www.filehippo.com/updatechecker/
35.186.241.3301 Moved Permanently 0 B URL HTTP/1.1 www.filehippo.com/updatechecker/
IP 35.186.241.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /updatechecker/ HTTP/1.1
Host: www.filehippo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
location: http://filehippo.com/updatechecker/
x-served-by: server-679b8d5cbf-z2749
x-version: 1.1118.0
content-security-policy: upgrade-insecure-requests
content-type: text/html; charset=utf-8
cache-control: no-cache
content-length: 0
date: Thu, 09 Feb 2023 04:22:37 GMT
x-envoy-upstream-service-time: 2
server: istio-envoy
Via: 1.1 google
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14958
Expires: Thu, 09 Feb 2023 08:31:55 GMT
Date: Thu, 09 Feb 2023 04:22:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8387
Expires: Thu, 09 Feb 2023 06:42:24 GMT
Date: Thu, 09 Feb 2023 04:22:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 03:36:46 GMT
content-type: application/json
age: 2751
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9975
Expires: Thu, 09 Feb 2023 07:08:52 GMT
Date: Thu, 09 Feb 2023 04:22:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6lBAVMmzNUqFOGDKG/32p/2ic2KcL1KDP+FW8U/Q+F6vErpYqSVLTpXFp+YuiwNwfUPcWEmunBM=
x-amz-request-id: EAZNV75AB19PRH43
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 03:36:12 GMT
age: 2785
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
filehippo.com/updatechecker/
35.186.241.3301 Moved Permanently 0 B URL HTTP/1.1 filehippo.com/updatechecker/
IP 35.186.241.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /updatechecker/ HTTP/1.1
Host: filehippo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
location: https://filehippo.com/updatechecker/
content-language: en
x-is-bot: false
x-rendered-as: desktop
x-served-by: server-679b8d5cbf-gv2bh
x-version: 1.1118.0
content-security-policy: upgrade-insecure-requests
content-type: text/html; charset=utf-8
cache-control: no-cache
content-length: 0
date: Thu, 09 Feb 2023 04:22:37 GMT
x-envoy-upstream-service-time: 2
server: istio-envoy
Via: 1.1 google
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 04:22:37 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 93067079aa0436307ae3bd5b129a9d8b
9eee800a0517f81060c5e3e48da6b12238dcd202
488d1feaef31b0a745226790174d227ade8465240cc9e2e4ed1907817a44d96f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 04:22:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 11:20:38 GMT
Expires: Tue, 14 Feb 2023 11:20:37 GMT
Etag: "9eee800a0517f81060c5e3e48da6b12238dcd202"
Cache-Control: max-age=456478,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7969d3376bcf0b06-OSL
filehippo.com/updatechecker/
35.186.241.3301 Moved Permanently 0 B URL HTTP/2 filehippo.com/updatechecker/
IP 35.186.241.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /updatechecker/ HTTP/1.1
Host: filehippo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
location: https://filehippo.com/download_iobit-software-updater/
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-language: en
x-is-bot: false
x-rendered-as: desktop
x-served-by: server-679b8d5cbf-6cqp9
x-version: 1.1118.0
content-security-policy: upgrade-insecure-requests
content-type: text/html; charset=utf-8
cache-control: no-cache
content-length: 0
date: Thu, 09 Feb 2023 04:22:38 GMT
x-envoy-upstream-service-time: 3
server: istio-envoy
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 93067079aa0436307ae3bd5b129a9d8b
9eee800a0517f81060c5e3e48da6b12238dcd202
488d1feaef31b0a745226790174d227ade8465240cc9e2e4ed1907817a44d96f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 04:22:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 11:20:38 GMT
Expires: Tue, 14 Feb 2023 11:20:37 GMT
Etag: "9eee800a0517f81060c5e3e48da6b12238dcd202"
Cache-Control: max-age=456478,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7969d3392c3d0b06-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 03:51:21 GMT
age: 1877
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9728
Expires: Thu, 09 Feb 2023 07:04:46 GMT
Date: Thu, 09 Feb 2023 04:22:38 GMT
Connection: keep-alive
filehippo.com/download_iobit-software-updater/
35.186.241.3200 OK 55 kB URL HTTP/2 filehippo.com/download_iobit-software-updater/
IP 35.186.241.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (29787)
Hash 69a4543e032a3b2e16dbce4db74b3097
fe3ec774163d117b1e362e165b2446e58372fbd7
2c9d2568699072b394707b1a680b9f3b0129872624383f889b3cdbd1382f7d81
GET /download_iobit-software-updater/ HTTP/1.1
Host: filehippo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-language: en
cache-control: public,max-age=3600
x-is-bot: false
x-rendered-as: desktop
x-page-id: program
x-served-by: server-679b8d5cbf-gv2bh
x-version: 1.1118.0
content-security-policy: upgrade-insecure-requests
set-cookie: _swo_pos=520; Max-Age=1296000; Expires=Fri, 24 Feb 2023 04:22:38 GMT; Path=/
content-type: text/html; charset=utf-8
vary: accept-encoding
content-encoding: gzip
date: Thu, 09 Feb 2023 04:22:38 GMT
x-envoy-upstream-service-time: 296
server: istio-envoy
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cache-05.filehippo.net/scripts/1c93b-8221a.mjs
151.101.1.91200 OK 5.6 kB URL HTTP/2 cache-05.filehippo.net/scripts/1c93b-8221a.mjs
IP 151.101.1.91:0
File type ASCII text, with very long lines (16701), with no line terminators
Hash 1cb1b5ae6b1f36796bc301d5ee87e452
4341e028073367c7f4e3393267dea80fe0f5d42d
9ef6c96af6aace314bd7ca4be5db32f41aa944fbf6c09a22b747f640f8d68cc8
GET /scripts/1c93b-8221a.mjs HTTP/1.1
Host: cache-05.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
content-type: application/javascript
last-modified: Wed, 01 Feb 2023 10:41:30 GMT
etag: W/"63da41da-413d"
expires: Tue, 14 Feb 2023 00:47:12 GMT
cache-control: max-age=604800,public
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Accept, Content-Type, If-None-Match
access-control-allow-methods: GET, OPTIONS
content-encoding: br
x-envoy-upstream-service-time: 1
x-envoy-decorator-operation: statics-server.fhp-filehippo-v1.svc.cluster.local:80/*
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Feb 2023 04:22:38 GMT
age: 185726
x-served-by: cache-ams12757-AMS, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 72, 1
x-timer: S1675916559.746818,VS0,VE2
vary: Accept-Encoding
x-device-type: common
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5623
X-Firefox-Spdy: h2
cache-05.filehippo.net/scripts/57bea-4fc81.mjs
151.101.1.91200 OK 17 kB URL HTTP/2 cache-05.filehippo.net/scripts/57bea-4fc81.mjs
IP 151.101.1.91:0
File type Unicode text, UTF-8 text, with very long lines (44645)
Hash f8030819642e5024952a7e3a9f13ea93
102f759bd9fcbfa4aab23e27fb224c3e107f72fc
2e1492a5e987ba08dff3ccb536b05a0b266e164c6713de459b7a1e6c74463d06
GET /scripts/57bea-4fc81.mjs HTTP/1.1
Host: cache-05.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
content-type: application/javascript
last-modified: Wed, 01 Feb 2023 10:41:30 GMT
etag: W/"63da41da-eea7"
expires: Tue, 14 Feb 2023 00:27:01 GMT
cache-control: max-age=604800,public
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Accept, Content-Type, If-None-Match
access-control-allow-methods: GET, OPTIONS
content-encoding: br
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: statics-server.fhp-filehippo-v1.svc.cluster.local:80/*
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Feb 2023 04:22:38 GMT
age: 186938
x-served-by: cache-ams21081-AMS, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 62, 1
x-timer: S1675916559.752181,VS0,VE1
vary: Accept-Encoding
x-device-type: common
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16887
X-Firefox-Spdy: h2
cache-05.filehippo.net/scripts/aad76-76193.js
151.101.1.91200 OK 74 kB URL HTTP/2 cache-05.filehippo.net/scripts/aad76-76193.js
IP 151.101.1.91:0
File type ASCII text, with very long lines (65423)
Hash f63ad7db2ab6f504bc106616a34337d9
45638c74a29ee00824c2ad92bf7e9bca1e111bc3
bc577cab9ca2fe54f96ec7e6305cc10dcda0a82f8aa4f6d1dad0c45561226bf1
