age=7200
etag: "1656001535"
content-type: image/webp
age: 2596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.youtube.com/generate_204?31Z8zQ
216.58.211.14204 No Content 0 B URL HTTP/2 www.youtube.com/generate_204?31Z8zQ
IP 216.58.211.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?31Z8zQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
142.250.74.163200 OK 4.4 kB URL HTTP/2 www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (1854)
Hash 2dbe6a78d10de55f020e77d5dfb62cdc
6bf8261b0c9ffcbff081d78c5d85a8a051ab1c72
ce6a82c27a0716d210cab902d61db854c2b013a8b84b685cb77340dc7dfcf269
GET /mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4398
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:52 GMT
expires: Thu, 15 Dec 2022 01:34:52 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
142.250.74.163200 OK 7.8 kB URL HTTP/2 www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
IP 142.250.74.163:0
File type ASCII text, with very long lines (2169)
Hash ff760691b46fa3f73ba5b07e4f7548da
f5ed08e9e4167140614ee04ab58a57da702e252c
014e592b83c38037df4c00b163af0361b8063b94b617f5ddbd6c7bab5789ea2f
GET /mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 7793
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:57 GMT
expires: Thu, 15 Dec 2022 01:34:57 GMT
cache-control: public, max-age=7776000
age: 290227
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:24 GMT
expires: Mon, 03 Oct 2022 09:59:24 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 760
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
142.250.74.163200 OK 2.2 kB URL HTTP/2 www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (514)
Hash 6059ebd72e57e7630b752a27b22f91cd
8d91f883ba6cbbc80878fe6b71c450c0c1849eed
8eebb8e7d4ceabfe40cbe2b1ed096bd9ef2150f57a3283380ca52bb5db23cc93
GET /mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 2233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:15:36 GMT
expires: Wed, 14 Dec 2022 17:15:36 GMT
cache-control: public, max-age=7776000
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
age: 320188
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 85a90b8e0126b27c0822c49645a463df
45792c551fabfa14db90396c2c34337929011a3b
13fe815828a5dc11870c98db4957f2f59aaf7e0eaec4028d3d88fb4b6e82588e
GET /pagead/js/r20220914/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9550
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:10:05 GMT
expires: Mon, 03 Oct 2022 10:10:05 GMT
cache-control: public, max-age=1209600
etag: 715955199520789971
content-type: text/javascript; charset=UTF-8
age: 119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 85a90b8e0126b27c0822c49645a463df
45792c551fabfa14db90396c2c34337929011a3b
13fe815828a5dc11870c98db4957f2f59aaf7e0eaec4028d3d88fb4b6e82588e
GET /pagead/js/r20220914/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9550
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:10:05 GMT
expires: Mon, 03 Oct 2022 10:10:05 GMT
cache-control: public, max-age=1209600
etag: 715955199520789971
content-type: text/javascript; charset=UTF-8
age: 119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
142.250.74.163200 OK 4.4 kB URL HTTP/2 www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (1854)
Hash 2dbe6a78d10de55f020e77d5dfb62cdc
6bf8261b0c9ffcbff081d78c5d85a8a051ab1c72
ce6a82c27a0716d210cab902d61db854c2b013a8b84b685cb77340dc7dfcf269
GET /mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4398
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:52 GMT
expires: Thu, 15 Dec 2022 01:34:52 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
142.250.74.163200 OK 7.8 kB URL HTTP/2 www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
IP 142.250.74.163:0
File type ASCII text, with very long lines (2169)
Hash ff760691b46fa3f73ba5b07e4f7548da
f5ed08e9e4167140614ee04ab58a57da702e252c
014e592b83c38037df4c00b163af0361b8063b94b617f5ddbd6c7bab5789ea2f
GET /mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 7793
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:57 GMT
expires: Thu, 15 Dec 2022 01:34:57 GMT
cache-control: public, max-age=7776000
age: 290227
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
142.250.74.163200 OK 2.2 kB URL HTTP/2 www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (514)
Hash 6059ebd72e57e7630b752a27b22f91cd
8d91f883ba6cbbc80878fe6b71c450c0c1849eed
8eebb8e7d4ceabfe40cbe2b1ed096bd9ef2150f57a3283380ca52bb5db23cc93
GET /mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 2233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:15:36 GMT
expires: Wed, 14 Dec 2022 17:15:36 GMT
cache-control: public, max-age=7776000
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
age: 320188
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:24 GMT
expires: Mon, 03 Oct 2022 09:59:24 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 760
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Mon, 19 Sep 2022 10:12:04 GMT
expires: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Mon, 19 Sep 2022 10:12:04 GMT
expires: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
142.250.74.33200 OK 875 B URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (748)
Hash 7f017195be529ea58c3ab78d8dc1be22
d2a8f25d05226f8b59f74573f2509612c00710f9
59acc2605c947c7e98d070701e01bc7813688e81ad022192bb5a9311e799aa24
GET /pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 875
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:50:50 GMT
expires: Mon, 03 Oct 2022 09:50:50 GMT
cache-control: public, max-age=1209600
etag: 16974406330603315520
content-type: text/javascript; charset=UTF-8
age: 1274
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
142.250.74.33200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1120)
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /pagead/js/r20220914/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1359
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:02:46 GMT
expires: Mon, 03 Oct 2022 10:02:46 GMT
cache-control: public, max-age=1209600
etag: 1484984001845508991
content-type: text/javascript; charset=UTF-8
age: 558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (2944)
Hash c8c0ce1b17f6ed0900bf0ae22a83a7ea
fdf1512f0cf46ec029f0c546cc8297a078ce11b8
bd37705e6c661c46d6d2a2576f10c6640cf06c4b2d122e8feedceeb5a65b3832
GET /mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13694
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:37 GMT
expires: Thu, 15 Dec 2022 01:34:37 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290247
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/12858084290494352027/6592766407814317453
142.250.74.33200 OK 21 kB URL HTTP/2 tpc.googlesyndication.com/simgad/12858084290494352027/6592766407814317453
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x300, components 3\012- data
Hash cc0b2a98290e9501d8c5ac3c81b33f3b
55a3c7b06014a33845fba85319779890926643af
7063645ef7212a2f12df9a74e4897432020060e64ddc91a7bf7a4aee5a9a1b41
GET /simgad/12858084290494352027/6592766407814317453 HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 20927
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 14:32:37 GMT
expires: Fri, 15 Sep 2023 14:32:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Apr 2021 17:49:31 GMT
content-type: image/jpeg
age: 329967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/1294355924187329415/downsize_200k_v1?w=100&h=100
142.250.74.33200 OK 5.5 kB URL HTTP/2 tpc.googlesyndication.com/simgad/1294355924187329415/downsize_200k_v1?w=100&h=100
IP 142.250.74.33:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4357a0cac2b127bd5626692b044e96b0
5791996645178d90fd05a3ed851ff0232a8ccf52
387de0fefe66f8ba88193a6f884468a5c0186a9b47560e55d38a7ec35fda7491
GET /simgad/1294355924187329415/downsize_200k_v1?w=100&h=100 HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 5463
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 16:14:21 GMT
expires: Thu, 14 Sep 2023 16:14:21 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Apr 2021 17:47:13 GMT
content-type: image/png
age: 410263
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
142.250.74.33200 OK 875 B URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (748)
Hash 7f017195be529ea58c3ab78d8dc1be22
d2a8f25d05226f8b59f74573f2509612c00710f9
59acc2605c947c7e98d070701e01bc7813688e81ad022192bb5a9311e799aa24
GET /pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 875
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:50:50 GMT
expires: Mon, 03 Oct 2022 09:50:50 GMT
cache-control: public, max-age=1209600
etag: 16974406330603315520
content-type: text/javascript; charset=UTF-8
age: 1274
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaS5EDI-c7Ruq_aYX8EUk_sxhbFFmaGDQ__T-GpiLLEIQj8I3lh9DO4XnC6b8j-s3Mi8AcSQ3o-N1wcoZrFzzxuj99Ho1w
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaS5EDI-c7Ruq_aYX8EUk_sxhbFFmaGDQ__T-GpiLLEIQj8I3lh9DO4XnC6b8j-s3Mi8AcSQ3o-N1wcoZrFzzxuj99Ho1w
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaS5EDI-c7Ruq_aYX8EUk_sxhbFFmaGDQ__T-GpiLLEIQj8I3lh9DO4XnC6b8j-s3Mi8AcSQ3o-N1wcoZrFzzxuj99Ho1w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:04 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (2944)
Hash c8c0ce1b17f6ed0900bf0ae22a83a7ea
fdf1512f0cf46ec029f0c546cc8297a078ce11b8
bd37705e6c661c46d6d2a2576f10c6640cf06c4b2d122e8feedceeb5a65b3832
GET /mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13694
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:37 GMT
expires: Thu, 15 Dec 2022 01:34:37 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290247
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open%20Sans%3A300%2C400%2C500
142.250.74.10200 OK 2.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans%3A300%2C400%2C500
IP 142.250.74.10:0
File type ASCII text, with very long lines (1120)
Hash c287d7e0588edef8cf660866b6728444
b9621381d49a95264c54fc056e78158bbab56801
1ae3ea092279dfb3450390b9aa16ee1581cca2bf38dca010e2727e850db17c6d
GET /css?family=Open%20Sans%3A300%2C400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 10:12:04 GMT
date: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
googleads.g.doubleclick.net/pagead/adview?ai=CQAZ-c0AoY-zPKJmZygX-gIHYCf-7mLVsp8-psZsP1oyShKwlEAEg1fXSFGDDhICAmBigAdzfoZMDyAEJqAMByAPLBKoE7AFP0G4DYbvIIlg9d7Cz1m-H5ETtUnHsqsDSS93pboYYgyUXXZlztDJPcGtS259XnlMRdDUtuRBjYpWEuzsNyrWxTw2jMDhRAtKv2h9ksKm1Jn6G0cSAGUMGdhELewIcF66s0d6COJ3NMApnzIt1idXR_uNd6kwLP196OJSFN_I5_qQd9y7xpttU1tbRDoXkpN3gaTiHzx1YxVWsNPInWzKm6QZx9ie97dsTNX95kTtTWPq2gW_O6yn9VBNHXQMQTuT-gRDaxKofM_V5oeMbXXX63UHksIMOfv_IkNEz9Dma45kKAYJOACnO-nQRQsAEqOju9fkCkgUECAQYAZIFBAgFGASSBQQIBRgYkgUFCAUYqAGgBi6AB4yg3myoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G9gHAPIHAxCUWtIIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAbgT5APYEwyIFAXQFQGYFgGAFwGyFxwKGggAEhRwdWItNTQxNDA3MDc3MTQ5ODEyNxgA&sigh=YuPYMKKAd5Q&uach_m=[UACH]&cid=CAQSPgCsnQUxkbkYUvbokp2w7k59r_mJ56gN07FONwsXNiMrSp_8ULgV0UuqfdhO0M0wicZ9KwCmaDMnoz9fzgGqGAEgDg&template_id=484