GET /scripts/aad76-76193.js HTTP/1.1
Host: cache-05.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
content-type: application/javascript
last-modified: Wed, 01 Feb 2023 10:41:30 GMT
etag: W/"63da41da-41c0b"
expires: Mon, 13 Feb 2023 23:48:02 GMT
cache-control: max-age=604800,public
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Accept, Content-Type, If-None-Match
access-control-allow-methods: GET, OPTIONS
content-encoding: br
x-envoy-upstream-service-time: 13
x-envoy-decorator-operation: statics-server.fhp-filehippo-v1.svc.cluster.local:80/*
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Feb 2023 04:22:38 GMT
age: 189277
x-served-by: cache-ams21043-AMS, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 33, 2
x-timer: S1675916559.746584,VS0,VE0
vary: Accept-Encoding
x-device-type: common
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 73711
X-Firefox-Spdy: h2
cache-05.filehippo.net/styles/0083f-10f50.css
151.101.1.91200 OK 5.4 kB URL HTTP/2 cache-05.filehippo.net/styles/0083f-10f50.css
IP 151.101.1.91:0
File type ASCII text, with very long lines (56882)
Hash a1dce4278e79779b0d5a8e3e5569682b
cccc38d01bfe92e1dc0bbaec4c28644effa29f91
f43594d4e93ca44a7da08797cf75d22bf4262350e67595745ea12d3ee01fe900
GET /styles/0083f-10f50.css HTTP/1.1
Host: cache-05.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
content-type: text/css
last-modified: Wed, 01 Feb 2023 10:41:29 GMT
etag: W/"63da41d9-de33"
expires: Tue, 14 Feb 2023 03:45:15 GMT
cache-control: max-age=604800,public
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Accept, Content-Type, If-None-Match
access-control-allow-methods: GET, OPTIONS
content-encoding: br
x-envoy-upstream-service-time: 1
x-envoy-decorator-operation: statics-server.fhp-filehippo-v1.svc.cluster.local:80/*
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Feb 2023 04:22:38 GMT
age: 175043
x-served-by: cache-ams12747-AMS, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 903, 2
x-timer: S1675916559.749006,VS0,VE0
vary: Accept-Encoding
x-device-type: common
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5440
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cache-05.filehippo.net/images/39a1d-e099e.png
151.101.1.91200 OK 3.4 kB URL HTTP/2 cache-05.filehippo.net/images/39a1d-e099e.png
IP 151.101.1.91:0
File type PNG image data, 175 x 46, 8-bit colormap, non-interlaced\012- data
Hash e099e034b4d98116ce887757e925e6a8
7f20dddccf8bc612657a4fd8f41efc8671c5c3d1
f905dce5b44457d759c740888bc319183e895c9725bfae5b42d26f6b398ed4e1
GET /images/39a1d-e099e.png HTTP/1.1
Host: cache-05.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
content-type: image/png
last-modified: Wed, 01 Feb 2023 10:41:29 GMT
etag: "63da41d9-d5a"
expires: Wed, 08 Feb 2023 23:31:52 GMT
cache-control: max-age=604800,public
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Accept, Content-Type, If-None-Match
access-control-allow-methods: GET, OPTIONS
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: statics-server.fhp-filehippo-v1.svc.cluster.local:80/*
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Feb 2023 04:22:38 GMT
age: 17446
x-served-by: cache-ams21038-AMS, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 60, 2
x-timer: S1675916559.752391,VS0,VE0
vary: Accept-Encoding
x-device-type: common
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3418
X-Firefox-Spdy: h2
sc.filehippo.net/images/t_app-cover-m,f_auto/p/95522b61-fd16-42ed-b951-557c90e89ac0/3213878163/iobit-software-updater-screenshot.png
104.110.18.102200 OK 21 kB URL HTTP/2 sc.filehippo.net/images/t_app-cover-m,f_auto/p/95522b61-fd16-42ed-b951-557c90e89ac0/3213878163/iobit-software-updater-screenshot.png
IP 104.110.18.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2f39f17722d9405be32b1514e53a9d61
10e703153e909783e610719ebf4c52c7fddaee7c
0b0bfbe8fd152443e3d045cfc660bf78f514cba2b4600685885ff5395850842b
GET /images/t_app-cover-m,f_auto/p/95522b61-fd16-42ed-b951-557c90e89ac0/3213878163/iobit-software-updater-screenshot.png HTTP/1.1
Host: sc.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-disposition: inline; filename="3213878163.webp"
content-type: image/webp
etag: "2f39f17722d9405be32b1514e53a9d61"
last-modified: Tue, 10 Mar 2020 07:16:18 GMT
content-length: 20808
date: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent
x-content-type-options: nosniff
server-timing: akam;dur=4;start=2023-02-09T04:22:38.846Z;desc=hit,rtt;dur=2
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TBJR4HF
142.250.74.168200 OK 60 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TBJR4HF
IP 142.250.74.168:0
File type ASCII text, with very long lines (58921)
Hash 07d34edbc596789cd007ef11d8a44d7a
19daf9adb4974c6fbca1c075f2cec88d24682a51
8622d567d3e49a589034fb191945b32d505c053932a4fba509b636a483335f8e
GET /gtm.js?id=GTM-TBJR4HF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 Feb 2023 04:22:38 GMT
expires: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, max-age=900
last-modified: Thu, 09 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 60489
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/95522b61-fd16-42ed-b951-557c90e89ac0/217389369/iobit-software-updater-icon.png
104.110.18.102200 OK 2.6 kB URL HTTP/2 sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/95522b61-fd16-42ed-b951-557c90e89ac0/217389369/iobit-software-updater-icon.png
IP 104.110.18.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b7f6c54eacbfe90dadd0ad83132a6423
c614998f87204e9c38313c121fcbdede8e375e6e
f4b2a1cf9ba24d5e02c0085e1edba7b9bc9766a1366da3ca4f1da51fd7f7ae33
GET /images/t_app-logo-l,f_auto,dpr_auto/p/95522b61-fd16-42ed-b951-557c90e89ac0/217389369/iobit-software-updater-icon.png HTTP/1.1
Host: sc.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-disposition: inline; filename="217389369.webp"
content-type: image/webp
etag: "b7f6c54eacbfe90dadd0ad83132a6423"
last-modified: Wed, 02 Oct 2019 15:22:34 GMT
content-length: 2552
date: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,DPR,Sec-CH-DPR
content-dpr: 1
x-content-type-options: nosniff
server-timing: akam;dur=3;start=2023-02-09T04:22:38.849Z;desc=hit,rtt;dur=2
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.44.161101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.44.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Js7M68sf0Av3YH3yRycEfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WDd2ydIwiNrGHyeRBVZgaHNCcvI=
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b05cb8239b4a239b3416446e12b7cca3
08df75f773a174ab9676360ca0f396a01801a33e
14a30bb259c8e74658b7027391330116042f25a52e556b6879e662f82521e764
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3803
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:38 GMT
Last-Modified: Thu, 09 Feb 2023 03:19:15 GMT
Server: ECS (amb/6BA6)
X-Cache: HIT
Content-Length: 279
sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/c3152528-96bf-11e6-b8e7-00163ed833e7/3833258526/winrar-64-icon.png
104.110.18.102200 OK 1.2 kB URL HTTP/2 sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/c3152528-96bf-11e6-b8e7-00163ed833e7/3833258526/winrar-64-icon.png
IP 104.110.18.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 783902a25db0021fed5dafa78acf030d
2c69a5e0df3f9444ddfdcd1de9b955b89e00e4dd
66972fb4ab15e00b897cfba41c44841255067b0431493ccdbd64d037319cd8cd
GET /images/t_app-logo-l,f_auto,dpr_auto/p/c3152528-96bf-11e6-b8e7-00163ed833e7/3833258526/winrar-64-icon.png HTTP/1.1
Host: sc.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="3833258526.webp"
content-type: image/webp
etag: "783902a25db0021fed5dafa78acf030d"
last-modified: Mon, 08 Feb 2021 14:57:18 GMT
content-length: 1246
date: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,DPR,Sec-CH-DPR
content-dpr: 1
x-content-type-options: nosniff
server-timing: akam;dur=4;start=2023-02-09T04:22:38.941Z;desc=hit,rtt;dur=2
X-Firefox-Spdy: h2
sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/b3562592-96bf-11e6-ba7b-00163ec9f5fa/626022028/winrar-32-icon.png