142.250.74.130200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/adview?ai=CQAZ-c0AoY-zPKJmZygX-gIHYCf-7mLVsp8-psZsP1oyShKwlEAEg1fXSFGDDhICAmBigAdzfoZMDyAEJqAMByAPLBKoE7AFP0G4DYbvIIlg9d7Cz1m-H5ETtUnHsqsDSS93pboYYgyUXXZlztDJPcGtS259XnlMRdDUtuRBjYpWEuzsNyrWxTw2jMDhRAtKv2h9ksKm1Jn6G0cSAGUMGdhELewIcF66s0d6COJ3NMApnzIt1idXR_uNd6kwLP196OJSFN_I5_qQd9y7xpttU1tbRDoXkpN3gaTiHzx1YxVWsNPInWzKm6QZx9ie97dsTNX95kTtTWPq2gW_O6yn9VBNHXQMQTuT-gRDaxKofM_V5oeMbXXX63UHksIMOfv_IkNEz9Dma45kKAYJOACnO-nQRQsAEqOju9fkCkgUECAQYAZIFBAgFGASSBQQIBRgYkgUFCAUYqAGgBi6AB4yg3myoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G9gHAPIHAxCUWtIIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAbgT5APYEwyIFAXQFQGYFgGAFwGyFxwKGggAEhRwdWItNTQxNDA3MDc3MTQ5ODEyNxgA&sigh=YuPYMKKAd5Q&uach_m=[UACH]&cid=CAQSPgCsnQUxkbkYUvbokp2w7k59r_mJ56gN07FONwsXNiMrSp_8ULgV0UuqfdhO0M0wicZ9KwCmaDMnoz9fzgGqGAEgDg&template_id=484
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/adview?ai=CQAZ-c0AoY-zPKJmZygX-gIHYCf-7mLVsp8-psZsP1oyShKwlEAEg1fXSFGDDhICAmBigAdzfoZMDyAEJqAMByAPLBKoE7AFP0G4DYbvIIlg9d7Cz1m-H5ETtUnHsqsDSS93pboYYgyUXXZlztDJPcGtS259XnlMRdDUtuRBjYpWEuzsNyrWxTw2jMDhRAtKv2h9ksKm1Jn6G0cSAGUMGdhELewIcF66s0d6COJ3NMApnzIt1idXR_uNd6kwLP196OJSFN_I5_qQd9y7xpttU1tbRDoXkpN3gaTiHzx1YxVWsNPInWzKm6QZx9ie97dsTNX95kTtTWPq2gW_O6yn9VBNHXQMQTuT-gRDaxKofM_V5oeMbXXX63UHksIMOfv_IkNEz9Dma45kKAYJOACnO-nQRQsAEqOju9fkCkgUECAQYAZIFBAgFGASSBQQIBRgYkgUFCAUYqAGgBi6AB4yg3myoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G9gHAPIHAxCUWtIIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAbgT5APYEwyIFAXQFQGYFgGAFwGyFxwKGggAEhRwdWItNTQxNDA3MDc3MTQ5ODEyNxgA&sigh=YuPYMKKAd5Q&uach_m=[UACH]&cid=CAQSPgCsnQUxkbkYUvbokp2w7k59r_mJ56gN07FONwsXNiMrSp_8ULgV0UuqfdhO0M0wicZ9KwCmaDMnoz9fzgGqGAEgDg&template_id=484 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=643801748&adf=4123637310&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=3&bdt=439&idt=306&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=540&ady=0&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=2&uci=a!2&fsb=1&xpc=7OAtW6XcJX&p=https%3A//mahacet.com&dtd=363
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'none'; object-src 'none'
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:04 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:04 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaSH8qGkNsUWvcTust46nU0J1o5qq_QTLMbOXMt2VWDPaevQ81-tUliD6kADgkEEGlI4Ej5bFgzkYm09F-r9YwCiSJOzeg
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaSH8qGkNsUWvcTust46nU0J1o5qq_QTLMbOXMt2VWDPaevQ81-tUliD6kADgkEEGlI4Ej5bFgzkYm09F-r9YwCiSJOzeg
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaSH8qGkNsUWvcTust46nU0J1o5qq_QTLMbOXMt2VWDPaevQ81-tUliD6kADgkEEGlI4Ej5bFgzkYm09F-r9YwCiSJOzeg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:04 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/11781550825677238764/downsize_200k_v1?w=195&h=102
142.250.74.33200 OK 4.6 kB URL HTTP/2 tpc.googlesyndication.com/simgad/11781550825677238764/downsize_200k_v1?w=195&h=102
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 195x102, components 3\012- data
Hash 3bcfa357fefa103b02f43c453137aedb
678b5b30ccae5c7baba25364bffe2390b747f39c
8976507d5a3410b19f55a638ff48b08ef2d765d0baa516f3b18eca15af43dfc6
GET /simgad/11781550825677238764/downsize_200k_v1?w=195&h=102 HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 4598
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:13:54 GMT
expires: Wed, 13 Sep 2023 17:13:54 GMT
cache-control: public, max-age=31536000
age: 493090
last-modified: Tue, 01 Mar 2022 11:06:15 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/adview?ai=Cwbqrc0AoY8bTKcaTygWvjYmoAdrV5pJs7NvC-9gPxISFngsQASDV9dIUYMOEgICYGKAB39j4ngLIAQmpAskDswp7ubA-qAMByAPLBKoE7AFP0B54UERVeIu1wbPngVQMNvy_gEAf2kBQgQd-oDnnUJLF-rnYrG1EoDWHY37v2CBPTxJmebrRVExZD7LZF-BJULZ6bKoCHI0G6_wmW47KbpCLygeW2dfLRqfmYJc04SBcQO-7gjwIiC_iAZr6TgkwK1VxJKffGF-5atWH5y-cgC1Xn68hMl5NPvtIsPmDPis5TxHRsHjfnYbudXLSIFgU9hEb1MZl3p7EwZX7zu3A1lZN70QVLimWyiJTpdxflH1rPXkookSFmNFaU-4RYtNy3FSYnKjWRnvRIZ04gj2JK7uuywl2aohcf3wfmsAEqKHlzfwDoAYugAeJp4fhAagHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcA8gcDEJA10ggSCIjhgBAQARgfMgOqggE6AoBAgAoByAsB2BMD0BUBgBcBshccChoIABIUcHViLTU0MTQwNzA3NzE0OTgxMjcYAA&sigh=-rHmTABxNL4&uach_m=[UACH]&cid=CAQSPgCsnQUxaA5itUNDwr2XA3DVoYEkVcsITeqm9UorojBo8pnm02nR3LqBByzv5boG09HKkO1QBUuhHQYsIFW8GAEgDg&template_id=5000
142.250.74.130200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/adview?ai=Cwbqrc0AoY8bTKcaTygWvjYmoAdrV5pJs7NvC-9gPxISFngsQASDV9dIUYMOEgICYGKAB39j4ngLIAQmpAskDswp7ubA-qAMByAPLBKoE7AFP0B54UERVeIu1wbPngVQMNvy_gEAf2kBQgQd-oDnnUJLF-rnYrG1EoDWHY37v2CBPTxJmebrRVExZD7LZF-BJULZ6bKoCHI0G6_wmW47KbpCLygeW2dfLRqfmYJc04SBcQO-7gjwIiC_iAZr6TgkwK1VxJKffGF-5atWH5y-cgC1Xn68hMl5NPvtIsPmDPis5TxHRsHjfnYbudXLSIFgU9hEb1MZl3p7EwZX7zu3A1lZN70QVLimWyiJTpdxflH1rPXkookSFmNFaU-4RYtNy3FSYnKjWRnvRIZ04gj2JK7uuywl2aohcf3wfmsAEqKHlzfwDoAYugAeJp4fhAagHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcA8gcDEJA10ggSCIjhgBAQARgfMgOqggE6AoBAgAoByAsB2BMD0BUBgBcBshccChoIABIUcHViLTU0MTQwNzA3NzE0OTgxMjcYAA&sigh=-rHmTABxNL4&uach_m=[UACH]&cid=CAQSPgCsnQUxaA5itUNDwr2XA3DVoYEkVcsITeqm9UorojBo8pnm02nR3LqBByzv5boG09HKkO1QBUuhHQYsIFW8GAEgDg&template_id=5000
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/adview?ai=Cwbqrc0AoY8bTKcaTygWvjYmoAdrV5pJs7NvC-9gPxISFngsQASDV9dIUYMOEgICYGKAB39j4ngLIAQmpAskDswp7ubA-qAMByAPLBKoE7AFP0B54UERVeIu1wbPngVQMNvy_gEAf2kBQgQd-oDnnUJLF-rnYrG1EoDWHY37v2CBPTxJmebrRVExZD7LZF-BJULZ6bKoCHI0G6_wmW47KbpCLygeW2dfLRqfmYJc04SBcQO-7gjwIiC_iAZr6TgkwK1VxJKffGF-5atWH5y-cgC1Xn68hMl5NPvtIsPmDPis5TxHRsHjfnYbudXLSIFgU9hEb1MZl3p7EwZX7zu3A1lZN70QVLimWyiJTpdxflH1rPXkookSFmNFaU-4RYtNy3FSYnKjWRnvRIZ04gj2JK7uuywl2aohcf3wfmsAEqKHlzfwDoAYugAeJp4fhAagHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcA8gcDEJA10ggSCIjhgBAQARgfMgOqggE6AoBAgAoByAsB2BMD0BUBgBcBshccChoIABIUcHViLTU0MTQwNzA3NzE0OTgxMjcYAA&sigh=-rHmTABxNL4&uach_m=[UACH]&cid=CAQSPgCsnQUxaA5itUNDwr2XA3DVoYEkVcsITeqm9UorojBo8pnm02nR3LqBByzv5boG09HKkO1QBUuhHQYsIFW8GAEgDg&template_id=5000 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=1646902164&adf=3671705910&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304023&bpp=1&bdt=439&idt=319&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=663&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=5&uci=a!5&fsb=1&xpc=DxyujwjHWF&p=https%3A//mahacet.com&dtd=380
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'none'; object-src 'none'
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:04 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:04 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/trackimp/N5295.134426.GOOGLEDISPLAYNETWOR/B26966257.323789788;dc_trk_aid=515909901;dc_trk_cid=163309495;ord=1913477246;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;ltd=?
216.58.207.198200 OK 42 B URL HTTP/2 ad.doubleclick.net/ddm/trackimp/N5295.134426.GOOGLEDISPLAYNETWOR/B26966257.323789788;dc_trk_aid=515909901;dc_trk_cid=163309495;ord=1913477246;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;ltd=?
IP 216.58.207.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/trackimp/N5295.134426.GOOGLEDISPLAYNETWOR/B26966257.323789788;dc_trk_aid=515909901;dc_trk_cid=163309495;ord=1913477246;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;ltd=? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:04 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 524463
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 524463
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 524463
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 398276
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 398276
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QKyEAAAAAAABDQDAECg0QAyEAAAAAAIiDQDAECg0QCiEAAAAAAADwPzAECg0QDSEAAAAAAAAAADAECgwQHioGNzI4eDkwMAQKDBAZKgY3Mjh4OTAwBAoNEA4hAAAAAAAAAAAwBAoNEAQhAAAAAACog0AwBAoNEA8hAAAAAAAAAAAwBAoNECshAAAAAAAATkAwBAoNEAUhAAAAAACwg0AwBAoNEBAhAAAAAIAS4EAwBAoNEBEhAAAAAMA_0kAwBAoNEBIhAAAAAAAAFEAwBAoNEBMhAAAAAAAACEAwBAoNEBchAAAAAABAi0AwBBIaQ0t6VjA0dlBvUG9DRlptTXNnb2Rma0FBbXciHHNjcmVhbS90aHJvbmVfaW1hZ2VfbG9nb19vY2goEQ==
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QKyEAAAAAAABDQDAECg0QAyEAAAAAAIiDQDAECg0QCiEAAAAAAADwPzAECg0QDSEAAAAAAAAAADAECgwQHioGNzI4eDkwMAQKDBAZKgY3Mjh4OTAwBAoNEA4hAAAAAAAAAAAwBAoNEAQhAAAAAACog0AwBAoNEA8hAAAAAAAAAAAwBAoNECshAAAAAAAATkAwBAoNEAUhAAAAAACwg0AwBAoNEBAhAAAAAIAS4EAwBAoNEBEhAAAAAMA_0kAwBAoNEBIhAAAAAAAAFEAwBAoNEBMhAAAAAAAACEAwBAoNEBchAAAAAABAi0AwBBIaQ0t6VjA0dlBvUG9DRlptTXNnb2Rma0FBbXciHHNjcmVhbS90aHJvbmVfaW1hZ2VfbG9nb19vY2goEQ==
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QKyEAAAAAAABDQDAECg0QAyEAAAAAAIiDQDAECg0QCiEAAAAAAADwPzAECg0QDSEAAAAAAAAAADAECgwQHioGNzI4eDkwMAQKDBAZKgY3Mjh4OTAwBAoNEA4hAAAAAAAAAAAwBAoNEAQhAAAAAACog0AwBAoNEA8hAAAAAAAAAAAwBAoNECshAAAAAAAATkAwBAoNEAUhAAAAAACwg0AwBAoNEBAhAAAAAIAS4EAwBAoNEBEhAAAAAMA_0kAwBAoNEBIhAAAAAAAAFEAwBAoNEBMhAAAAAAAACEAwBAoNEBchAAAAAABAi0AwBBIaQ0t6VjA0dlBvUG9DRlptTXNnb2Rma0FBbXciHHNjcmVhbS90aHJvbmVfaW1hZ2VfbG9nb19vY2goEQ== HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/reactive_library_fy2021.js
142.250.74.130200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/reactive_library_fy2021.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (3461)
Hash 1d4626a62b31dbc1ebb00b8b69c426e2
66eb3efaf8818d2c2af4a18935b2c509e4ecb060
593a09a3ac5914401c174ebf22f9131204062a190f295a13e994129412bd8cf9
GET /pagead/managed/js/adsense/m202209080101/reactive_library_fy2021.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 19 Sep 2022 10:12:04 GMT
expires: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private, max-age=1209600
content-type: text/javascript; charset=UTF-8
etag: 3770108559606191129
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 54576
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=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
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=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
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=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 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QFCEAAAAA0E31QDAECg0QFSEAAAAAAAAxQDAECg0QFiEAAAAAAAAYQDAECg0QGCEAAAAAAMiPQDAEEhpDS3pWMDR2UG9Qb0NGWm1Nc2dvZGZrQUFtdyIcc2NyZWFtL3Rocm9uZV9pbWFnZV9sb2dvX29jaCgR
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QFCEAAAAA0E31QDAECg0QFSEAAAAAAAAxQDAECg0QFiEAAAAAAAAYQDAECg0QGCEAAAAAAMiPQDAEEhpDS3pWMDR2UG9Qb0NGWm1Nc2dvZGZrQUFtdyIcc2NyZWFtL3Rocm9uZV9pbWFnZV9sb2dvX29jaCgR
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QFCEAAAAA0E31QDAECg0QFSEAAAAAAAAxQDAECg0QFiEAAAAAAAAYQDAECg0QGCEAAAAAAMiPQDAEEhpDS3pWMDR2UG9Qb0NGWm1Nc2dvZGZrQUFtdyIcc2NyZWFtL3Rocm9uZV9pbWFnZV9sb2dvX29jaCgR HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304028&bpp=1&bdt=445&idt=1276&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=gQfaeXPDpS&p=https%3A//mahacet.com&dtd=1321
142.250.74.130200 OK 210 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304028&bpp=1&bdt=445&idt=1276&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=gQfaeXPDpS&p=https%3A//mahacet.com&dtd=1321
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 7f055ceec1280048a2735f3a53a76a74
7af49dad5aa0fe5ba8360dea34c6be42a9bb0c46
45ac8e30f4fb9cdd75ce736fd9e075b4faf1836cc185f0506be990cbc081eab6
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304028&bpp=1&bdt=445&idt=1276&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=gQfaeXPDpS&p=https%3A//mahacet.com&dtd=1321 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:04 GMT
server: cafe
content-length: 210
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:04 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20220914/r20110914/zrt_lookup.html?fsb=1
142.250.74.130200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220914/r20110914/zrt_lookup.html?fsb=1
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220914/r20110914/zrt_lookup.html?fsb=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Sun, 18 Sep 2022 11:11:16 GMT
expires: Sun, 02 Oct 2022 11:11:16 GMT
cache-control: public, max-age=1209600
age: 82848
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAA8D8wBAoNEDMhAAAAAAAA8D8wBAoNEDQhAAAAAAAA8D8wBAoNEDUhAAAAAAAA8D8wBAoNEDYhAAAAAAAA8D8wBAoNEDchAAAAAAAA8D8wBAoNEDghAAAAAAAAOUAwBAoNEDkhAAAAAACAakAwBAoNEDohAAAAAADgakAwBAoNEDshAAAAAADQikAwBAoNEDwhAAAAAAAAi0AwBAoNED0hAAAAAAAQi0AwBAoNED4hAAAAAAD4jUAwBAoNED8hAAAAAAD4jUAwBAoNEEAhAAAAAABwjkAwBBIaQ0liWjFJdlBvUG9DRmNhSnNnb2RyMFlDRlEiCXRleHQvcnl1aygV
0 B URL pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAA8D8wBAoNEDMhAAAAAAAA8D8wBAoNEDQhAAAAAAAA8D8wBAoNEDUhAAAAAAAA8D8wBAoNEDYhAAAAAAAA8D8wBAoNEDchAAAAAAAA8D8wBAoNEDghAAAAAAAAOUAwBAoNEDkhAAAAAACAakAwBAoNEDohAAAAAADgakAwBAoNEDshAAAAAADQikAwBAoNEDwhAAAAAAAAi0AwBAoNED0hAAAAAAAQi0AwBAoNED4hAAAAAAD4jUAwBAoNED8hAAAAAAD4jUAwBAoNEEAhAAAAAABwjkAwBBIaQ0liWjFJdlBvUG9DRmNhSnNnb2RyMFlDRlEiCXRleHQvcnl1aygV
IP :0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAA8D8wBAoNEDMhAAAAAAAA8D8wBAoNEDQhAAAAAAAA8D8wBAoNEDUhAAAAAAAA8D8wBAoNEDYhAAAAAAAA8D8wBAoNEDchAAAAAAAA8D8wBAoNEDghAAAAAAAAOUAwBAoNEDkhAAAAAACAakAwBAoNEDohAAAAAADgakAwBAoNEDshAAAAAADQikAwBAoNEDwhAAAAAAAAi0AwBAoNED0hAAAAAAAQi0AwBAoNED4hAAAAAAD4jUAwBAoNED8hAAAAAAD4jUAwBAoNEEAhAAAAAABwjkAwBBIaQ0liWjFJdlBvUG9DRmNhSnNnb2RyMFlDRlEiCXRleHQvcnl1aygV HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QMiEAAAAAAAAAADAECg0QMyEAAAAAAAAAADAECg0QNCEAAAAAAAAAADAECg0QNSEAAAAAAAAAADAECg0QNiEAAAAAAAAAADAECg0QNyEAAAAAAAAAADAECg0QOCEAAAAAAAA7QDAECg0QOSEAAAAAAEBpQDAECg0QOiEAAAAAAKBpQDAECg0QOyEAAAAAAOCHQDAECg0QPCEAAAAAADiLQDAECg0QPSEAAAAAAECLQDAECg0QPiEAAAAAAHiPQDAECg0QPyEAAAAAAHiPQDAECg0QQCEAAAAAAAyQQDAEEhpDS3pWMDR2UG9Qb0NGWm1Nc2dvZGZrQUFtdyIcc2NyZWFtL3Rocm9uZV9pbWFnZV9sb2dvX29jaCgR
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QMiEAAAAAAAAAADAECg0QMyEAAAAAAAAAADAECg0QNCEAAAAAAAAAADAECg0QNSEAAAAAAAAAADAECg0QNiEAAAAAAAAAADAECg0QNyEAAAAAAAAAADAECg0QOCEAAAAAAAA7QDAECg0QOSEAAAAAAEBpQDAECg0QOiEAAAAAAKBpQDAECg0QOyEAAAAAAOCHQDAECg0QPCEAAAAAADiLQDAECg0QPSEAAAAAAECLQDAECg0QPiEAAAAAAHiPQDAECg0QPyEAAAAAAHiPQDAECg0QQCEAAAAAAAyQQDAEEhpDS3pWMDR2UG9Qb0NGWm1Nc2dvZGZrQUFtdyIcc2NyZWFtL3Rocm9uZV9pbWFnZV9sb2dvX29jaCgR
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoRCAEqDWJhbm5lckFUaHJvbmUKCggCKgZzZXJ2ZXIKGggEKhZteXNpZGlhX2FuYWx5dGljc19leHAyCg0QMiEAAAAAAAAAADAECg0QMyEAAAAAAAAAADAECg0QNCEAAAAAAAAAADAECg0QNSEAAAAAAAAAADAECg0QNiEAAAAAAAAAADAECg0QNyEAAAAAAAAAADAECg0QOCEAAAAAAAA7QDAECg0QOSEAAAAAAEBpQDAECg0QOiEAAAAAAKBpQDAECg0QOyEAAAAAAOCHQDAECg0QPCEAAAAAADiLQDAECg0QPSEAAAAAAECLQDAECg0QPiEAAAAAAHiPQDAECg0QPyEAAAAAAHiPQDAECg0QQCEAAAAAAAyQQDAEEhpDS3pWMDR2UG9Qb0NGWm1Nc2dvZGZrQUFtdyIcc2NyZWFtL3Rocm9uZV9pbWFnZV9sb2dvX29jaCgR HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js
142.250.74.33200 OK 8.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1831)
Hash e76efe12d42288eb43b9d82847a260c0
0653502591b0fe9b6740aa7a3bf2d444b06b8203
767ce5178ae6af7c0c778219204969cf0f61ae5316c9302fb2070d44ddd28c32
GET /pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 8202
x-xss-protection: 0
date: Mon, 19 Sep 2022 07:30:48 GMT
expires: Mon, 03 Oct 2022 07:30:48 GMT
cache-control: public, max-age=1209600
etag: 12420716543898108158
content-type: text/javascript; charset=UTF-8
age: 9676
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open%20Sans%3A400%2C500
142.250.74.10200 OK 844 B URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans%3A400%2C500
IP 142.250.74.10:0
Hash b1bbc1b494efd13d56b5dbdac1a52e35
b21304c0c6692e981132b0c40319484565ddc6bf
7700be325d3464031d017729400e00ed34d8f7bd0516d1ee23db3af7891ea867
GET /css?family=Open%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 10:12:04 GMT
date: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
142.250.74.163200 OK 604 B URL HTTP/2 www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 7bd42e5a35b5fb3ff852d6ea9191ca83
8a141eb392a05a2dea3dcd83b97940ef70a81ebc
5c4a713ee4250851232be9f9f68d41586be39b299528cfc7266e0b0e7e582e1b
GET /images/icons/material/system/2x/settings_grey600_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 19:14:49 GMT
expires: Mon, 18 Sep 2023 19:14:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 53835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaSX5v9Gd2htPHpR7y3k5Gq0MCSc46e7Ls_CsUzywtzUmTUg9ttTo9mJqASuycEq_P1tRpk4c2muKWS96Nq6JTpzyAfiJw
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaSX5v9Gd2htPHpR7y3k5Gq0MCSc46e7Ls_CsUzywtzUmTUg9ttTo9mJqASuycEq_P1tRpk4c2muKWS96Nq6JTpzyAfiJw
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaSX5v9Gd2htPHpR7y3k5Gq0MCSc46e7Ls_CsUzywtzUmTUg9ttTo9mJqASuycEq_P1tRpk4c2muKWS96Nq6JTpzyAfiJw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:05 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220914&st=env
142.250.74.130200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220914&st=env
IP 142.250.74.130:0
File type JSON data\012- , ASCII text, with very long lines (14573), with no line terminators
Hash f3d379574688b5d3991205558acccd8a
f9a6570430edcad0d864048ca63eff0ad0026211
e7686c8cf2d26e276c701d239039d8aae86879aec4166324ebb6c5ea0a6c9162
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220914&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
cache-control: private
content-length: 11064
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=102123&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mahacet.com
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 10:12:05 GMT
access-control-allow-origin: https://mahacet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: e32325c589547cc2ee8b2f2882e410aa
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=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
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=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
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=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 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
142.250.74.10200 OK 708 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP 142.250.74.10:0
Hash db5ad7c3fbb30e859205ccd0f7e81281
3911b726138b295b7aeed6e889361dfdd9df0e51
713b2004ba7870b8852e34663bffe62c19ad9100344ea8fa08797beb9134d462
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 10:12:04 GMT
date: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 19 Sep 2022 10:12:05 GMT
expires: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304029&bpp=4&bdt=447&idt=1900&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=IV6b53v2w1&p=https%3A//mahacet.com&dtd=1905
142.250.74.130200 OK 214 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304029&bpp=4&bdt=447&idt=1900&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=IV6b53v2w1&p=https%3A//mahacet.com&dtd=1905
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 60784cc972940321aee062f0e2747a9a
80158b77eb69210fc09f18b5c495cd231fb125c6
47c2c414a21ac8f0477bf565a896037b78c88008b2dfd68abe919c11a977a5b9
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304029&bpp=4&bdt=447&idt=1900&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=IV6b53v2w1&p=https%3A//mahacet.com&dtd=1905 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 214
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:05 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 16:23:47 GMT
expires: Mon, 18 Sep 2023 16:23:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 64098
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 7c1c6515039a303103aab4b6e176ded8
482db98d99a5e9032717bb413c0b0fe4634b60fe
8277c9caeb7f44d076f41ab5904b8880c35634ae556bbadf3deaadfb13516772
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 19 Sep 2022 10:12:05 GMT
date: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-mlhXxf-QKcZsS2wYWAU31w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mahacet.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mahacet.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mahacet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&adk=1843790409&adf=782179303&w=155&fwrn=4&fwrnh=100&lmt=1663577725&psa=1&format=155x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663582304033&bpp=2&bdt=449&idt=2008&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=10&uci=a!a&fsb=1&xpc=3K1wz7Lgsw&p=https%3A//mahacet.com&dtd=2019
142.250.74.130200 OK 28 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&adk=1843790409&adf=782179303&w=155&fwrn=4&fwrnh=100&lmt=1663577725&psa=1&format=155x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663582304033&bpp=2&bdt=449&idt=2008&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=10&uci=a!a&fsb=1&xpc=3K1wz7Lgsw&p=https%3A//mahacet.com&dtd=2019
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 31b81d71d0f1bfa2b26082771c1199f4
a2198dd75b69e7070d136a9506a43b551cd99d9f
78b9b3674fb364992f8aa855251565679e3329b07e7f65a8c93a2eb7b23845b3
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&adk=1843790409&adf=782179303&w=155&fwrn=4&fwrnh=100&lmt=1663577725&psa=1&format=155x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663582304033&bpp=2&bdt=449&idt=2008&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=10&uci=a!a&fsb=1&xpc=3K1wz7Lgsw&p=https%3A//mahacet.com&dtd=2019 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 28245
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:05 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&adk=1520397898&adf=3222070930&w=160&lmt=1663577725&psa=1&format=160x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304035&bpp=1&bdt=452&idt=2044&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=11&uci=a!b&fsb=1&xpc=9YDEvTLVtm&p=https%3A//mahacet.com&dtd=2050
142.250.74.130200 OK 22 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&adk=1520397898&adf=3222070930&w=160&lmt=1663577725&psa=1&format=160x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304035&bpp=1&bdt=452&idt=2044&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=11&uci=a!b&fsb=1&xpc=9YDEvTLVtm&p=https%3A//mahacet.com&dtd=2050
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 67069d5b211c325eac95e8912b815c7b