104.110.18.102200 OK 1.7 kB URL HTTP/2 sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/b3562592-96bf-11e6-ba7b-00163ec9f5fa/626022028/winrar-32-icon.png
IP 104.110.18.102:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Hash 224420990df7781a6b58f98f2e50797b
77c72df9d4e079ca3a02bfa434303b6322424a75
07ed58434f885db08c61434cfdc14f453a775c72e1c57de2d41113a2d9dc28e3
GET /images/t_app-logo-l,f_auto,dpr_auto/p/b3562592-96bf-11e6-ba7b-00163ec9f5fa/626022028/winrar-32-icon.png HTTP/1.1
Host: sc.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "224420990df7781a6b58f98f2e50797b"
last-modified: Fri, 20 Sep 2019 11:19:44 GMT
content-length: 1659
date: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,DPR,Sec-CH-DPR
content-dpr: 1
x-content-type-options: nosniff
server-timing: akam;dur=4;start=2023-02-09T04:22:38.943Z;desc=hit,rtt;dur=2
X-Firefox-Spdy: h2
sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/ba11145a-96bf-11e6-8b84-00163ed833e7/3601702069/ccleaner-unnamed.png
104.110.18.102200 OK 1.9 kB URL HTTP/2 sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/ba11145a-96bf-11e6-8b84-00163ed833e7/3601702069/ccleaner-unnamed.png
IP 104.110.18.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3ca7109a8bc158caa127e02be0109df6
20c5d38e8a832f2e6c9f7ed2db2a4d06e095bd9f
9d3f8c3806a08e41746b52cda10d94d4801d6683aa4283d7a177dd3945f8ad10
GET /images/t_app-logo-l,f_auto,dpr_auto/p/ba11145a-96bf-11e6-8b84-00163ed833e7/3601702069/ccleaner-unnamed.png HTTP/1.1
Host: sc.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="3601702069.webp"
content-type: image/webp
etag: "3ca7109a8bc158caa127e02be0109df6"
last-modified: Mon, 13 Sep 2021 07:54:24 GMT
content-length: 1902
date: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,DPR,Sec-CH-DPR
content-dpr: 1
x-content-type-options: nosniff
server-timing: akam;dur=4;start=2023-02-09T04:22:38.943Z;desc=hit,rtt;dur=2
X-Firefox-Spdy: h2
sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/3a1971f2-96d3-11e6-9603-00163ec9f5fa/3985225725/teracopy-logo
104.110.18.102200 OK 1.6 kB URL HTTP/2 sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/3a1971f2-96d3-11e6-9603-00163ec9f5fa/3985225725/teracopy-logo
IP 104.110.18.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2497f01584661ecfca6f75aa263aa97e
8b141dd63e8b741d85bfd7b479ba16f7fb765083
4e8db4468627534162311cf18bc0f7a0ec6466646315455837012870f6a9e8b7
GET /images/t_app-logo-l,f_auto,dpr_auto/p/3a1971f2-96d3-11e6-9603-00163ec9f5fa/3985225725/teracopy-logo HTTP/1.1
Host: sc.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="3985225725.webp"
content-type: image/webp
etag: "2497f01584661ecfca6f75aa263aa97e"
last-modified: Wed, 21 Jul 2021 12:19:22 GMT
content-length: 1644
date: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,DPR,Sec-CH-DPR
content-dpr: 1
x-content-type-options: nosniff
server-timing: akam;dur=4;start=2023-02-09T04:22:38.943Z;desc=hit,rtt;dur=2
X-Firefox-Spdy: h2
sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/6077c162-9b35-11e6-8b8b-00163ed833e7/3464668419/driverpack-solution-online-logo.jpg
104.110.18.102200 OK 2.7 kB URL HTTP/2 sc.filehippo.net/images/t_app-logo-l,f_auto,dpr_auto/p/6077c162-9b35-11e6-8b8b-00163ed833e7/3464668419/driverpack-solution-online-logo.jpg
IP 104.110.18.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f801e323928beab903efc2c90a59c317
887b0c0210b3bdb8f2e867c535ac6b203558ccea
daa02f0355569be4bb0ae2a6a40313b272ef204048d6b4d256836f8bd8f5f6a9
GET /images/t_app-logo-l,f_auto,dpr_auto/p/6077c162-9b35-11e6-8b8b-00163ed833e7/3464668419/driverpack-solution-online-logo.jpg HTTP/1.1
Host: sc.filehippo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="3464668419.webp"
content-type: image/webp
etag: "f801e323928beab903efc2c90a59c317"
last-modified: Tue, 28 Jul 2020 08:53:39 GMT
content-length: 2690
date: Thu, 09 Feb 2023 04:22:38 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,DPR,Sec-CH-DPR
content-dpr: 1
x-content-type-options: nosniff
server-timing: akam;dur=4;start=2023-02-09T04:22:38.943Z;desc=hit,rtt;dur=2
X-Firefox-Spdy: h2
widgets.outbrain.com/outbrain.js
23.38.201.81200 OK 76 kB URL HTTP/2 widgets.outbrain.com/outbrain.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (1595)
Hash 87fbc2ff7480b937c1bdc67a4a6f6f5b
765a981227f6b29ebebcbe672ff66b3cdc243cc6
844ba2ba389a0aa534722f633524715c92fccda3e97ce1a6de71cbcb1e4427ec
GET /outbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 76213
x-traceid: 73703b211d49829dbf8f10f1db9f86b5
etag: "2a-I6dHUhQKtsF8ye+DuWINJulxDhs"
last-modified: Wed, 08 Feb 2023 14:49:26 GMT
cache-control: max-age=14400
content-encoding: gzip
vary: Accept-Encoding
date: Thu, 09 Feb 2023 04:22:39 GMT
edge-cache-tag: widget-cheetah
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (39284)
Hash 711e72965d85abfbaa8f7f25e728e605
ba46b7f76230e98a81315bcafa66eed7c735b408
71bbce95ea15f51ca0b8c5a5122183d1010e68dc7ba0d58802b609eed3961581
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27228
date: Thu, 09 Feb 2023 04:22:39 GMT
expires: Thu, 09 Feb 2023 04:22:39 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1477 / 49 of 1000 / last-modified: 1675897496"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9efc8115115d588a1955af8f4749d35a
67b70e3a6c7e70e569604e493617d0811687c8b7
8ce1e7720665a6b86de7c9f3aa624d797c7b9aae707ee4004c075c82fb4bf6b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2480
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Last-Modified: Thu, 09 Feb 2023 03:41:19 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
cdn-magiclinks.trackonomics.net/client/static/v2/softonic_b11d2_filehippo.js
54.230.111.75200 OK 20 kB URL HTTP/2 cdn-magiclinks.trackonomics.net/client/static/v2/softonic_b11d2_filehippo.js
IP 54.230.111.75:0
Hash bc00c6a3e7cf44480e4733f8ca5aef15
e36306be5f6cd414ecdd264e0c2f318c99bdc1ea
3bc7020122ab91787320c216dbde6b42db87980498fda7fd86b2b3dfdc8ad538
GET /client/static/v2/softonic_b11d2_filehippo.js HTTP/1.1
Host: cdn-magiclinks.trackonomics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
date: Wed, 08 Feb 2023 06:22:42 GMT
etag: W/"1101e-5dbe82fc8689c"
last-modified: Tue, 05 Apr 2022 13:26:04 GMT
server: Apache/2.4.34 (Amazon) OpenSSL/1.0.2k-fips PHP/7.2.8
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GeeY9dcM9XiCg1KkYCYip8sTlCX1K6wizshSIx6cs3GK5tg4iTwBiQ==
age: 79196
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d09192b0325fc351f837998af0ec0859
9a2e9bd3eafa7a522727e29908c1576e7d256a87
def6f8c8083625ad72cb4a4e93336979b5ab7d0181031f639c3abc3f5b63ef99
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3741
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Last-Modified: Thu, 09 Feb 2023 03:20:18 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6f0be0babef37c0201e47753fc7c29c1
44f071bdd5cb3c9d3f6cb73bc8b276693e44aa99
c65077b03efc65abb9c1f13613722298497f1e3a7ca14d06a5d0e743e4c6b9f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6103
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Last-Modified: Thu, 09 Feb 2023 02:40:56 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f95954fb8e9a2f39aa269630bce35389
2d7303fc48dc3b2b3b7ad54b22445e70b2fd830b
30c4552f2b8f730b763d7cf018f7fb0db2350ee289d4d240df3a5d46f6183719
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5282
Cache-Control: max-age=158806
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Etag: "63e429c3-116"
Expires: Sat, 11 Feb 2023 00:29:25 GMT
Last-Modified: Wed, 08 Feb 2023 23:01:23 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 7be1d8bc7bd8dd840fe6fb8dddcf9a1b
a68887a90771301f0c0830107e173d79ef1be3e6
49f3004a94e27e95adb7d901fc34063e93542a4c5334fc0aa9d6df89f38cbf44
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119817
Date: Thu, 09 Feb 2023 04:22:39 GMT
Etag: "63e39d1e-1d7"
Expires: Fri, 10 Feb 2023 13:39:36 GMT
Last-Modified: Wed, 08 Feb 2023 13:01:18 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vucizd-HTLsAzWN5f9dDW9-MJI81M6yOmpIAMsOCtkW_hgCsjE8mcg==
Age: 2298