c7360668a98c8ad2250b61424ee55b41221361fd
e42ba830b39a28b8ab816ca700536485b753fcd7d23525588e5330b033d531f2
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&adk=1520397898&adf=3222070930&w=160&lmt=1663577725&psa=1&format=160x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304035&bpp=1&bdt=452&idt=2044&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=11&uci=a!b&fsb=1&xpc=9YDEvTLVtm&p=https%3A//mahacet.com&dtd=2050 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 22487
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:05 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=803467372&adf=943920009&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304036&bpp=2&bdt=453&idt=2058&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600%2C160x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=12&uci=a!c&fsb=1&xpc=IF6lKf5waD&p=https%3A//mahacet.com&dtd=2061
142.250.74.130200 OK 33 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=803467372&adf=943920009&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304036&bpp=2&bdt=453&idt=2058&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600%2C160x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=12&uci=a!c&fsb=1&xpc=IF6lKf5waD&p=https%3A//mahacet.com&dtd=2061
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash ccba257a196d06198a9e95c23d7bff16
d947259e15f8cf3ad9d3640c322026bab3775e96
355525bf95d43f9bf7bc599d83f25b6095a69bce96dd90df799ebda6bc38bffb
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=803467372&adf=943920009&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304036&bpp=2&bdt=453&idt=2058&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600%2C160x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=12&uci=a!c&fsb=1&xpc=IF6lKf5waD&p=https%3A//mahacet.com&dtd=2061 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 33042
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:05 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 85a90b8e0126b27c0822c49645a463df
45792c551fabfa14db90396c2c34337929011a3b
13fe815828a5dc11870c98db4957f2f59aaf7e0eaec4028d3d88fb4b6e82588e
GET /pagead/js/r20220914/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9550
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:10:05 GMT
expires: Mon, 03 Oct 2022 10:10:05 GMT
cache-control: public, max-age=1209600
etag: 715955199520789971
content-type: text/javascript; charset=UTF-8
age: 120
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:24 GMT
expires: Mon, 03 Oct 2022 09:59:24 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220914&jk=2341565356967761&rc=
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220914&jk=2341565356967761&rc=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20220914&jk=2341565356967761&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:05 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Mon, 19 Sep 2022 10:12:05 GMT
expires: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
142.250.74.163200 OK 4.4 kB URL HTTP/2 www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (1854)
Hash 2dbe6a78d10de55f020e77d5dfb62cdc
6bf8261b0c9ffcbff081d78c5d85a8a051ab1c72
ce6a82c27a0716d210cab902d61db854c2b013a8b84b685cb77340dc7dfcf269
GET /mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4398
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:52 GMT
expires: Thu, 15 Dec 2022 01:34:52 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
142.250.74.163200 OK 7.8 kB URL HTTP/2 www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
IP 142.250.74.163:0
File type ASCII text, with very long lines (2169)
Hash ff760691b46fa3f73ba5b07e4f7548da
f5ed08e9e4167140614ee04ab58a57da702e252c
014e592b83c38037df4c00b163af0361b8063b94b617f5ddbd6c7bab5789ea2f
GET /mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 7793
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:57 GMT
expires: Thu, 15 Dec 2022 01:34:57 GMT
cache-control: public, max-age=7776000
age: 290228
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
142.250.74.163200 OK 2.2 kB URL HTTP/2 www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (514)
Hash 6059ebd72e57e7630b752a27b22f91cd
8d91f883ba6cbbc80878fe6b71c450c0c1849eed
8eebb8e7d4ceabfe40cbe2b1ed096bd9ef2150f57a3283380ca52bb5db23cc93
GET /mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 2233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:15:36 GMT
expires: Wed, 14 Dec 2022 17:15:36 GMT
cache-control: public, max-age=7776000
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
age: 320189
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 85a90b8e0126b27c0822c49645a463df
45792c551fabfa14db90396c2c34337929011a3b
13fe815828a5dc11870c98db4957f2f59aaf7e0eaec4028d3d88fb4b6e82588e
GET /pagead/js/r20220914/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9550
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:10:05 GMT
expires: Mon, 03 Oct 2022 10:10:05 GMT
cache-control: public, max-age=1209600
etag: 715955199520789971
content-type: text/javascript; charset=UTF-8
age: 120
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Mon, 19 Sep 2022 10:12:05 GMT
expires: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
142.250.74.163200 OK 4.4 kB URL HTTP/2 www.gstatic.com/mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (1854)
Hash 2dbe6a78d10de55f020e77d5dfb62cdc
6bf8261b0c9ffcbff081d78c5d85a8a051ab1c72
ce6a82c27a0716d210cab902d61db854c2b013a8b84b685cb77340dc7dfcf269
GET /mysidia/0cf29303bb18303a156bc2ce1c098e89.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4398
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:52 GMT
expires: Thu, 15 Dec 2022 01:34:52 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 85a90b8e0126b27c0822c49645a463df
45792c551fabfa14db90396c2c34337929011a3b
13fe815828a5dc11870c98db4957f2f59aaf7e0eaec4028d3d88fb4b6e82588e
GET /pagead/js/r20220914/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9550
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:10:05 GMT
expires: Mon, 03 Oct 2022 10:10:05 GMT
cache-control: public, max-age=1209600
etag: 715955199520789971
content-type: text/javascript; charset=UTF-8
age: 120
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
142.250.74.163200 OK 7.8 kB URL HTTP/2 www.gstatic.com/mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback
IP 142.250.74.163:0
File type ASCII text, with very long lines (2169)
Hash ff760691b46fa3f73ba5b07e4f7548da
f5ed08e9e4167140614ee04ab58a57da702e252c
014e592b83c38037df4c00b163af0361b8063b94b617f5ddbd6c7bab5789ea2f
GET /mysidia/2e4af17640cb32bc996b7903b1b5a7cb.js?tag=pingback HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 7793
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:57 GMT
expires: Thu, 15 Dec 2022 01:34:57 GMT
cache-control: public, max-age=7776000
age: 290228
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:24 GMT
expires: Mon, 03 Oct 2022 09:59:24 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
142.250.74.163200 OK 2.2 kB URL HTTP/2 www.gstatic.com/mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (514)
Hash 6059ebd72e57e7630b752a27b22f91cd
8d91f883ba6cbbc80878fe6b71c450c0c1849eed
8eebb8e7d4ceabfe40cbe2b1ed096bd9ef2150f57a3283380ca52bb5db23cc93
GET /mysidia/a44a0b8f447061e92ca19622c4392a02.js?tag=analytics_pingback_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 2233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:15:36 GMT
expires: Wed, 14 Dec 2022 17:15:36 GMT
cache-control: public, max-age=7776000
last-modified: Thu, 08 Sep 2022 23:53:38 GMT
content-type: text/javascript
age: 320189
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
142.250.74.130200 OK 145 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92235b51835ea17fa6d313a73f3c2b8f
1e310139fd2be77b54f39c7c64e1616fd35785ad
2cf3e738572a24733a96c3be1d798e95e2bff434d37d6f28cde31ce53df8e333
GET /pagead/drt/s?v=r20120211 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&adk=1843790409&adf=782179303&w=155&fwrn=4&fwrnh=100&lmt=1663577725&psa=1&format=155x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663582304033&bpp=2&bdt=449&idt=2008&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=10&uci=a!a&fsb=1&xpc=3K1wz7Lgsw&p=https%3A//mahacet.com&dtd=2019
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 145
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:31:35 GMT
cache-control: public, max-age=3600
content-type: text/html; charset=UTF-8
age: 2430
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
142.250.74.130200 OK 145 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92235b51835ea17fa6d313a73f3c2b8f
1e310139fd2be77b54f39c7c64e1616fd35785ad
2cf3e738572a24733a96c3be1d798e95e2bff434d37d6f28cde31ce53df8e333
GET /pagead/drt/s?v=r20120211 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&adk=1520397898&adf=3222070930&w=160&lmt=1663577725&psa=1&format=160x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304035&bpp=1&bdt=452&idt=2044&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=11&uci=a!b&fsb=1&xpc=9YDEvTLVtm&p=https%3A//mahacet.com&dtd=2050
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 145
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:31:35 GMT
cache-control: public, max-age=3600
content-type: text/html; charset=UTF-8
age: 2430
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
142.250.74.33200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1120)
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /pagead/js/r20220914/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1359
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:02:46 GMT
expires: Mon, 03 Oct 2022 10:02:46 GMT
cache-control: public, max-age=1209600
etag: 1484984001845508991
content-type: text/javascript; charset=UTF-8
age: 559
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open%20Sans%3A400%2C700
142.250.74.10200 OK 14 kB URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans%3A400%2C700
IP 142.250.74.10:0
File type ASCII text, with very long lines (1863)
Hash fc9652e9fd5fc097e89640e87f83385f
5880246a71e50843d9a732b1122b559c8896a7e2
6ee48049185baa1ba6a65a3e357300f6794628398ca0ed26f8d4caed0f37ee53
GET /css?family=Open%20Sans%3A400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 10:12:05 GMT
date: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/4450494982643042344?sqp=4sqPyQQ7QjkqNxABHQAAtEIgASgBMAk4A0DwkwlYAWBfcAKAAQGIAQGdAQAAgD-oAQGwAYCt4gS4AV_FAS2ynT4&rs=AOga4qkfo7v5XqKin0bnjbH5qpVRb8OZfg
142.250.74.33200 OK 28 kB URL HTTP/2 tpc.googlesyndication.com/simgad/4450494982643042344?sqp=4sqPyQQ7QjkqNxABHQAAtEIgASgBMAk4A0DwkwlYAWBfcAKAAQGIAQGdAQAAgD-oAQGwAYCt4gS4AV_FAS2ynT4&rs=AOga4qkfo7v5XqKin0bnjbH5qpVRb8OZfg
IP 142.250.74.33:0
File type PNG image data, 160 x 600, 8-bit colormap, non-interlaced\012- data
Hash e499c31ddc46051152d21ca7c18ba6fc
0d2aa563a3496bb31e0e469f95f9349de1b66dbf
a10371cda2f4f803b8f774dd094e8e9d736d6de57b1c16bc92c88f41449db386
GET /simgad/4450494982643042344?sqp=4sqPyQQ7QjkqNxABHQAAtEIgASgBMAk4A0DwkwlYAWBfcAKAAQGIAQGdAQAAgD-oAQGwAYCt4gS4AV_FAS2ynT4&rs=AOga4qkfo7v5XqKin0bnjbH5qpVRb8OZfg HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 27855
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 11:14:25 GMT
expires: Fri, 15 Sep 2023 11:14:25 GMT
cache-control: public, max-age=31536000
age: 341860
last-modified: Thu, 01 Sep 2022 08:29:37 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssDoshi4WOTh-ZvG9U4G1huTMCBKsRmNf53tyzau5hwkmTbWu69kS8CO4DKkDsMEqWi9CIPFa3XVNitvv3w3Tr6LqV99EjiA8O3vi2lofxwF1btUeBFL8d4EYa2BSBKPivhCrjc74wg1js6veLHx9fabLfKc60cT3tiHX3TPm49Mdr1e3nm1l-oUGILFb35BZlWRKhjxpVJj6PeunF7ihb-T5mWlS9GSitAJPcy4M_lM1ixBIuFg9nkYtGmmayfdInPbMwr4uByK0J_wqm5u82YnhVp_b5_RSZmQSsppATcy1PGEsyxxQ7ke5uke2BuFHWgrY9MFrDZD5rxdlfDLCjfSpp41EnhOCqsGn_lSaA3KhqfqbAy8XnWmFgS1ds1cQwEP1jrEfXXXt_mcLXUjT8ecG4OzegHIhdoKLjDUSiw6nHXQkHoIoPMJa88H8mB6jEJ5xb_wE-sJiRdSwQr_1AWsKyHBLyRjR12hRYL5HWqRqta32F5jyqa9zHX_XO32Iu3GX03E56Acodzn1X1I6_xeIpXyFJJV6mzz68ZyMWKqYdQzh9CeBlMtDxq-BR3fd9tXzPAelp8h0xfKVDyoBfGUurGOOQpT5478UST_ja18-RNOiCEyMxT0T0r9X63BNWiUB3xhbd21_WVpG3jtxX7v3XizSJg1iY65jWfX-rqVENf4NDvEz41hNFdOTY7b4ZUQgR03iZNo2hjLj00OcphAIlYO1Svj5v48tVBgUSwCnOKxxsS8ChkTvVHFxaje7hEnVWfo7OrPRjSNLHc4PIHuiKf2t3U04H_ZsEgwx_bEn5bC44yObtMf1joClx0Zeoaip34IJyXGBaGGQnVrl3Vz021L3AzMuThfQOXEJ5C_86M3g5TOPjqcUc9UoafdaXwutCt1hedW6OclZZFwNYW4loPpthl_Di4c9N6UXFJGsH9QxG0YWQPA6-XwwCb5Z8pgvWqoFraytPFHgeSnQG96q3bjHnsFC5-5PceG6-YeoI&sai=AMfl-YRtM5SwuutS85imQ59sq3QmiP4LxoCmA2QKv_t9rFJBVBsFXsmiiEIQtlmJ5ynLktksV6JTW37EFFkIs0RBngG54m8Z8iokXxatUSNl1OwrTw7GuHLv5FFWTW0z6ScpSsp_0MOHBlQXb9eC&sig=Cg0ArKJSzMX7WJYJ79joEAE&cid=CAQSPgCsnQUxaA5itUNDwr2XA3DVoYEkVcsITeqm9UorojBo8pnm02nR3LqBByzv5boG09HKkO1QBUuhHQYsIFW8GAEgDg&id=lidar2&mcvt=1326&p=0,0,90,728&mtos=1326,1326,1326,1326,1326&tos=1326,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582304403&rpt=968&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssDoshi4WOTh-ZvG9U4G1huTMCBKsRmNf53tyzau5hwkmTbWu69kS8CO4DKkDsMEqWi9CIPFa3XVNitvv3w3Tr6LqV99EjiA8O3vi2lofxwF1btUeBFL8d4EYa2BSBKPivhCrjc74wg1js6veLHx9fabLfKc60cT3tiHX3TPm49Mdr1e3nm1l-oUGILFb35BZlWRKhjxpVJj6PeunF7ihb-T5mWlS9GSitAJPcy4M_lM1ixBIuFg9nkYtGmmayfdInPbMwr4uByK0J_wqm5u82YnhVp_b5_RSZmQSsppATcy1PGEsyxxQ7ke5uke2BuFHWgrY9MFrDZD5rxdlfDLCjfSpp41EnhOCqsGn_lSaA3KhqfqbAy8XnWmFgS1ds1cQwEP1jrEfXXXt_mcLXUjT8ecG4OzegHIhdoKLjDUSiw6nHXQkHoIoPMJa88H8mB6jEJ5xb_wE-sJiRdSwQr_1AWsKyHBLyRjR12hRYL5HWqRqta32F5jyqa9zHX_XO32Iu3GX03E56Acodzn1X1I6_xeIpXyFJJV6mzz68ZyMWKqYdQzh9CeBlMtDxq-BR3fd9tXzPAelp8h0xfKVDyoBfGUurGOOQpT5478UST_ja18-RNOiCEyMxT0T0r9X63BNWiUB3xhbd21_WVpG3jtxX7v3XizSJg1iY65jWfX-rqVENf4NDvEz41hNFdOTY7b4ZUQgR03iZNo2hjLj00OcphAIlYO1Svj5v48tVBgUSwCnOKxxsS8ChkTvVHFxaje7hEnVWfo7OrPRjSNLHc4PIHuiKf2t3U04H_ZsEgwx_bEn5bC44yObtMf1joClx0Zeoaip34IJyXGBaGGQnVrl3Vz021L3AzMuThfQOXEJ5C_86M3g5TOPjqcUc9UoafdaXwutCt1hedW6OclZZFwNYW4loPpthl_Di4c9N6UXFJGsH9QxG0YWQPA6-XwwCb5Z8pgvWqoFraytPFHgeSnQG96q3bjHnsFC5-5PceG6-YeoI&sai=AMfl-YRtM5SwuutS85imQ59sq3QmiP4LxoCmA2QKv_t9rFJBVBsFXsmiiEIQtlmJ5ynLktksV6JTW37EFFkIs0RBngG54m8Z8iokXxatUSNl1OwrTw7GuHLv5FFWTW0z6ScpSsp_0MOHBlQXb9eC&sig=Cg0ArKJSzMX7WJYJ79joEAE&cid=CAQSPgCsnQUxaA5itUNDwr2XA3DVoYEkVcsITeqm9UorojBo8pnm02nR3LqBByzv5boG09HKkO1QBUuhHQYsIFW8GAEgDg&id=lidar2&mcvt=1326&p=0,0,90,728&mtos=1326,1326,1326,1326,1326&tos=1326,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582304403&rpt=968&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjssDoshi4WOTh-ZvG9U4G1huTMCBKsRmNf53tyzau5hwkmTbWu69kS8CO4DKkDsMEqWi9CIPFa3XVNitvv3w3Tr6LqV99EjiA8O3vi2lofxwF1btUeBFL8d4EYa2BSBKPivhCrjc74wg1js6veLHx9fabLfKc60cT3tiHX3TPm49Mdr1e3nm1l-oUGILFb35BZlWRKhjxpVJj6PeunF7ihb-T5mWlS9GSitAJPcy4M_lM1ixBIuFg9nkYtGmmayfdInPbMwr4uByK0J_wqm5u82YnhVp_b5_RSZmQSsppATcy1PGEsyxxQ7ke5uke2BuFHWgrY9MFrDZD5rxdlfDLCjfSpp41EnhOCqsGn_lSaA3KhqfqbAy8XnWmFgS1ds1cQwEP1jrEfXXXt_mcLXUjT8ecG4OzegHIhdoKLjDUSiw6nHXQkHoIoPMJa88H8mB6jEJ5xb_wE-sJiRdSwQr_1AWsKyHBLyRjR12hRYL5HWqRqta32F5jyqa9zHX_XO32Iu3GX03E56Acodzn1X1I6_xeIpXyFJJV6mzz68ZyMWKqYdQzh9CeBlMtDxq-BR3fd9tXzPAelp8h0xfKVDyoBfGUurGOOQpT5478UST_ja18-RNOiCEyMxT0T0r9X63BNWiUB3xhbd21_WVpG3jtxX7v3XizSJg1iY65jWfX-rqVENf4NDvEz41hNFdOTY7b4ZUQgR03iZNo2hjLj00OcphAIlYO1Svj5v48tVBgUSwCnOKxxsS8ChkTvVHFxaje7hEnVWfo7OrPRjSNLHc4PIHuiKf2t3U04H_ZsEgwx_bEn5bC44yObtMf1joClx0Zeoaip34IJyXGBaGGQnVrl3Vz021L3AzMuThfQOXEJ5C_86M3g5TOPjqcUc9UoafdaXwutCt1hedW6OclZZFwNYW4loPpthl_Di4c9N6UXFJGsH9QxG0YWQPA6-XwwCb5Z8pgvWqoFraytPFHgeSnQG96q3bjHnsFC5-5PceG6-YeoI&sai=AMfl-YRtM5SwuutS85imQ59sq3QmiP4LxoCmA2QKv_t9rFJBVBsFXsmiiEIQtlmJ5ynLktksV6JTW37EFFkIs0RBngG54m8Z8iokXxatUSNl1OwrTw7GuHLv5FFWTW0z6ScpSsp_0MOHBlQXb9eC&sig=Cg0ArKJSzMX7WJYJ79joEAE&cid=CAQSPgCsnQUxaA5itUNDwr2XA3DVoYEkVcsITeqm9UorojBo8pnm02nR3LqBByzv5boG09HKkO1QBUuhHQYsIFW8GAEgDg&id=lidar2&mcvt=1326&p=0,0,90,728&mtos=1326,1326,1326,1326,1326&tos=1326,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1646902164&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582304403&rpt=968&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaRvwFac3hkATsbERuhklX3wVh_jjuXsM2TIYG90m4pSsYIQ3pNAvpWmIXkJDbdD_ionDLkF9pi0iIxahaT0V_F9F7LPGg
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaRvwFac3hkATsbERuhklX3wVh_jjuXsM2TIYG90m4pSsYIQ3pNAvpWmIXkJDbdD_ionDLkF9pi0iIxahaT0V_F9F7LPGg
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaRvwFac3hkATsbERuhklX3wVh_jjuXsM2TIYG90m4pSsYIQ3pNAvpWmIXkJDbdD_ionDLkF9pi0iIxahaT0V_F9F7LPGg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:05 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 0 B URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:59:24 GMT
expires: Mon, 03 Oct 2022 09:59:24 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
142.250.74.33200 OK 875 B URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (748)
Hash 7f017195be529ea58c3ab78d8dc1be22
d2a8f25d05226f8b59f74573f2509612c00710f9
59acc2605c947c7e98d070701e01bc7813688e81ad022192bb5a9311e799aa24
GET /pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 875
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:50:50 GMT
expires: Mon, 03 Oct 2022 09:50:50 GMT
cache-control: public, max-age=1209600
etag: 16974406330603315520
content-type: text/javascript; charset=UTF-8
age: 1276
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
142.250.74.33200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1120)
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /pagead/js/r20220914/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1359
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:02:46 GMT
expires: Mon, 03 Oct 2022 10:02:46 GMT
cache-control: public, max-age=1209600
etag: 1484984001845508991
content-type: text/javascript; charset=UTF-8
age: 560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (2944)
Hash c8c0ce1b17f6ed0900bf0ae22a83a7ea
fdf1512f0cf46ec029f0c546cc8297a078ce11b8
bd37705e6c661c46d6d2a2576f10c6640cf06c4b2d122e8feedceeb5a65b3832
GET /mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13694
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:37 GMT
expires: Thu, 15 Dec 2022 01:34:37 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290249
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaQOZLTgceIx3SnNQyo6kIBks_hsB94eFfPpAcxkLjKYjSQVnBpW4MRZznet7-FjTyRvwDVsV5NTAGNtoMjkgI6_ycZVSQ
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaQOZLTgceIx3SnNQyo6kIBks_hsB94eFfPpAcxkLjKYjSQVnBpW4MRZznet7-FjTyRvwDVsV5NTAGNtoMjkgI6_ycZVSQ
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaQOZLTgceIx3SnNQyo6kIBks_hsB94eFfPpAcxkLjKYjSQVnBpW4MRZznet7-FjTyRvwDVsV5NTAGNtoMjkgI6_ycZVSQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/adview?ai=CITMzdUAoY9fiFJSJywXjiKq4Ce7g0_5rgdigxMMQrff39ZwlEAEg1fXSFGDDhICAmBigAb2ZwP0CyAEBqAMBqgTrAU_QWh6VT9_NichueCwELWLFIjeeYMB3sBqkj1GghuD8UOLUduA8HuTtsYHVf97GDYavEis7Ny8SaG2h_iKKTrkpfmtC0jdhZGSZVg1VM4FwlN4etUnc9lvZvO-CvKR_HCb9nuIOe-RnihGKtTbv1xC0lp5NC44GHUZz3Zn4fqXn8rQg1J9KrAzbReFlG5OYRyBfRfZCjGx6DQeQDdcZttx2FRaLhwGY32SXB-nruMYj4zVuzCZtsY2p-HyZsRDb0VmgR9NMeEjdeOMT_WpTMUJRn5e2GXa0KlzifzCZEgVSjG7oxLlOEg8291fABJv4uMqHBJIFBAgEGAGSBQQIBRgEkgUECAUYGJIFBQgFGKgBgAer5r-CAagHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcB8gcEEN_XA9IIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAdgTDdAVAZgWAYAXAbIXHAoaCAASFHB1Yi01NDE0MDcwNzcxNDk4MTI3GAA&sigh=lI0j38o1jsU&uach_m=[UACH]&cid=CAQSPgCsnQUxzUSU6DrDH98GhL4QtBvOgmXULkP_8xwgBQqdR3NbEd5i1yZSzYzZfvV4ZDJeBc471L1Vfkb5SAHGGAEgDg&template_id=5020
142.250.74.130200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/adview?ai=CITMzdUAoY9fiFJSJywXjiKq4Ce7g0_5rgdigxMMQrff39ZwlEAEg1fXSFGDDhICAmBigAb2ZwP0CyAEBqAMBqgTrAU_QWh6VT9_NichueCwELWLFIjeeYMB3sBqkj1GghuD8UOLUduA8HuTtsYHVf97GDYavEis7Ny8SaG2h_iKKTrkpfmtC0jdhZGSZVg1VM4FwlN4etUnc9lvZvO-CvKR_HCb9nuIOe-RnihGKtTbv1xC0lp5NC44GHUZz3Zn4fqXn8rQg1J9KrAzbReFlG5OYRyBfRfZCjGx6DQeQDdcZttx2FRaLhwGY32SXB-nruMYj4zVuzCZtsY2p-HyZsRDb0VmgR9NMeEjdeOMT_WpTMUJRn5e2GXa0KlzifzCZEgVSjG7oxLlOEg8291fABJv4uMqHBJIFBAgEGAGSBQQIBRgEkgUECAUYGJIFBQgFGKgBgAer5r-CAagHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcB8gcEEN_XA9IIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAdgTDdAVAZgWAYAXAbIXHAoaCAASFHB1Yi01NDE0MDcwNzcxNDk4MTI3GAA&sigh=lI0j38o1jsU&uach_m=[UACH]&cid=CAQSPgCsnQUxzUSU6DrDH98GhL4QtBvOgmXULkP_8xwgBQqdR3NbEd5i1yZSzYzZfvV4ZDJeBc471L1Vfkb5SAHGGAEgDg&template_id=5020
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/adview?ai=CITMzdUAoY9fiFJSJywXjiKq4Ce7g0_5rgdigxMMQrff39ZwlEAEg1fXSFGDDhICAmBigAb2ZwP0CyAEBqAMBqgTrAU_QWh6VT9_NichueCwELWLFIjeeYMB3sBqkj1GghuD8UOLUduA8HuTtsYHVf97GDYavEis7Ny8SaG2h_iKKTrkpfmtC0jdhZGSZVg1VM4FwlN4etUnc9lvZvO-CvKR_HCb9nuIOe-RnihGKtTbv1xC0lp5NC44GHUZz3Zn4fqXn8rQg1J9KrAzbReFlG5OYRyBfRfZCjGx6DQeQDdcZttx2FRaLhwGY32SXB-nruMYj4zVuzCZtsY2p-HyZsRDb0VmgR9NMeEjdeOMT_WpTMUJRn5e2GXa0KlzifzCZEgVSjG7oxLlOEg8291fABJv4uMqHBJIFBAgEGAGSBQQIBRgEkgUECAUYGJIFBQgFGKgBgAer5r-CAagHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcB8gcEEN_XA9IIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAdgTDdAVAZgWAYAXAbIXHAoaCAASFHB1Yi01NDE0MDcwNzcxNDk4MTI3GAA&sigh=lI0j38o1jsU&uach_m=[UACH]&cid=CAQSPgCsnQUxzUSU6DrDH98GhL4QtBvOgmXULkP_8xwgBQqdR3NbEd5i1yZSzYzZfvV4ZDJeBc471L1Vfkb5SAHGGAEgDg&template_id=5020 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&adk=1520397898&adf=3222070930&w=160&lmt=1663577725&psa=1&format=160x600&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304035&bpp=1&bdt=452&idt=2044&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=11&uci=a!b&fsb=1&xpc=9YDEvTLVtm&p=https%3A//mahacet.com&dtd=2050
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'none'; object-src 'none'
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:06 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:06 GMT
cache-control: private
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
142.250.74.33200 OK 875 B URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (748)
Hash 7f017195be529ea58c3ab78d8dc1be22
d2a8f25d05226f8b59f74573f2509612c00710f9
59acc2605c947c7e98d070701e01bc7813688e81ad022192bb5a9311e799aa24
GET /pagead/js/r20220914/r20110914/client/load_preloaded_resource_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 875