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9efc8115115d588a1955af8f4749d35a
67b70e3a6c7e70e569604e493617d0811687c8b7
8ce1e7720665a6b86de7c9f3aa624d797c7b9aae707ee4004c075c82fb4bf6b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2480
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Last-Modified: Thu, 09 Feb 2023 03:41:19 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2421
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://filehippo.com
cache-control: no-cache, no-store, must-revalidate
date: Thu, 09 Feb 2023 04:22:39 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contributor.google.com/scripts/807037fac4e803f4/loader.js
216.58.211.14200 OK 0 B URL HTTP/2 contributor.google.com/scripts/807037fac4e803f4/loader.js
IP 216.58.211.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripts/807037fac4e803f4/loader.js HTTP/1.1
Host: contributor.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorContributorHttp/cspreport, script-src 'report-sample' 'nonce-XMI5YEItssq0YQYf2sMC1g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorContributorHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorContributorHttp/cspreport/allowlist
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
date: Wed, 08 Feb 2023 13:32:56 GMT
expires: Thu, 08 Feb 2024 13:32:56 GMT
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
age: 53383
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 9f893ebf3b9674261f6a292a34bc4718
9888f824ccac9b0c688f163eacaf076a486c9ec7
be728f13b11a289556d0fb308421b7b3accd72bc782972097564511fec6bf272
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 04:22:39 GMT
Last-Modified: Thu, 09 Feb 2023 03:10:22 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Z9dE0ylqJ7CsLwkfCug9JDQIsPmvA8A0p_8qlWhRtOsJ1nIWCDhfMA==
Age: 4337
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 59c75b98906781e715d924acbefb211c
4367283440ca600f5e9533f3af9514dcdd7a5a3c
264c11d4976303a08f02b399662d95b068ec9075229ff06386b3775fe9d5f045
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5933
Cache-Control: max-age=109762
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Etag: "63e367a4-116"
Expires: Fri, 10 Feb 2023 10:52:01 GMT
Last-Modified: Wed, 08 Feb 2023 09:13:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 59c75b98906781e715d924acbefb211c
4367283440ca600f5e9533f3af9514dcdd7a5a3c
264c11d4976303a08f02b399662d95b068ec9075229ff06386b3775fe9d5f045
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5952
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Last-Modified: Thu, 09 Feb 2023 02:43:27 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
btloader.com/tag?o=5633429348548608&upapi=true
104.26.7.139200 OK 6.8 kB URL HTTP/2 btloader.com/tag?o=5633429348548608&upapi=true
IP 104.26.7.139:0
File type ASCII text, with very long lines (17212)
Hash 2190b6af6b88b087437ab1679a671987
1a4192d3b024c6caa7695b281fa4178b545e2128
b347a40130ed563e739e74f9f83a65b6ac58559b6cf130813072a1cb1a3c15fb
GET /tag?o=5633429348548608&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:39 GMT
content-type: application/javascript
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
etag: W/"a93cd6484d200d14671ee98a8ec0f761"
last-modified: Thu, 09 Feb 2023 03:52:32 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 1627
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nnMn6sMac%2Bjt6AaU8jeIrcWsXK5yjifjvaTlzoaaNz1ADOBo%2B6DYekGAZkxTFndNigYnMfY8bMP2XmSwt1B7XHTA6cCz5hyxTB6sRIzB%2BYYezD8SiNAW66bbPF8DQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7969d33fbb2fb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
htlb.casalemedia.com/cygnus?s=805161&v=7.2&ac=j&sd=1&sn=0&r=%7B%22id%22%3A%22109bba12db27fbd8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A33%2C%22msi%22%3A33%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.23.0%22%2C%22userIds%22%3A%5B%5D%2C%22err%22%3A%7B%224%22%3A1%7D%2C%22sn%22%3A0%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2212d60d5bb804245%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805161%22%2C%22sid%22%3A%22728x90%22%7D%7D%2C%7B%22w%22%3A468%2C%22h%22%3A60%2C%22ext%22%3A%7B%22siteID%22%3A%22805161%22%2C%22sid%22%3A%22468x60%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2213d80cee7370977%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2214e654682d4aa498%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%22159365c39303f048%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2216c0fba4303beb2%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22180x150%22%7D%7D%5D%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22softonic.com%22%2C%22sid%22%3A%22350002%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D
104.18.33.19200 OK 4.8 kB URL HTTP/2 htlb.casalemedia.com/cygnus?s=805161&v=7.2&ac=j&sd=1&sn=0&r=%7B%22id%22%3A%22109bba12db27fbd8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A33%2C%22msi%22%3A33%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.23.0%22%2C%22userIds%22%3A%5B%5D%2C%22err%22%3A%7B%224%22%3A1%7D%2C%22sn%22%3A0%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2212d60d5bb804245%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805161%22%2C%22sid%22%3A%22728x90%22%7D%7D%2C%7B%22w%22%3A468%2C%22h%22%3A60%2C%22ext%22%3A%7B%22siteID%22%3A%22805161%22%2C%22sid%22%3A%22468x60%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2213d80cee7370977%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2214e654682d4aa498%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%22159365c39303f048%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2216c0fba4303beb2%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22180x150%22%7D%7D%5D%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22softonic.com%22%2C%22sid%22%3A%22350002%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D
IP 104.18.33.19:0
File type JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (7650), with no line terminators
Hash 57ed1b1864034c8e458fc2bd11f232ad
2b607adc5c7bffc396d4fcc8970dcf0a1222f722
6fa39c1324e7034d87bb95998711de949414e154cd212fd82297cd76d1c3c9fc
GET /cygnus?s=805161&v=7.2&ac=j&sd=1&sn=0&r=%7B%22id%22%3A%22109bba12db27fbd8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A33%2C%22msi%22%3A33%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.23.0%22%2C%22userIds%22%3A%5B%5D%2C%22err%22%3A%7B%224%22%3A1%7D%2C%22sn%22%3A0%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2212d60d5bb804245%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805161%22%2C%22sid%22%3A%22728x90%22%7D%7D%2C%7B%22w%22%3A468%2C%22h%22%3A60%2C%22ext%22%3A%7B%22siteID%22%3A%22805161%22%2C%22sid%22%3A%22468x60%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2213d80cee7370977%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805164%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2214e654682d4aa498%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805170%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%22159365c39303f048%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22180x150%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22160x600%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805171%22%2C%22sid%22%3A%22120x600%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%2216c0fba4303beb2%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x600%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A250%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22250x250%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x150%22%7D%7D%2C%7B%22w%22%3A200%2C%22h%22%3A200%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22200x200%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A180%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22300x180%22%7D%7D%2C%7B%22w%22%3A180%2C%22h%22%3A150%2C%22ext%22%3A%7B%22siteID%22%3A%22805172%22%2C%22sid%22%3A%22180x150%22%7D%7D%5D%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22softonic.com%22%2C%22sid%22%3A%22350002%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:39 GMT
content-type: application/json
cf-ray: 7969d33efdd7b529-OSL
access-control-allow-origin: https://filehippo.com
cache-control: no-cache
expires: 0
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wFW6TcobLo%2F7tkFv%2BKpcFl%2BWtZ2Wj0FKEcRyeHZxC56XBotVS4KO2xg5z7qsv%2FM0pLny5jQnGO%2FmBHUcnKot3apAD08LQwJEmEkX8IP8IPmrseALnLg86eqh1He26eMKbGaSsKVc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ad.360yield.com/pb
52.58.142.102204 No Content 0 B IP 52.58.142.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 995
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 09 Feb 2023 04:22:39 GMT
access-control-allow-origin: https://filehippo.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tlx.3lift.com/header/auction?lib=prebid&v=6.23.0&referrer=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&tmax=1000&gdpr=false
52.57.150.106200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=6.23.0&referrer=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&tmax=1000&gdpr=false
IP 52.57.150.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=6.23.0&referrer=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&tmax=1000&gdpr=false HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 947
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:39 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-prefers-color-scheme,sec-ch-width,sec-ch-ect,user-agent,sec-ch-downlink,sec-ch-ua-mobile,sec-ch-save-data,sec-ch-device-memory,sec-ch-dpr,sec-ch-ua-full-version,sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-viewport-width,sec-ch-ua-platform,sec-ch-viewport-height,sec-ch-rtt,sec-ch-ua-arch,sec-ch-ua,sec-ch-ua-bitness
x-auction-status: 5, 29, 29
access-control-allow-origin: https://filehippo.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash da196d5448d94d4ea01c60e376ea45d3
e5b44a8dd420d01556dd63b197ffa7c31fa97a8c
ce702f36a851f9a3c239053fff2dbcbc7d36759971df0965d8e68932f93bff7f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 04:22:39 GMT
Last-Modified: Thu, 09 Feb 2023 02:46:11 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 43-sudBIiNLxDLhh2jzk6G6esgNIazsDU2ptTUEdkEdf9Fq9595vmA==
Age: 5788
ib.adnxs.com/ut/v3/prebid
37.252.171.52200 OK 15 kB URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.52:0
File type JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43318), with no line terminators
Hash 79d5bdd53aec4ba79473f85059939177
f64bcf730a80a69c023d9179a0d61f8f6fb01f07
ae7fab944fd89f6c630eb1019661fe1f5a696090c57b9f1a7b7fd8437a910371
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2737
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 09 Feb 2023 04:22:39 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://filehippo.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 12ef1363-d359-4f48-8ec0-5158c99aab6d
Set-Cookie: icu=ChgIjZRvEAoYASABKAEwj-qRnwY4AUABSAEQj-qRnwYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 10-May-2023 04:22:39 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=9215086503548178407; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 10-May-2023 04:22:39 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
hb.yellowblue.io/hb-multi
35.175.157.122200 OK 64 B URL HTTP/2 hb.yellowblue.io/hb-multi
IP 35.175.157.122:0
File type JSON data\012- , ASCII text
Hash cf956dfa921d7ce74c65058209d10ad3
f44f74bbd6abc3351852174eae5f2f5fefe69063
85e890712df38ef572a7c8b86938ce3f2926bb3ae4ee7bba197b99f46a8a9767
POST /hb-multi HTTP/1.1
Host: hb.yellowblue.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3093
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:39 GMT
content-type: application/json
content-length: 64
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://filehippo.com
x-reason: unsupported org
X-Firefox-Spdy: h2
widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
23.38.201.81200 OK 43 B URL HTTP/2 widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
IP 23.38.201.81:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /widget/detect/px.gif?ch=1 HTTP/1.1
Host: widget-pixels.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 43
content-type: image/gif
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3:1601475749.911431"
last-modified: Wed, 30 Sep 2020 14:22:29 GMT
server: AkamaiNetStorage
cache-control: max-age=2592000
expires: Sat, 11 Mar 2023 04:22:39 GMT
date: Thu, 09 Feb 2023 04:22:39 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010156/module/notOutbrain.js
23.38.201.81200 OK 21 B URL HTTP/2 widgets.outbrain.com/nanoWidget/2010156/module/notOutbrain.js
IP 23.38.201.81:0
File type very short file (no magic)
Hash b9afc501fc43fbea335a2dc5d43263a1
7290a2dd6afbf39ecfc35b52dfb32a38fc222994
d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
GET /nanoWidget/2010156/module/notOutbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Origin: https://filehippo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "68b329da9893e34099c7d8ad5cb9c940:1675872512.125682"
last-modified: Wed, 08 Feb 2023 14:48:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 21
cache-control: max-age=604800
expires: Thu, 16 Feb 2023 04:22:39 GMT
date: Thu, 09 Feb 2023 04:22:39 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=3177&u=https%3A%2F%2Ffilehippo.com
54.230.111.210200 OK 470 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3177&u=https%3A%2F%2Ffilehippo.com
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with very long lines (470), with no line terminators
Hash f2a9c3b6883d9e09d8017950c371bb4a
9770468d80e5628cf4bdf14b310460a2ed8551a0
8117ea09b5caab594dd88ba8826f107ef9f3a5f91e36b1f89672b03dc33ae48e
GET /cdn/prod/config?src=3177&u=https%3A%2F%2Ffilehippo.com HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 470
access-control-allow-origin: https://filehippo.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Thu, 09 Feb 2023 02:28:24 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ebj-oUHMUaIZ_gXTE4VMUA19yBPMIKY9sy3K1igLqoniKLvC-fZM1g==
age: 6854
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 09 Feb 2023 03:44:09 GMT
expires: Thu, 09 Feb 2023 05:44:09 GMT
cache-control: public, max-age=7200
age: 2310
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash f30ebb7855430e77d7f7e78185824905
f833d3fbb268c2d0b289b8af527a13ea6ab3535d
ecf61ddf953eab9c7889a0b5e697364bed9f8fee9f7be3c3d13258542c858354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tcheck.outbrainimg.com/tcheck/check/ZmlsZWhpcHBvLmNvbQ==
23.38.201.176200 OK 15 B URL HTTP/1.1 tcheck.outbrainimg.com/tcheck/check/ZmlsZWhpcHBvLmNvbQ==
IP 23.38.201.176:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 529cac05e2a53fd8794eb9e5699d9740
6b22e508bdcfbb35d24e176eefc89179212397a6
39d160e97e2bea07b0cf1c647259ffa4f0bd07069dba4e6c19a22d38b408510f
GET /tcheck/check/ZmlsZWhpcHBvLmNvbQ== HTTP/1.1
Host: tcheck.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 15
X-TraceId: c5dd818739e4dce721a1f65405acf469
ETag: W/"f-ayLlCL3PuzXSThdu78iReSEjl6Y"
Cache-Control: max-age=33765
Expires: Thu, 09 Feb 2023 13:45:24 GMT
Date: Thu, 09 Feb 2023 04:22:39 GMT
Connection: keep-alive
Access-Control-Max-Age: 43200
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
216.58.207.230200 OK 104 B URL HTTP/2 ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
IP 216.58.207.230:0
File type MS Windows icon resource - 2 icons, 16x16, 16 colors, 32x32, 16 colors\012- data
Hash 32ac8a9b81788b981a3a7e13c14082d4
fbfd48a2bfe8d4247a975176f88d18c3c2ad1952
00cc7617e054596ff0aaabd8a93a9214dc5304bfe317316022dbf4fb3ea073d2
GET /favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 104
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Wed, 08 Feb 2023 15:55:01 GMT
expires: Thu, 09 Feb 2023 15:55:01 GMT
cache-control: public, max-age=86400
age: 44858
last-modified: Tue, 08 May 2012 13:08:06 GMT
content-type: image/x-icon