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:50:50 GMT
expires: Mon, 03 Oct 2022 09:50:50 GMT
cache-control: public, max-age=1209600
etag: 16974406330603315520
content-type: text/javascript; charset=UTF-8
age: 1276
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (2944)
Hash c8c0ce1b17f6ed0900bf0ae22a83a7ea
fdf1512f0cf46ec029f0c546cc8297a078ce11b8
bd37705e6c661c46d6d2a2576f10c6640cf06c4b2d122e8feedceeb5a65b3832
GET /mysidia/026517f4e3185bf0f4d8fd76517024ed.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13694
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 01:34:37 GMT
expires: Thu, 15 Dec 2022 01:34:37 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 12 Sep 2022 21:57:24 GMT
content-type: text/javascript
age: 290249
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
142.250.74.33200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1120)
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /pagead/js/r20220914/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1359
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:02:46 GMT
expires: Mon, 03 Oct 2022 10:02:46 GMT
cache-control: public, max-age=1209600
etag: 1484984001845508991
content-type: text/javascript; charset=UTF-8
age: 560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsusgspb3Qf_XHxitNVZXL9V4IWWAL1QeqMqr7HKfYZpNEOw5kG-0xXRGOSgDhLRO-z_4gNRTnNPLvRze1FH3oW-tS0Xr8qLrEZIvaZctRn5f9GM56rc2gfZtw325HROsbiEvWYaHnW-inoP5SPUAS-M5PgNzVDEpIpy-Q&sai=AMfl-YQiMdlDc_u9rOckYfcqDNo6R2y7RHAFVcDIGshUWzwCRwAr1M7iVZiaKyo2xHFn6pWd3HgTUQWZtVBkYgYSSFxCKoulPJ6B2MFUCNR1X6tlDxpdoyzWGOk2ANMtSGk&sig=Cg0ArKJSzPd10EndDxG7EAE&cid=CAQSPgCsnQUxkbkYUvbokp2w7k59r_mJ56gN07FONwsXNiMrSp_8ULgV0UuqfdhO0M0wicZ9KwCmaDMnoz9fzgGqGAEgDg&id=lidar2&mcvt=1470&p=0,0,90,728&mtos=1470,1470,1470,1470,1470&tos=1470,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=643801748&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582304387&rpt=1018&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsusgspb3Qf_XHxitNVZXL9V4IWWAL1QeqMqr7HKfYZpNEOw5kG-0xXRGOSgDhLRO-z_4gNRTnNPLvRze1FH3oW-tS0Xr8qLrEZIvaZctRn5f9GM56rc2gfZtw325HROsbiEvWYaHnW-inoP5SPUAS-M5PgNzVDEpIpy-Q&sai=AMfl-YQiMdlDc_u9rOckYfcqDNo6R2y7RHAFVcDIGshUWzwCRwAr1M7iVZiaKyo2xHFn6pWd3HgTUQWZtVBkYgYSSFxCKoulPJ6B2MFUCNR1X6tlDxpdoyzWGOk2ANMtSGk&sig=Cg0ArKJSzPd10EndDxG7EAE&cid=CAQSPgCsnQUxkbkYUvbokp2w7k59r_mJ56gN07FONwsXNiMrSp_8ULgV0UuqfdhO0M0wicZ9KwCmaDMnoz9fzgGqGAEgDg&id=lidar2&mcvt=1470&p=0,0,90,728&mtos=1470,1470,1470,1470,1470&tos=1470,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=643801748&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582304387&rpt=1018&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsusgspb3Qf_XHxitNVZXL9V4IWWAL1QeqMqr7HKfYZpNEOw5kG-0xXRGOSgDhLRO-z_4gNRTnNPLvRze1FH3oW-tS0Xr8qLrEZIvaZctRn5f9GM56rc2gfZtw325HROsbiEvWYaHnW-inoP5SPUAS-M5PgNzVDEpIpy-Q&sai=AMfl-YQiMdlDc_u9rOckYfcqDNo6R2y7RHAFVcDIGshUWzwCRwAr1M7iVZiaKyo2xHFn6pWd3HgTUQWZtVBkYgYSSFxCKoulPJ6B2MFUCNR1X6tlDxpdoyzWGOk2ANMtSGk&sig=Cg0ArKJSzPd10EndDxG7EAE&cid=CAQSPgCsnQUxkbkYUvbokp2w7k59r_mJ56gN07FONwsXNiMrSp_8ULgV0UuqfdhO0M0wicZ9KwCmaDMnoz9fzgGqGAEgDg&id=lidar2&mcvt=1470&p=0,0,90,728&mtos=1470,1470,1470,1470,1470&tos=1470,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=643801748&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582304387&rpt=1018&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/2403938183095566627/downsize_200k_v1?w=195&h=102
142.250.74.33200 OK 4.1 kB URL HTTP/2 tpc.googlesyndication.com/simgad/2403938183095566627/downsize_200k_v1?w=195&h=102
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 195x102, components 3\012- data
Hash a6816a0d94d55cdee22a157a27012895
45384a6edf71b467480203574814f8c09a45bdb5
0fbe215174d8f16e38affd26011cfd9d59e62e49d08806076ee897550042b075
GET /simgad/2403938183095566627/downsize_200k_v1?w=195&h=102 HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 4125
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 20:15:04 GMT
expires: Mon, 18 Sep 2023 20:15:04 GMT
cache-control: public, max-age=31536000
age: 50222
last-modified: Tue, 01 Mar 2022 11:33:13 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaSa1CM64ZGL-u7THpmQ_Ah1LeWJTyrfghRKL25KIMmj5AilWV9ElQfaoZ492QTmOWD5dVzrR-o718DjF-D7Pn2gvEdTuA
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaSa1CM64ZGL-u7THpmQ_Ah1LeWJTyrfghRKL25KIMmj5AilWV9ElQfaoZ492QTmOWD5dVzrR-o718DjF-D7Pn2gvEdTuA
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaSa1CM64ZGL-u7THpmQ_Ah1LeWJTyrfghRKL25KIMmj5AilWV9ElQfaoZ492QTmOWD5dVzrR-o718DjF-D7Pn2gvEdTuA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/adview?ai=CCUXidUAoY_apFeyUxdwPw8eyiA_a1eaSbNzdwvvYD8SEhZ4LEAEg1fXSFGDDhICAmBigAd_Y-J4CyAEJqQK7vhcQQL-wPqgDAcgDywSqBOwBT9DHePYfqvOukicvTug27EXj9ctC7G0Jcfo6AKWmR3ZSMAGCCTS3xkt4_Q7cOISku3PQbDiWpoggrr383NlGI3FI6LTZAO9XljxYVSdaZAtDN7um780axOYsI9QYAqwOlgmdU3WLWkDIjBPNKP31Z0VzEmO3i2wuSNo8OSbVp2l_YnLqGvJmyv2QIY8XbdaX-pLa3IA81VuUXeYQN0IiwuQv-6RqdhnqzOAjR11gkosPti30-v59PNiNOwU0hUVVBfMcQs4PGBxJjNMX6fptDJP-Gumaq2hsL8JYQoi4km5NSSIWiScImgIhLebABJij5c38A6AGLoAHiaeH4QGoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G9gHAPIHAxCQNdIIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAdgTA9AVAYAXAbIXHAoaCAASFHB1Yi01NDE0MDcwNzcxNDk4MTI3GAA&sigh=um5SuNytDWM&uach_m=[UACH]&cid=CAQSPgCsnQUxk0MVZ0JhnArAG2RCC0YvOhipmNeZV1L0gRZNG7kDTrNgwq6NNw3pLhmihCHUgLumNAm2TuINltXfGAEgDg&template_id=5000
142.250.74.130200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/adview?ai=CCUXidUAoY_apFeyUxdwPw8eyiA_a1eaSbNzdwvvYD8SEhZ4LEAEg1fXSFGDDhICAmBigAd_Y-J4CyAEJqQK7vhcQQL-wPqgDAcgDywSqBOwBT9DHePYfqvOukicvTug27EXj9ctC7G0Jcfo6AKWmR3ZSMAGCCTS3xkt4_Q7cOISku3PQbDiWpoggrr383NlGI3FI6LTZAO9XljxYVSdaZAtDN7um780axOYsI9QYAqwOlgmdU3WLWkDIjBPNKP31Z0VzEmO3i2wuSNo8OSbVp2l_YnLqGvJmyv2QIY8XbdaX-pLa3IA81VuUXeYQN0IiwuQv-6RqdhnqzOAjR11gkosPti30-v59PNiNOwU0hUVVBfMcQs4PGBxJjNMX6fptDJP-Gumaq2hsL8JYQoi4km5NSSIWiScImgIhLebABJij5c38A6AGLoAHiaeH4QGoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G9gHAPIHAxCQNdIIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAdgTA9AVAYAXAbIXHAoaCAASFHB1Yi01NDE0MDcwNzcxNDk4MTI3GAA&sigh=um5SuNytDWM&uach_m=[UACH]&cid=CAQSPgCsnQUxk0MVZ0JhnArAG2RCC0YvOhipmNeZV1L0gRZNG7kDTrNgwq6NNw3pLhmihCHUgLumNAm2TuINltXfGAEgDg&template_id=5000
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/adview?ai=CCUXidUAoY_apFeyUxdwPw8eyiA_a1eaSbNzdwvvYD8SEhZ4LEAEg1fXSFGDDhICAmBigAd_Y-J4CyAEJqQK7vhcQQL-wPqgDAcgDywSqBOwBT9DHePYfqvOukicvTug27EXj9ctC7G0Jcfo6AKWmR3ZSMAGCCTS3xkt4_Q7cOISku3PQbDiWpoggrr383NlGI3FI6LTZAO9XljxYVSdaZAtDN7um780axOYsI9QYAqwOlgmdU3WLWkDIjBPNKP31Z0VzEmO3i2wuSNo8OSbVp2l_YnLqGvJmyv2QIY8XbdaX-pLa3IA81VuUXeYQN0IiwuQv-6RqdhnqzOAjR11gkosPti30-v59PNiNOwU0hUVVBfMcQs4PGBxJjNMX6fptDJP-Gumaq2hsL8JYQoi4km5NSSIWiScImgIhLebABJij5c38A6AGLoAHiaeH4QGoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G9gHAPIHAxCQNdIIEgiI4YAQEAEYHzIDqoIBOgKAQIAKAcgLAdgTA9AVAYAXAbIXHAoaCAASFHB1Yi01NDE0MDcwNzcxNDk4MTI3GAA&sigh=um5SuNytDWM&uach_m=[UACH]&cid=CAQSPgCsnQUxk0MVZ0JhnArAG2RCC0YvOhipmNeZV1L0gRZNG7kDTrNgwq6NNw3pLhmihCHUgLumNAm2TuINltXfGAEgDg&template_id=5000 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&adk=803467372&adf=943920009&w=728&lmt=1663577725&psa=1&format=728x90&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304036&bpp=2&bdt=453&idt=2058&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939%2C300x250%2C155x600%2C160x600&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&ifi=12&uci=a!c&fsb=1&xpc=IF6lKf5waD&p=https%3A//mahacet.com&dtd=2061
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'none'; object-src 'none'
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:06 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:06 GMT
cache-control: private
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
216.58.211.14200 OK 31 B URL HTTP/2 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 216.58.211.14:0
File type JSON data\012- , ASCII text
Hash 0517a608635a116d279530f9e79f46c6
d039de7440a05934e6a9f517ef98c460efa701c4
fcdc48636aaf6e5c6123f43decdec565c7a7614a1729283815ecdfb7ae1bef63
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1663582306933
Content-Type: application/json
X-Goog-Visitor-Id: CgtQZmFuT2Noa2JJZyjzgKGZBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20220914.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1663582304216&flash=0&frm=2&u_tz&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C770%2C433&vis=1&wgl=true&ca_type=image
Content-Length: 11157
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 19 Sep 2022 10:12:06 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+620; expires=Wed, 18-Sep-2024 10:12:06 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:06 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304029&bpp=4&bdt=447&idt=1900&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=IV6b53v2w1&p=https%3A//mahacet.com&dtd=1905
142.250.74.130200 OK 212 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304029&bpp=4&bdt=447&idt=1900&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=IV6b53v2w1&p=https%3A//mahacet.com&dtd=1905
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash a5b9e54a1e15473ec4ae9ffb66f605bf
17444edd4a494bce75480aac0fd3cee073e01d12
7dd6793d5f633732089f92420e1863bc76b86e1991f3e86fb17d50ce3afec353
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=109964780&adf=556213967&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304029&bpp=4&bdt=447&idt=1900&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60%2C300x250%2C1268x939&nras=2&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=1705&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&psts=APxP-9CHknXoGnf12_reYDyFUV-PVi0uV0R5IcfFfMLOVjNJm5DHLOVss-LuTGgaLobde2C19Te61-CU83Acsw%2CAPxP-9C_lyJfrzuotc1RfWcY38VIw0Ki9pl4Szx9yHYD4Hph7SpsWekInnu2VwMvyUJCH3IE4IS0vuyVWokr006s2Q&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7C%7CeEbr%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=9&uci=a!9&btvi=2&fsb=1&xpc=IV6b53v2w1&p=https%3A//mahacet.com&dtd=1905 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 212
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:06 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:06 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304028&bpp=1&bdt=445&idt=1276&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=gQfaeXPDpS&p=https%3A//mahacet.com&dtd=1321
142.250.74.130200 OK 214 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304028&bpp=1&bdt=445&idt=1276&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=gQfaeXPDpS&p=https%3A//mahacet.com&dtd=1321
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 90d997e06a5962024eee0a444b143cca
a0afe929760c64fba721ab32318ad3bc2c8b0b0d
0612aaea6c3cde70e0225f29407b684c76c410803a94f7d35b6f202b564f65c0