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j99&a=515512479&t=pageview&_s=1&dl=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&ul=en-us&de=UTF-8&dt=Download%20IObit%20Software%20Updater%204.5.1.257%20for%20Windows%20-%20Filehippo.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YGBAgAAB~&jid=507044115&gjid=780779942&cid=216330145.1675916617&tid=UA-136699015-1&_gid=912663559.1675916617>m=45He3280n81TBJR4HF&cd1=%2Fprogram_page&cd2=windows&cd3=tuning-utilities&cd5=95522b61-fd16-42ed-b951-557c90e89ac0&cd6=IObit%20Software%20Updater&cd7=free&cd8=4.5.1.257&cd9=iobit&cd10=IObit&cd11=240&cd13=no&cd14=yes&cd15=4&cd16=6&cd17=2019&cd18=riseInstaller&cd20=15a4def9-a99c-4433-8340-7e3ce033b37b&cd21=yes&z=1586642462
142.250.74.110200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j99&a=515512479&t=pageview&_s=1&dl=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&ul=en-us&de=UTF-8&dt=Download%20IObit%20Software%20Updater%204.5.1.257%20for%20Windows%20-%20Filehippo.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YGBAgAAB~&jid=507044115&gjid=780779942&cid=216330145.1675916617&tid=UA-136699015-1&_gid=912663559.1675916617>m=45He3280n81TBJR4HF&cd1=%2Fprogram_page&cd2=windows&cd3=tuning-utilities&cd5=95522b61-fd16-42ed-b951-557c90e89ac0&cd6=IObit%20Software%20Updater&cd7=free&cd8=4.5.1.257&cd9=iobit&cd10=IObit&cd11=240&cd13=no&cd14=yes&cd15=4&cd16=6&cd17=2019&cd18=riseInstaller&cd20=15a4def9-a99c-4433-8340-7e3ce033b37b&cd21=yes&z=1586642462
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=515512479&t=pageview&_s=1&dl=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&ul=en-us&de=UTF-8&dt=Download%20IObit%20Software%20Updater%204.5.1.257%20for%20Windows%20-%20Filehippo.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YGBAgAAB~&jid=507044115&gjid=780779942&cid=216330145.1675916617&tid=UA-136699015-1&_gid=912663559.1675916617>m=45He3280n81TBJR4HF&cd1=%2Fprogram_page&cd2=windows&cd3=tuning-utilities&cd5=95522b61-fd16-42ed-b951-557c90e89ac0&cd6=IObit%20Software%20Updater&cd7=free&cd8=4.5.1.257&cd9=iobit&cd10=IObit&cd11=240&cd13=no&cd14=yes&cd15=4&cd16=6&cd17=2019&cd18=riseInstaller&cd20=15a4def9-a99c-4433-8340-7e3ce033b37b&cd21=yes&z=1586642462 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Wed, 08 Feb 2023 09:06:33 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 69366
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash f30ebb7855430e77d7f7e78185824905
f833d3fbb268c2d0b289b8af527a13ea6ab3535d
ecf61ddf953eab9c7889a0b5e697364bed9f8fee9f7be3c3d13258542c858354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&gjid=780779942&_gid=912663559.1675916617&_u=YGBAgAABAAAAAE~&z=573096222
64.233.163.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&gjid=780779942&_gid=912663559.1675916617&_u=YGBAgAABAAAAAE~&z=573096222
IP 64.233.163.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&gjid=780779942&_gid=912663559.1675916617&_u=YGBAgAABAAAAAE~&z=573096222 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://filehippo.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 09 Feb 2023 04:22:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
odb.outbrain.com/utils/get?url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&idx=0&rand=16028&key=NANOWDGT01&widgetJSId=AR_1&va=true&et=true&format=html&adblck=false&abwl=false&px=24&py=2319&vpd=1380&cw=836&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010156&sig=W3yawe0u&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=1&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F
151.101.246.132200 OK 1.9 kB URL HTTP/2 odb.outbrain.com/utils/get?url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&idx=0&rand=16028&key=NANOWDGT01&widgetJSId=AR_1&va=true&et=true&format=html&adblck=false&abwl=false&px=24&py=2319&vpd=1380&cw=836&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010156&sig=W3yawe0u&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=1&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F
IP 151.101.246.132:0
Hash e4995bd5aea6a075825bcb01765d093d
1c57a0a2139b830cbf9ebf29d5e65382b078e6dd
81eaf0d2965fed0c45cd7ba84742f38eb9b5c3132d9609018c2966cd2bbda718
GET /utils/get?url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&idx=0&rand=16028&key=NANOWDGT01&widgetJSId=AR_1&va=true&et=true&format=html&adblck=false&abwl=false&px=24&py=2319&vpd=1380&cw=836&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010156&sig=W3yawe0u&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=1&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F HTTP/1.1
Host: odb.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: 7d5ed6b76abb80d541417f4a6ef59ed6
content-encoding: br
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Thu, 09 Feb 2023 04:22:39 GMT
x-served-by: cache-lga21953-LGA, cache-hel1410030-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675916560.682023,VS0,VE111
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, HEL, Europe1
content-length: 1887
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.163:0
Hash c2baf84073c7ddf37abb490adcab7a67
e252e3cb6cb21996eb19c4570f64f2fb23605985
d6f02d549684d4c4b2ffbb0145aa799df0d9d0689cc4d993ce8bc61d88c64903
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.163:0
Hash c2baf84073c7ddf37abb490adcab7a67
e252e3cb6cb21996eb19c4570f64f2fb23605985
d6f02d549684d4c4b2ffbb0145aa799df0d9d0689cc4d993ce8bc61d88c64903
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3177&u=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&pid=fZD4JwGPUbrh8&cb=0&ws=1280x939&v=23.203.336&t=2000&slots=%5B%7B%22sd%22%3A%22slide-in-program-page-desktop%22%2C%22s%22%3A%5B%22320x250%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_OOP_SlideIn%22%7D%2C%7B%22sd%22%3A%22top-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%2C%22468x60%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_Leaderboard_First%22%7D%2C%7B%22sd%22%3A%22top-mpu-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_MPU_First%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-first-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_First%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-second-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_Second%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-third-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_Third%22%7D%2C%7B%22sd%22%3A%22bottom-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%2C%22468x60%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_Leaderboard_First%22%7D%2C%7B%22sd%22%3A%22bottom-sticky-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_Leaderboard_Sticky%22%7D%5D&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D
54.230.241.131200 OK 155 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3177&u=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&pid=fZD4JwGPUbrh8&cb=0&ws=1280x939&v=23.203.336&t=2000&slots=%5B%7B%22sd%22%3A%22slide-in-program-page-desktop%22%2C%22s%22%3A%5B%22320x250%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_OOP_SlideIn%22%7D%2C%7B%22sd%22%3A%22top-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%2C%22468x60%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_Leaderboard_First%22%7D%2C%7B%22sd%22%3A%22top-mpu-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_MPU_First%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-first-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_First%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-second-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_Second%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-third-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_Third%22%7D%2C%7B%22sd%22%3A%22bottom-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%2C%22468x60%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_Leaderboard_First%22%7D%2C%7B%22sd%22%3A%22bottom-sticky-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_Leaderboard_Sticky%22%7D%5D&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 72267115039a1605d9def5b74ff3fd5d
61358798197e079b153e655a5e1eb3fcf3161cb1
34c81927bf7d93a5e6cc52bacdd014c51280704991963e0be11b8eba6eac495b