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&adk=996803492&adf=3256513307&w=300&lmt=1663577725&psa=1&format=300x250&url=https%3A%2F%2Fmahacet.com%2Fdiscovery-plus-voucher-coupon-code.html%3Futm_source%3DGoogle%26utm_medium%3DSocial%26rdk%3Drk1%23loaded&wgl=1&dt=1663582304028&bpp=1&bdt=445&idt=1276&shv=r20220914&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D72f02f674833c99a-2211742b25ce004b%3AT%3D1663582320%3ART%3D1663582320%3AS%3DALNI_MbNiW0WwrhRmbc3moFVzqLPztWcaQ&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C468x60&nras=1&correlator=7793780139441&frm=20&pv=1&ga_vid=762906361.1663582301&ga_sid=1663582304&ga_hid=969623720&ga_fc=1&u_tz=0&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=810&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44761793%2C42531705%2C31060047%2C31067826%2C31068920&oid=2&pvsid=2341565356967761&tmod=1160842954&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=31&ifi=8&uci=a!8&fsb=1&xpc=gQfaeXPDpS&p=https%3A//mahacet.com&dtd=1321 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 214
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:06 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:06 GMT
cache-control: private
X-Firefox-Spdy: h2
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
142.250.74.130200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/si?st=NO_DATA HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: DSID=NO_DATA; expires=Mon, 19-Sep-2022 11:12:06 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:06 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:06 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
142.250.74.130200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/si?st=NO_DATA HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:06 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: DSID=NO_DATA; expires=Mon, 19-Sep-2022 11:12:06 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 10:27:06 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:06 GMT
cache-control: private
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNECshAAAAAADAVkAwBAoNEAMhAAAAAAC4gUAwBAoNEAohAAAAAAAAEEAwBAoNEA0hAAAAAAAAAAAwBAoNEB4qBzE2MHg2MDAwBAoNEBkqBzE2MHg2MDAwBAoNEA4hAAAAAAAAAAAwBAoNEAQhAAAAAADogUAwBAoNEA8hAAAAAAAAAAAwBAoNECshAAAAAAAAWUAwBAoNEAUhAAAAAADwgUAwBAoNEBAhAAAAAMDI1kAwBAoNEBEhAAAAAMA_0kAwBAoNEBIhAAAAAAAAFEAwBAoNEBMhAAAAAAAACEAwBAoNEBchAAAAAAAgiEAwBAoNEBQhAAAAAHCQ_EAwBAoNEBUhAAAAAAAALkAwBAoNEBYhAAAAAAAAGEAwBAoNEBghAAAAAAB4j0AwBBIaQ0pmeHVZelBvUG9DRlpURXNnb2RZNFFLbHciEXRleHQvZWRpdG9yaWFsX3YxKBU=
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNECshAAAAAADAVkAwBAoNEAMhAAAAAAC4gUAwBAoNEAohAAAAAAAAEEAwBAoNEA0hAAAAAAAAAAAwBAoNEB4qBzE2MHg2MDAwBAoNEBkqBzE2MHg2MDAwBAoNEA4hAAAAAAAAAAAwBAoNEAQhAAAAAADogUAwBAoNEA8hAAAAAAAAAAAwBAoNECshAAAAAAAAWUAwBAoNEAUhAAAAAADwgUAwBAoNEBAhAAAAAMDI1kAwBAoNEBEhAAAAAMA_0kAwBAoNEBIhAAAAAAAAFEAwBAoNEBMhAAAAAAAACEAwBAoNEBchAAAAAAAgiEAwBAoNEBQhAAAAAHCQ_EAwBAoNEBUhAAAAAAAALkAwBAoNEBYhAAAAAAAAGEAwBAoNEBghAAAAAAB4j0AwBBIaQ0pmeHVZelBvUG9DRlpURXNnb2RZNFFLbHciEXRleHQvZWRpdG9yaWFsX3YxKBU=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNECshAAAAAADAVkAwBAoNEAMhAAAAAAC4gUAwBAoNEAohAAAAAAAAEEAwBAoNEA0hAAAAAAAAAAAwBAoNEB4qBzE2MHg2MDAwBAoNEBkqBzE2MHg2MDAwBAoNEA4hAAAAAAAAAAAwBAoNEAQhAAAAAADogUAwBAoNEA8hAAAAAAAAAAAwBAoNECshAAAAAAAAWUAwBAoNEAUhAAAAAADwgUAwBAoNEBAhAAAAAMDI1kAwBAoNEBEhAAAAAMA_0kAwBAoNEBIhAAAAAAAAFEAwBAoNEBMhAAAAAAAACEAwBAoNEBchAAAAAAAgiEAwBAoNEBQhAAAAAHCQ_EAwBAoNEBUhAAAAAAAALkAwBAoNEBYhAAAAAAAAGEAwBAoNEBghAAAAAAB4j0AwBBIaQ0pmeHVZelBvUG9DRlpURXNnb2RZNFFLbHciEXRleHQvZWRpdG9yaWFsX3YxKBU= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAAGEAwBAoNEDkhAAAAAADgZ0AwBAoNEDohAAAAAABgaEAwBAoNEDshAAAAAADog0AwBAoNEDwhAAAAAAAYiEAwBAoNED0hAAAAAAAgiEAwBAoNED4hAAAAAABwj0AwBAoNED8hAAAAAABwj0AwBAoNEEAhAAAAAACwj0AwBBIaQ0pmeHVZelBvUG9DRlpURXNnb2RZNFFLbHciEXRleHQvZWRpdG9yaWFsX3YxKBU=
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAAGEAwBAoNEDkhAAAAAADgZ0AwBAoNEDohAAAAAABgaEAwBAoNEDshAAAAAADog0AwBAoNEDwhAAAAAAAYiEAwBAoNED0hAAAAAAAgiEAwBAoNED4hAAAAAABwj0AwBAoNED8hAAAAAABwj0AwBAoNEEAhAAAAAACwj0AwBBIaQ0pmeHVZelBvUG9DRlpURXNnb2RZNFFLbHciEXRleHQvZWRpdG9yaWFsX3YxKBU=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoYCAEqFHNreXNjcmFwZXItZWRpdG9yaWFsCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAAGEAwBAoNEDkhAAAAAADgZ0AwBAoNEDohAAAAAABgaEAwBAoNEDshAAAAAADog0AwBAoNEDwhAAAAAAAYiEAwBAoNED0hAAAAAAAgiEAwBAoNED4hAAAAAABwj0AwBAoNED8hAAAAAABwj0AwBAoNEEAhAAAAAACwj0AwBBIaQ0pmeHVZelBvUG9DRlpURXNnb2RZNFFLbHciEXRleHQvZWRpdG9yaWFsX3YxKBU= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNECshAAAAAACAYEAwBAoNEAMhAAAAAABIhUAwBAoNEAohAAAAAAAAFEAwBAoNEA0hAAAAAAAAAAAwBAoMEB4qBjcyOHg5MDAECgwQGSoGNzI4eDkwMAQKDRAOIQAAAAAAAAAAMAQKDRAEIQAAAAAAgIVAMAQKDRAPIQAAAAAAAAAAMAQKDRArIQAAAAAAYGJAMAQKDRAFIQAAAAAAiIVAMAQKDRAQIQAAAADAi-BAMAQKDRARIQAAAADAP9JAMAQKDRASIQAAAAAAABRAMAQKDRATIQAAAAAAAAhAMAQKDRAXIQAAAAAAYIlAMAQKDRAUIQAAAAA4aARBMAQKDRAVIQAAAAAAADBAMAQKDRAWIQAAAAAAABhAMAQKDRAYIQAAAAAAYJBAMAQSGkNMYTR1b3pQb1BvQ0ZXeEtrUVVkdzZNTThRIgl0ZXh0L3J5dWsoFQ==
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNECshAAAAAACAYEAwBAoNEAMhAAAAAABIhUAwBAoNEAohAAAAAAAAFEAwBAoNEA0hAAAAAAAAAAAwBAoMEB4qBjcyOHg5MDAECgwQGSoGNzI4eDkwMAQKDRAOIQAAAAAAAAAAMAQKDRAEIQAAAAAAgIVAMAQKDRAPIQAAAAAAAAAAMAQKDRArIQAAAAAAYGJAMAQKDRAFIQAAAAAAiIVAMAQKDRAQIQAAAADAi-BAMAQKDRARIQAAAADAP9JAMAQKDRASIQAAAAAAABRAMAQKDRATIQAAAAAAAAhAMAQKDRAXIQAAAAAAYIlAMAQKDRAUIQAAAAA4aARBMAQKDRAVIQAAAAAAADBAMAQKDRAWIQAAAAAAABhAMAQKDRAYIQAAAAAAYJBAMAQSGkNMYTR1b3pQb1BvQ0ZXeEtrUVVkdzZNTThRIgl0ZXh0L3J5dWsoFQ==
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNECshAAAAAACAYEAwBAoNEAMhAAAAAABIhUAwBAoNEAohAAAAAAAAFEAwBAoNEA0hAAAAAAAAAAAwBAoMEB4qBjcyOHg5MDAECgwQGSoGNzI4eDkwMAQKDRAOIQAAAAAAAAAAMAQKDRAEIQAAAAAAgIVAMAQKDRAPIQAAAAAAAAAAMAQKDRArIQAAAAAAYGJAMAQKDRAFIQAAAAAAiIVAMAQKDRAQIQAAAADAi-BAMAQKDRARIQAAAADAP9JAMAQKDRASIQAAAAAAABRAMAQKDRATIQAAAAAAAAhAMAQKDRAXIQAAAAAAYIlAMAQKDRAUIQAAAAA4aARBMAQKDRAVIQAAAAAAADBAMAQKDRAWIQAAAAAAABhAMAQKDRAYIQAAAAAAYJBAMAQSGkNMYTR1b3pQb1BvQ0ZXeEtrUVVkdzZNTThRIgl0ZXh0L3J5dWsoFQ== HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAACEAwBAoNEDkhAAAAAAAAZ0AwBAoNEDohAAAAAABgZ0AwBAoNEDshAAAAAAAoh0AwBAoNEDwhAAAAAABYiUAwBAoNED0hAAAAAABgiUAwBAoNED4hAAAAAABAkEAwBAoNED8hAAAAAABAkEAwBAoNEEAhAAAAAACAkEAwBBIaQ0xhNHVvelBvUG9DRld4S2tRVWR3Nk1NOFEiCXRleHQvcnl1aygV
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAACEAwBAoNEDkhAAAAAAAAZ0AwBAoNEDohAAAAAABgZ0AwBAoNEDshAAAAAAAoh0AwBAoNEDwhAAAAAABYiUAwBAoNED0hAAAAAABgiUAwBAoNED4hAAAAAABAkEAwBAoNED8hAAAAAABAkEAwBAoNEEAhAAAAAACAkEAwBBIaQ0xhNHVvelBvUG9DRld4S2tRVWR3Nk1NOFEiCXRleHQvcnl1aygV
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=mys&d=Cg4IByoKd2ViX2Jhbm5lcgoHCAgqA2x0cgoPCAEqC2xlYWRlcmJvYXJkCgoIAioGc2VydmVyChoIBCoWbXlzaWRpYV9hbmFseXRpY3NfZXhwMgoNEDIhAAAAAAAAAAAwBAoNEDMhAAAAAAAAAAAwBAoNEDQhAAAAAAAAAAAwBAoNEDUhAAAAAAAAAAAwBAoNEDYhAAAAAAAAAAAwBAoNEDchAAAAAAAAAAAwBAoNEDghAAAAAAAACEAwBAoNEDkhAAAAAAAAZ0AwBAoNEDohAAAAAABgZ0AwBAoNEDshAAAAAAAoh0AwBAoNEDwhAAAAAABYiUAwBAoNED0hAAAAAABgiUAwBAoNED4hAAAAAABAkEAwBAoNED8hAAAAAABAkEAwBAoNEEAhAAAAAACAkEAwBBIaQ0xhNHVvelBvUG9DRld4S2tRVWR3Nk1NOFEiCXRleHQvcnl1aygV HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/generate_204?gHB4zA
142.250.74.33204 No Content 0 B URL HTTP/2 tpc.googlesyndication.com/generate_204?gHB4zA
IP 142.250.74.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?gHB4zA HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 10:12:06 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuD5D3pJtbFrvgRI6iQQ4t8QZwEJJSpvH2ergquO9yNONZT0Ip5Cd4_4k_js8BcxDKf5bBWVgPVorgwBIvybf31FxDBB3NLr_oWv9iBhRfJByxclqzKhbQpH0smu9BW_BYI_m1pkCSus0iazGLW88Xx7sKFgDH0dw66YA&sai=AMfl-YQWKqe4jDUeoKZZqelhqWCaCrPjw_2aw0AoewsInGshInRufjokdS-PEMMxnr_EiCLK3P_zcYG58ZRWHHtSL3nRVQiLaZz-Xzxee-HI3mYU_9I7oSyWnXsdIpYMiDU&sig=Cg0ArKJSzHkiwR8D3WAwEAE&cid=CAQSPgCsnQUxqH5zepY-TGvBkcLlZ4BYxq4mFbJOQpoKfNr8FbtVnSDTikYflqtaJrcpQSs2wopIvu3XKy8UJ6I3GAEgDg&id=lidar2&mcvt=1000&p=0,0,581,155&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1843790409&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306052&rpt=913&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuD5D3pJtbFrvgRI6iQQ4t8QZwEJJSpvH2ergquO9yNONZT0Ip5Cd4_4k_js8BcxDKf5bBWVgPVorgwBIvybf31FxDBB3NLr_oWv9iBhRfJByxclqzKhbQpH0smu9BW_BYI_m1pkCSus0iazGLW88Xx7sKFgDH0dw66YA&sai=AMfl-YQWKqe4jDUeoKZZqelhqWCaCrPjw_2aw0AoewsInGshInRufjokdS-PEMMxnr_EiCLK3P_zcYG58ZRWHHtSL3nRVQiLaZz-Xzxee-HI3mYU_9I7oSyWnXsdIpYMiDU&sig=Cg0ArKJSzHkiwR8D3WAwEAE&cid=CAQSPgCsnQUxqH5zepY-TGvBkcLlZ4BYxq4mFbJOQpoKfNr8FbtVnSDTikYflqtaJrcpQSs2wopIvu3XKy8UJ6I3GAEgDg&id=lidar2&mcvt=1000&p=0,0,581,155&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1843790409&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306052&rpt=913&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsuD5D3pJtbFrvgRI6iQQ4t8QZwEJJSpvH2ergquO9yNONZT0Ip5Cd4_4k_js8BcxDKf5bBWVgPVorgwBIvybf31FxDBB3NLr_oWv9iBhRfJByxclqzKhbQpH0smu9BW_BYI_m1pkCSus0iazGLW88Xx7sKFgDH0dw66YA&sai=AMfl-YQWKqe4jDUeoKZZqelhqWCaCrPjw_2aw0AoewsInGshInRufjokdS-PEMMxnr_EiCLK3P_zcYG58ZRWHHtSL3nRVQiLaZz-Xzxee-HI3mYU_9I7oSyWnXsdIpYMiDU&sig=Cg0ArKJSzHkiwR8D3WAwEAE&cid=CAQSPgCsnQUxqH5zepY-TGvBkcLlZ4BYxq4mFbJOQpoKfNr8FbtVnSDTikYflqtaJrcpQSs2wopIvu3XKy8UJ6I3GAEgDg&id=lidar2&mcvt=1000&p=0,0,581,155&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=1843790409&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306052&rpt=913&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220914&jk=2341565356967761&bg=!ODulO3_NAAZqQh0mSkI7ACkAdvg8WmB4I-tPgmNaBHQLKGGyTjudqR9yVYRvCXR8AuwLKwfYZrhTpAIAAAQLUgAAAANoAQcKAAbrduPKK1-ZAoSgpyZ5JvK6dQhBTmYnZ4OH0mP8jDN73twyNOnTwnzHS5Spi3btKLAC7VTwwBXdcCXGa9WZogHPNhNeV_JNvCguGsh7viQLMfqhiCPTCSxScFnoOq2wuiw_TsbSrXEuKgCTXjOI--0wczor66HQVImt2MyUrCPM6HmPYn5ygASxmnXHNdJUpcju6PDMIKGmtL6GktfHyzWmooUa_BuYu-sj8lUCrMGNTKe3jtoArCLibeL5dF7rvQBId_IpgrRBrV38Bp212GG19uEvEdBgjLJgpUs2qeKSHlZ-FF_zHFYkpizt37Ra31oiJWHeZSwAdSIikVNjE_2MBm606sdBCpZI8C0zJvXIr_0v9Og3xrBqnZ_E9HhWIXza4RZXzhEdWd-yb8NeqskvK70TVv1Bvunajf9ZkHv9w7HwEkYhwHAjo3zx1wi93BycmsFPB9cnHh8HqIXco-9PN9zcruEhKP80pLNa1vhOwe9RJG-OCDXA_YWGLzLM2lONUNrJ8o27yr-_0GE7YphXsBQvUsW56ZnrK9IkNbgFVJzFXePreupWxrhbg3ZAcdrbbQOvCDFeT7KNnpd1fdhrS8ybPp8auCVZJ112usBIQ2UPXCHe2_hsb382nZJtn-7KrRxgscWsJvdtIm3LR0O0WOQpgnMAjT88rXh0mqwvChLKCx6HBgWAOmI6wfaG5tUW_qlXMztuc_8b8F_ZY-hjbdACeRTJPMRrXSXuoBmSFosSKcB9x-0Vpd87GV808sMkItOS4B2rzHMVNtwXQoxZYiYdMpM-FC0otZgMqN2TiT4zD_Q0uXzdQVIe-7v-VuNFCJ-2wwXpzx_E7-Zttyza_EpAGTAaTblQ28V-fg
142.250.74.130204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220914&jk=2341565356967761&bg=!ODulO3_NAAZqQh0mSkI7ACkAdvg8WmB4I-tPgmNaBHQLKGGyTjudqR9yVYRvCXR8AuwLKwfYZrhTpAIAAAQLUgAAAANoAQcKAAbrduPKK1-ZAoSgpyZ5JvK6dQhBTmYnZ4OH0mP8jDN73twyNOnTwnzHS5Spi3btKLAC7VTwwBXdcCXGa9WZogHPNhNeV_JNvCguGsh7viQLMfqhiCPTCSxScFnoOq2wuiw_TsbSrXEuKgCTXjOI--0wczor66HQVImt2MyUrCPM6HmPYn5ygASxmnXHNdJUpcju6PDMIKGmtL6GktfHyzWmooUa_BuYu-sj8lUCrMGNTKe3jtoArCLibeL5dF7rvQBId_IpgrRBrV38Bp212GG19uEvEdBgjLJgpUs2qeKSHlZ-FF_zHFYkpizt37Ra31oiJWHeZSwAdSIikVNjE_2MBm606sdBCpZI8C0zJvXIr_0v9Og3xrBqnZ_E9HhWIXza4RZXzhEdWd-yb8NeqskvK70TVv1Bvunajf9ZkHv9w7HwEkYhwHAjo3zx1wi93BycmsFPB9cnHh8HqIXco-9PN9zcruEhKP80pLNa1vhOwe9RJG-OCDXA_YWGLzLM2lONUNrJ8o27yr-_0GE7YphXsBQvUsW56ZnrK9IkNbgFVJzFXePreupWxrhbg3ZAcdrbbQOvCDFeT7KNnpd1fdhrS8ybPp8auCVZJ112usBIQ2UPXCHe2_hsb382nZJtn-7KrRxgscWsJvdtIm3LR0O0WOQpgnMAjT88rXh0mqwvChLKCx6HBgWAOmI6wfaG5tUW_qlXMztuc_8b8F_ZY-hjbdACeRTJPMRrXSXuoBmSFosSKcB9x-0Vpd87GV808sMkItOS4B2rzHMVNtwXQoxZYiYdMpM-FC0otZgMqN2TiT4zD_Q0uXzdQVIe-7v-VuNFCJ-2wwXpzx_E7-Zttyza_EpAGTAaTblQ28V-fg
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220914&jk=2341565356967761&bg=!ODulO3_NAAZqQh0mSkI7ACkAdvg8WmB4I-tPgmNaBHQLKGGyTjudqR9yVYRvCXR8AuwLKwfYZrhTpAIAAAQLUgAAAANoAQcKAAbrduPKK1-ZAoSgpyZ5JvK6dQhBTmYnZ4OH0mP8jDN73twyNOnTwnzHS5Spi3btKLAC7VTwwBXdcCXGa9WZogHPNhNeV_JNvCguGsh7viQLMfqhiCPTCSxScFnoOq2wuiw_TsbSrXEuKgCTXjOI--0wczor66HQVImt2MyUrCPM6HmPYn5ygASxmnXHNdJUpcju6PDMIKGmtL6GktfHyzWmooUa_BuYu-sj8lUCrMGNTKe3jtoArCLibeL5dF7rvQBId_IpgrRBrV38Bp212GG19uEvEdBgjLJgpUs2qeKSHlZ-FF_zHFYkpizt37Ra31oiJWHeZSwAdSIikVNjE_2MBm606sdBCpZI8C0zJvXIr_0v9Og3xrBqnZ_E9HhWIXza4RZXzhEdWd-yb8NeqskvK70TVv1Bvunajf9ZkHv9w7HwEkYhwHAjo3zx1wi93BycmsFPB9cnHh8HqIXco-9PN9zcruEhKP80pLNa1vhOwe9RJG-OCDXA_YWGLzLM2lONUNrJ8o27yr-_0GE7YphXsBQvUsW56ZnrK9IkNbgFVJzFXePreupWxrhbg3ZAcdrbbQOvCDFeT7KNnpd1fdhrS8ybPp8auCVZJ112usBIQ2UPXCHe2_hsb382nZJtn-7KrRxgscWsJvdtIm3LR0O0WOQpgnMAjT88rXh0mqwvChLKCx6HBgWAOmI6wfaG5tUW_qlXMztuc_8b8F_ZY-hjbdACeRTJPMRrXSXuoBmSFosSKcB9x-0Vpd87GV808sMkItOS4B2rzHMVNtwXQoxZYiYdMpM-FC0otZgMqN2TiT4zD_Q0uXzdQVIe-7v-VuNFCJ-2wwXpzx_E7-Zttyza_EpAGTAaTblQ28V-fg HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:12:07 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstto0zTvTVuTaOQ2rDOe90BAK-O6Zif-3lE7bzN7_xjmXE1aWyZdIU1C4D_Z54xBbiM1w0Lija2XBE1KqpBrGInR164wsIsUgyEYCsiRigCqgB6EdZ2bstw0DYbsNGAx8WFnvv0ixk&sai=AMfl-YSoXA9aXzNuJLPffkyaHcpxI9dIxSUk4-1gOx-C5Q1qB-wqviAnL4EIelsC9oQHbNfTWBTXjCOgEdT1VAN46aR4mKINYxUGEPiPQ582-QxSfBzgQxmPOitO_zoJML4&sig=Cg0ArKJSzBByRBed8g58EAE&cid=CAQSPgCsnQUxzUSU6DrDH98GhL4QtBvOgmXULkP_8xwgBQqdR3NbEd5i1yZSzYzZfvV4ZDJeBc471L1Vfkb5SAHGGAEgDg&id=lidar2&mcvt=1004&p=0,0,600,160&mtos=1004,1004,1004,1004,1004&tos=1004,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1520397898&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306086&rpt=1008&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstto0zTvTVuTaOQ2rDOe90BAK-O6Zif-3lE7bzN7_xjmXE1aWyZdIU1C4D_Z54xBbiM1w0Lija2XBE1KqpBrGInR164wsIsUgyEYCsiRigCqgB6EdZ2bstw0DYbsNGAx8WFnvv0ixk&sai=AMfl-YSoXA9aXzNuJLPffkyaHcpxI9dIxSUk4-1gOx-C5Q1qB-wqviAnL4EIelsC9oQHbNfTWBTXjCOgEdT1VAN46aR4mKINYxUGEPiPQ582-QxSfBzgQxmPOitO_zoJML4&sig=Cg0ArKJSzBByRBed8g58EAE&cid=CAQSPgCsnQUxzUSU6DrDH98GhL4QtBvOgmXULkP_8xwgBQqdR3NbEd5i1yZSzYzZfvV4ZDJeBc471L1Vfkb5SAHGGAEgDg&id=lidar2&mcvt=1004&p=0,0,600,160&mtos=1004,1004,1004,1004,1004&tos=1004,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1520397898&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306086&rpt=1008&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstto0zTvTVuTaOQ2rDOe90BAK-O6Zif-3lE7bzN7_xjmXE1aWyZdIU1C4D_Z54xBbiM1w0Lija2XBE1KqpBrGInR164wsIsUgyEYCsiRigCqgB6EdZ2bstw0DYbsNGAx8WFnvv0ixk&sai=AMfl-YSoXA9aXzNuJLPffkyaHcpxI9dIxSUk4-1gOx-C5Q1qB-wqviAnL4EIelsC9oQHbNfTWBTXjCOgEdT1VAN46aR4mKINYxUGEPiPQ582-QxSfBzgQxmPOitO_zoJML4&sig=Cg0ArKJSzBByRBed8g58EAE&cid=CAQSPgCsnQUxzUSU6DrDH98GhL4QtBvOgmXULkP_8xwgBQqdR3NbEd5i1yZSzYzZfvV4ZDJeBc471L1Vfkb5SAHGGAEgDg&id=lidar2&mcvt=1004&p=0,0,600,160&mtos=1004,1004,1004,1004,1004&tos=1004,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1520397898&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306086&rpt=1008&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsteH2llNJt-FE5pyzBf4e57P6djOGg8cLpantl_t4dGsiSEo9Q9ZmF4h7PgIqJmfgtzI5zPCw4Echqeibz4wD5JWxhmK1BL3mOH3pp_YGVQbwfXPXEu0hOsKvAJnZU154PPWFTEi0n3fLHbIWFtExfC_1aHNmOZM9f0eOHFg-3tP6BLDL49Noc1IxVrfB0R90oHrOvQ_4pM46DFuB15WoQU59DIabRJYAMtbW7lRKBHVo2Dnf62-3vvuvyn2lyr9Een7lVyYUphjUI-3wHQRieaEesziFEUr-E2IhLY4ZOE6Qpn2p4-srHger-wubxQBGOF4LOCAx7uv1UN48kpN6RKCd3b4ewHbZd_uycAyJfPI02cvDS_0bxRadhRSjGkcqGgLjxMsv8qntxmJjeLcQ2px4PSlz1k_uag-4cfo82v2wkZ8cXvBdQlZksx-DPSIA5pV9we2r8z_C_SG_CGht1ta8jlu_dJBduEmW-nax9feTAC0Mz0MioNhinL8wa2z4zOVejvY18ik9rC0UXnx-UUUPzS5eggXYSn7KI9DpK-qKn4jmLXhu4w1l-jy-CdsIYdWF-ddbX3K0zYbC6Tiet9MYgMWVGq6jUc3LJM776JEC0yP_eF9qWSqwoj5xfSdMtTYhSW_VZHE8zKtRI9_PWBsd7kPoScyR5zQ6XFUdHUmh_v7xq4NX2sLbiZDqWYplaugitbEqS89xDy4mNwb_R45XUKpadTi4ibuPW4uXSLNR0_QQLqHfXmNspq84__C4B_DShbOseSZz0VvkRmmZV0zQEULTkIcMVwy08oL_VsSElhnr3brnF4FAWQwKSw3XQcxW6ll_-yaVuEGOjK_fpblX5knhnxVazMhdod54443Z7jqwK_y5RGZw25Gtyt8jOtZf_CnTkyXTjcEnnvA6g5x3ZJG4pNdNnJwH8k1vHBfznGgDPaygon-gR0vCoG6tgN9mrVc47hYqGaB0fSkHJTrjfRdSY-ET0I1OhImOOjuFWoNw&sai=AMfl-YQTHZHVPibjyHiEcZw-aaar9hO6W30TKG-x6JxQE1LxceefYtIo1S6R_7kOycuCJ0ZpJfZ27SohVdJgcU_Bfk6BmgO_TO7kIBCHITjPtCyTa92Y3UOcBHDjAbYIkGir8SgpOHgTBlvfPDun&sig=Cg0ArKJSzBO4oRl1uNpEEAE&cid=CAQSPgCsnQUxk0MVZ0JhnArAG2RCC0YvOhipmNeZV1L0gRZNG7kDTrNgwq6NNw3pLhmihCHUgLumNAm2TuINltXfGAEgDg&id=lidar2&mcvt=1012&p=0,0,90,728&mtos=1012,1012,1012,1012,1012&tos=1012,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=803467372&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306098&rpt=1049&met=mue&wmsd=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsteH2llNJt-FE5pyzBf4e57P6djOGg8cLpantl_t4dGsiSEo9Q9ZmF4h7PgIqJmfgtzI5zPCw4Echqeibz4wD5JWxhmK1BL3mOH3pp_YGVQbwfXPXEu0hOsKvAJnZU154PPWFTEi0n3fLHbIWFtExfC_1aHNmOZM9f0eOHFg-3tP6BLDL49Noc1IxVrfB0R90oHrOvQ_4pM46DFuB15WoQU59DIabRJYAMtbW7lRKBHVo2Dnf62-3vvuvyn2lyr9Een7lVyYUphjUI-3wHQRieaEesziFEUr-E2IhLY4ZOE6Qpn2p4-srHger-wubxQBGOF4LOCAx7uv1UN48kpN6RKCd3b4ewHbZd_uycAyJfPI02cvDS_0bxRadhRSjGkcqGgLjxMsv8qntxmJjeLcQ2px4PSlz1k_uag-4cfo82v2wkZ8cXvBdQlZksx-DPSIA5pV9we2r8z_C_SG_CGht1ta8jlu_dJBduEmW-nax9feTAC0Mz0MioNhinL8wa2z4zOVejvY18ik9rC0UXnx-UUUPzS5eggXYSn7KI9DpK-qKn4jmLXhu4w1l-jy-CdsIYdWF-ddbX3K0zYbC6Tiet9MYgMWVGq6jUc3LJM776JEC0yP_eF9qWSqwoj5xfSdMtTYhSW_VZHE8zKtRI9_PWBsd7kPoScyR5zQ6XFUdHUmh_v7xq4NX2sLbiZDqWYplaugitbEqS89xDy4mNwb_R45XUKpadTi4ibuPW4uXSLNR0_QQLqHfXmNspq84__C4B_DShbOseSZz0VvkRmmZV0zQEULTkIcMVwy08oL_VsSElhnr3brnF4FAWQwKSw3XQcxW6ll_-yaVuEGOjK_fpblX5knhnxVazMhdod54443Z7jqwK_y5RGZw25Gtyt8jOtZf_CnTkyXTjcEnnvA6g5x3ZJG4pNdNnJwH8k1vHBfznGgDPaygon-gR0vCoG6tgN9mrVc47hYqGaB0fSkHJTrjfRdSY-ET0I1OhImOOjuFWoNw&sai=AMfl-YQTHZHVPibjyHiEcZw-aaar9hO6W30TKG-x6JxQE1LxceefYtIo1S6R_7kOycuCJ0ZpJfZ27SohVdJgcU_Bfk6BmgO_TO7kIBCHITjPtCyTa92Y3UOcBHDjAbYIkGir8SgpOHgTBlvfPDun&sig=Cg0ArKJSzBO4oRl1uNpEEAE&cid=CAQSPgCsnQUxk0MVZ0JhnArAG2RCC0YvOhipmNeZV1L0gRZNG7kDTrNgwq6NNw3pLhmihCHUgLumNAm2TuINltXfGAEgDg&id=lidar2&mcvt=1012&p=0,0,90,728&mtos=1012,1012,1012,1012,1012&tos=1012,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=803467372&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306098&rpt=1049&met=mue&wmsd=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsteH2llNJt-FE5pyzBf4e57P6djOGg8cLpantl_t4dGsiSEo9Q9ZmF4h7PgIqJmfgtzI5zPCw4Echqeibz4wD5JWxhmK1BL3mOH3pp_YGVQbwfXPXEu0hOsKvAJnZU154PPWFTEi0n3fLHbIWFtExfC_1aHNmOZM9f0eOHFg-3tP6BLDL49Noc1IxVrfB0R90oHrOvQ_4pM46DFuB15WoQU59DIabRJYAMtbW7lRKBHVo2Dnf62-3vvuvyn2lyr9Een7lVyYUphjUI-3wHQRieaEesziFEUr-E2IhLY4ZOE6Qpn2p4-srHger-wubxQBGOF4LOCAx7uv1UN48kpN6RKCd3b4ewHbZd_uycAyJfPI02cvDS_0bxRadhRSjGkcqGgLjxMsv8qntxmJjeLcQ2px4PSlz1k_uag-4cfo82v2wkZ8cXvBdQlZksx-DPSIA5pV9we2r8z_C_SG_CGht1ta8jlu_dJBduEmW-nax9feTAC0Mz0MioNhinL8wa2z4zOVejvY18ik9rC0UXnx-UUUPzS5eggXYSn7KI9DpK-qKn4jmLXhu4w1l-jy-CdsIYdWF-ddbX3K0zYbC6Tiet9MYgMWVGq6jUc3LJM776JEC0yP_eF9qWSqwoj5xfSdMtTYhSW_VZHE8zKtRI9_PWBsd7kPoScyR5zQ6XFUdHUmh_v7xq4NX2sLbiZDqWYplaugitbEqS89xDy4mNwb_R45XUKpadTi4ibuPW4uXSLNR0_QQLqHfXmNspq84__C4B_DShbOseSZz0VvkRmmZV0zQEULTkIcMVwy08oL_VsSElhnr3brnF4FAWQwKSw3XQcxW6ll_-yaVuEGOjK_fpblX5knhnxVazMhdod54443Z7jqwK_y5RGZw25Gtyt8jOtZf_CnTkyXTjcEnnvA6g5x3ZJG4pNdNnJwH8k1vHBfznGgDPaygon-gR0vCoG6tgN9mrVc47hYqGaB0fSkHJTrjfRdSY-ET0I1OhImOOjuFWoNw&sai=AMfl-YQTHZHVPibjyHiEcZw-aaar9hO6W30TKG-x6JxQE1LxceefYtIo1S6R_7kOycuCJ0ZpJfZ27SohVdJgcU_Bfk6BmgO_TO7kIBCHITjPtCyTa92Y3UOcBHDjAbYIkGir8SgpOHgTBlvfPDun&sig=Cg0ArKJSzBO4oRl1uNpEEAE&cid=CAQSPgCsnQUxk0MVZ0JhnArAG2RCC0YvOhipmNeZV1L0gRZNG7kDTrNgwq6NNw3pLhmihCHUgLumNAm2TuINltXfGAEgDg&id=lidar2&mcvt=1012&p=0,0,90,728&mtos=1012,1012,1012,1012,1012&tos=1012,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=803467372&rs=2&la=0&cr=0&vs=4&r=v&rst=1663582306098&rpt=1049&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 10:12:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
216.58.211.14200 OK 31 B URL HTTP/2 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 216.58.211.14:0
File type JSON data\012- , ASCII text
Hash 0517a608635a116d279530f9e79f46c6
d039de7440a05934e6a9f517ef98c460efa701c4
fcdc48636aaf6e5c6123f43decdec565c7a7614a1729283815ecdfb7ae1bef63
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1663582308371
Content-Type: application/json
X-Goog-Visitor-Id: CgtQZmFuT2Noa2JJZyjzgKGZBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20220914.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1663582304216&flash=0&frm=2&u_tz&u_his=4&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C770%2C433&vis=1&wgl=true&ca_type=image
Content-Length: 514
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/embed/MRpqEcbnWdQ?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 19 Sep 2022 10:12:07 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+842; expires=Wed, 18-Sep-2024 10:12:07 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 10:12:07 GMT
cache-control: private
X-Firefox-Spdy: h2
saumeechoa.com/4/1579719/
139.45.197.153200 OK 0 B URL HTTP/2 saumeechoa.com/4/1579719/
IP 139.45.197.153:0
GET /4/1579719/ HTTP/1.1
Host: saumeechoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:11:58 GMT
content-type: text/html; charset=utf8
vary: Accept-Encoding
x-trace-id: e2ee1ab1be65c1a6f631fb48967c5ea1
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://mahacet.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
set-cookie: OAID=addc324db8e8441ea54c455792520954; expires=Tue, 19 Sep 2023 10:11:58 GMT; path=/; secure; SameSite=None
oaidts=1663582318; expires=Tue, 19 Sep 2023 10:11:58 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=60
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
propeller-tracking.com/fv.js?t=102123
139.45.197.240200 OK 0 B URL HTTP/2 propeller-tracking.com/fv.js?t=102123
IP 139.45.197.240:0
GET /fv.js?t=102123 HTTP/1.1
Host: propeller-tracking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mahacet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:12:03 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 773dbef6ae9f9eaa59b756170d4bc950
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A400%2C700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A400%2C700
IP 142.250.74.10:0
GET /css?family=Roboto%3A400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 10:12:04 GMT
date: Mon, 19 Sep 2022 10:12:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
fonts.googleapis.com/css?family=Open%20Sans%3A300%2C400%2C500
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans%3A300%2C400%2C500
IP 142.250.74.10:0
GET /css?family=Open%20Sans%3A300%2C400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 10:12:05 GMT
date: Mon, 19 Sep 2022 10:12:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2