GET /e/dtb/bid?src=3177&u=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&pid=fZD4JwGPUbrh8&cb=0&ws=1280x939&v=23.203.336&t=2000&slots=%5B%7B%22sd%22%3A%22slide-in-program-page-desktop%22%2C%22s%22%3A%5B%22320x250%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_OOP_SlideIn%22%7D%2C%7B%22sd%22%3A%22top-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%2C%22468x60%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_Leaderboard_First%22%7D%2C%7B%22sd%22%3A%22top-mpu-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_MPU_First%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-first-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_First%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-second-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_Second%22%7D%2C%7B%22sd%22%3A%22bottom-mpu-third-program-page-desktop%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22250x250%22%2C%22300x150%22%2C%22200x200%22%2C%22300x180%22%2C%22180x150%22%2C%22160x600%22%2C%22120x600%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_MPU_Third%22%7D%2C%7B%22sd%22%3A%22bottom-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%2C%22468x60%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FBTF_Leaderboard_First%22%7D%2C%7B%22sd%22%3A%22bottom-sticky-leaderboard-program-page-desktop%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F5302%2C1001908%2FDesktop%2FFilehippo-Desktop-EN%2FFH-Apps%2FFH-Programpage%2FATF_Leaderboard_Sticky%22%7D%5D&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 155
server: Server
date: Thu, 09 Feb 2023 04:22:39 GMT
x-amz-rid: J4MXG44Z6A342NDASYAR
access-control-allow-origin: https://filehippo.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _wr-430rjCxkUWTwqohN7ajGO3PAI79ZR1hz-g9RxPvJ-Cwfp-DVgA==
X-Firefox-Spdy: h2
api.btloader.com/pv?tid=sTvA28HbF&w=5542329249693696&o=5633429348548608&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&sid=RtgqYQCVk&upapi=true
130.211.23.194204 No Content 0 B URL HTTP/2 api.btloader.com/pv?tid=sTvA28HbF&w=5542329249693696&o=5633429348548608&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&sid=RtgqYQCVk&upapi=true
IP 130.211.23.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=sTvA28HbF&w=5542329249693696&o=5633429348548608&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&sid=RtgqYQCVk&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Thu, 09 Feb 2023 04:22:39 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.btloader.com/country
130.211.23.194200 OK 7.5 kB IP 130.211.23.194:0
File type gzip compressed data, max compression\012- data
Hash 08ca0e430476877a63dc8f161ceefde6
7505765368bfa8bdeec8cf3b69d4413a2840d5b6
ccf6395ef364cb5c0f82176120601978b1ea6a93591ecd588d3e09ccb124ff3e
GET /country HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Origin: https://filehippo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Thu, 09 Feb 2023 04:22:39 GMT
content-length: 16
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=filehippo.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=filehippo.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=filehippo.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 09 Feb 2023 04:22:39 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=filehippo.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=filehippo.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=filehippo.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 09 Feb 2023 04:22:39 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010156/module/streamFeed.js?e=1
23.38.201.81200 OK 13 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2010156/module/streamFeed.js?e=1
IP 23.38.201.81:0
File type ASCII text, with very long lines (1562)
Hash 30bf532612dde12c13d0da10e66026c6
f87c9ca45a21dc736f172a6f9f75e1da8adb51db
e9f4d8c8d075d39174c8e0b1bf5f6874f8f9a29999e2ed868d7e057a53be1cfb
GET /nanoWidget/2010156/module/streamFeed.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "5d5244586a8da00bc01e4336acdeb9c0:1675872533.970291"
last-modified: Wed, 08 Feb 2023 14:48:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Thu, 16 Feb 2023 04:22:39 GMT
date: Thu, 09 Feb 2023 04:22:39 GMT
content-length: 12985
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.163:0
Hash c2baf84073c7ddf37abb490adcab7a67
e252e3cb6cb21996eb19c4570f64f2fb23605985
d6f02d549684d4c4b2ffbb0145aa799df0d9d0689cc4d993ce8bc61d88c64903
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 0da7b12665100e987815d709a369fa49
cea7e3be738a7c648c1f80febde8a27d5739b267
836778ca555c1ed182ee9fbe2dc1bc672f8d004efec182e612cb4dca85bcbd49
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1548
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Last-Modified: Thu, 09 Feb 2023 03:56:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&_u=YGBAgAABAAAAAE~&z=416609069
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&_u=YGBAgAABAAAAAE~&z=416609069
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&_u=YGBAgAABAAAAAE~&z=416609069 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 04:22:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18185
Expires: Thu, 09 Feb 2023 09:25:45 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
acc7da5645131096152efe10a98ef58e.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 acc7da5645131096152efe10a98ef58e.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: acc7da5645131096152efe10a98ef58e.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Thu, 09 Feb 2023 04:22:40 GMT
expires: Fri, 09 Feb 2024 04:22:40 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&_u=YGBAgAABAAAAAE~&z=416609069
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&_u=YGBAgAABAAAAAE~&z=416609069
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-136699015-1&cid=216330145.1675916617&jid=507044115&_u=YGBAgAABAAAAAE~&z=416609069 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 04:22:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90107713-2512-413b-bb6c-0156521b403c.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90107713-2512-413b-bb6c-0156521b403c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 113363afa7cfd484dbc115a9f44c1723
2f9dfb845aa919a51a0b5fa9a824ac4845f669be
a91a045600ef2fdebd582ce453a85f7ce0c9f8be7258baf311d0d940de027c20
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90107713-2512-413b-bb6c-0156521b403c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4308
x-amzn-requestid: 2d4ce596-9a69-4394-8e10-cd5c54687a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzKZ0F2DoAMF6nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddf10b-6c4fabe01360b8781bdd8e06;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 05:45:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GnbG_CYddidhGlygFinwMyN81eHxP_vRzxsm7QBIAJzFqwaKTt-POQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:44 GMT
age: 24476
etag: "2f9dfb845aa919a51a0b5fa9a824ac4845f669be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18185
Expires: Thu, 09 Feb 2023 09:25:45 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10fd2f55fa0cfb8616ded6ddc2bb511a
996ed68f1b9770a19a97f6c8d359e338b8c8b3ca
e552d31a5e531386b9830bb58486f09bfcb3400676f726f93fdbea08336a09da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 658f8678-b67d-4f98-b728-cf9cbad3aa86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ABI38GUpIAMFY0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e38832-2ab19d0f2345fc7515775298;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 11:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8ZayLRkBd16PmZsswU0N4ZLVFphVFlgPRloMdqF_U6WMcyvZptmpA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:45:46 GMT
etag: "996ed68f1b9770a19a97f6c8d359e338b8c8b3ca"
content-type: image/jpeg
age: 23814
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18185
Expires: Thu, 09 Feb 2023 09:25:45 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18185
Expires: Thu, 09 Feb 2023 09:25:45 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18185
Expires: Thu, 09 Feb 2023 09:25:45 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb92005b3-7a69-411c-9afb-60b86ab8c5da.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb92005b3-7a69-411c-9afb-60b86ab8c5da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0c5e12696e3ee13041d043084828210
c48927fb23f59e0949d388086c197699c8f19d1b
47838e958555ff6799d4d1d3994913943726daba5294cd89afe9036628ef6fdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb92005b3-7a69-411c-9afb-60b86ab8c5da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: fa797448-32c3-4438-a192-5291c48b1d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AChJKFq9oAMFgog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e4156d-46ff32923a2763b45a5194f4;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2olwTLHKbCas7GcQiRz22bk_I646VcTxN3Yv_ObBVgeGC0l73GNh8A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:37 GMT
etag: "c48927fb23f59e0949d388086c197699c8f19d1b"
content-type: image/jpeg
age: 24483
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&settings=true&recs=true&widgetJSId=AR_1&key=NANOWDGT01&version=2010156&apv=false&sig=W3yawe0u&format=html&rand=22090&osLang=en-US&seid=null&va=true&et=true&cmpStat=1&ccpaStat=0&scrW=1280&scrH=1024&t=MTg0NmVjYjhmMjQ5Njg2YjBlMDdmNmE4NmNmM2UyODI=&winW=1268&winH=939&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=836&activeTab=true&ogn=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&obRecsAbtestVars=1174:3820&chs=1
151.101.246.132200 OK 1.9 kB URL HTTP/2 mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&settings=true&recs=true&widgetJSId=AR_1&key=NANOWDGT01&version=2010156&apv=false&sig=W3yawe0u&format=html&rand=22090&osLang=en-US&seid=null&va=true&et=true&cmpStat=1&ccpaStat=0&scrW=1280&scrH=1024&t=MTg0NmVjYjhmMjQ5Njg2YjBlMDdmNmE4NmNmM2UyODI=&winW=1268&winH=939&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=836&activeTab=true&ogn=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&obRecsAbtestVars=1174:3820&chs=1
IP 151.101.246.132:0
Hash e149118269e10d801d4847f61867208f
728bf6d27a4cbff8c38ea338c7fd3c7956473c32
c135feb953b2bfe46f4e71a6c0dbc6e51cb6fbe968b9377131ba264d326d67ba
GET /Multivac/api/get?url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&settings=true&recs=true&widgetJSId=AR_1&key=NANOWDGT01&version=2010156&apv=false&sig=W3yawe0u&format=html&rand=22090&osLang=en-US&seid=null&va=true&et=true&cmpStat=1&ccpaStat=0&scrW=1280&scrH=1024&t=MTg0NmVjYjhmMjQ5Njg2YjBlMDdmNmE4NmNmM2UyODI=&winW=1268&winH=939&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=836&activeTab=true&ogn=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&obRecsAbtestVars=1174:3820&chs=1 HTTP/1.1
Host: mv.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: c7fbc703d59abbdb7bee4eb3811f64b5
content-encoding: br
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Thu, 09 Feb 2023 04:22:40 GMT
x-served-by: cache-lga13620-LGA, cache-hel1410030-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675916560.047746,VS0,VE126
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, HEL, Europe1
content-length: 1925
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F718f24db-3c28-422f-953f-730a3ae78cb5.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F718f24db-3c28-422f-953f-730a3ae78cb5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 28ae39b238f62d6c0aee7bb16ff863d5
3c2247e40747c3ca72dd7877facee9a9fecf0f59
c530ba92455ea45e14410f497d2df04cc1321e2937cc7e81aa75f4fc14206a7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F718f24db-3c28-422f-953f-730a3ae78cb5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3014
x-amzn-requestid: bec40915-584b-48fc-94c2-293e96567474
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AChJKGrGoAMFelg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e4156d-2250ff00772341353151dd34;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lmJxNCnPKUD5O4HCWIjqeVaanXL50KZ60Xu1iOC6bisRBDJNkVXvww==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:37 GMT
etag: "3c2247e40747c3ca72dd7877facee9a9fecf0f59"
content-type: image/jpeg
age: 24483
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 764b732e88dd1e9c1824529b24b3dffc
2ba954a51c2972b267ae0536e343e608aa9aa7f4
a1efdf03b14bb05cf8e407b92476592c35fa2d27c5e66705322abdb4c6412a06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8150
x-amzn-requestid: 3834493a-4162-4cc9-b67c-541cc9be895b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwD8IH0TIAMFWqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb380-3746ff7b0a6894366efa848e;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:10:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I3qmC4D6qdsheK8VO3oKbPDU7XV1r9_XEPMcExKnvATDkVUsJHjHbg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 09 Feb 2023 01:59:42 GMT
age: 8578
etag: "2ba954a51c2972b267ae0536e343e608aa9aa7f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b11f9f70f5e8af4de6d9fc5b9f50ccbe
753cb08c3f8c7c0750d113253790a08db01986bc
d4b77ba995ea274fd169fc9bc66919b23e72a8edb88d6184bf3d7f3ab398c645
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11036
x-amzn-requestid: 4bd4976c-9500-4d6d-a447-dd2873987d13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswexHCYIAMFzag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-61d430202cbbf52823f38c49;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1mDt4mKlkZG2_zBPhwB_lbzJ0Im0FlnjmJMa7gcopuv14gwqtwlA2w==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:37 GMT
age: 24483
etag: "753cb08c3f8c7c0750d113253790a08db01986bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b39e9b23d29a98eff34416a616ba37f5
bdc9129409a52c7da406b0a0bf6067b936a446dc
2329a603d135a67a020b3f1f94be7ffb9ad0b3afbd4a33a6e85d9ef1d053f4cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2329A603D135A67A020B3F1F94BE7FFB9AD0B3AFBD4A33A6E85D9EF1D053F4CD"
Last-Modified: Tue, 07 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3698
Expires: Thu, 09 Feb 2023 05:24:18 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b39e9b23d29a98eff34416a616ba37f5
bdc9129409a52c7da406b0a0bf6067b936a446dc
2329a603d135a67a020b3f1f94be7ffb9ad0b3afbd4a33a6e85d9ef1d053f4cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2329A603D135A67A020B3F1F94BE7FFB9AD0B3AFBD4A33A6E85D9EF1D053F4CD"
Last-Modified: Tue, 07 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3698
Expires: Thu, 09 Feb 2023 05:24:18 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
rock.defybrick.com/placement_invocation?id=65349&idx=0
54.230.111.61200 OK 18 kB URL HTTP/2 rock.defybrick.com/placement_invocation?id=65349&idx=0
IP 54.230.111.61:0
File type ASCII text, with very long lines (49039), with no line terminators
Hash 449a423abeac702cfd7368c5a1ba9822
06ebb32e04680d68e383016ff6b6eb6e326a0a61
4a2f633ca7a84b09da778fcb97cb91163af9ca231efdb0cda7875398c472b040
GET /placement_invocation?id=65349&idx=0 HTTP/1.1
Host: rock.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 18460
content-encoding: gzip
etag: "bf8f-sbLSqLgrhMmD0M6HbtAQ/QtX6WE"
server: Caddy
cache-control: max-age=43200
date: Wed, 08 Feb 2023 21:11:19 GMT
expires: Thu, 09 Feb 2023 09:11:19 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e7QFnbdYCN1zacPKU6-Nzgc6kbqKwNnxSAXp_FhiGjwAUc-JCRhjnA==
age: 25881
X-Firefox-Spdy: h2
lb.eu-1-id5-sync.com/lb/v1
162.19.138.83200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e48f8db29f91cb69f99ecebcdeab95d0
ebac96127816d505cb952ca85efb0bdab4e45afd
969d6dad7a147165897b42f990b5023c0e47550ea14ffaceca5363f800c2367d
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://filehippo.com
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 09 Feb 2023 04:22:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
lbs.eu-1-id5-sync.com/lbs/v1
141.95.98.65200 OK 34 B URL HTTP/1.1 lbs.eu-1-id5-sync.com/lbs/v1
IP 141.95.98.65:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 98ff5b8badabdfb9737c7f4665d408e0
c6ee855fe44ced7eb2f6c8455b0b14252fae7a5b
338d7c4787653a6c8232c13a71cee2f62327a4a326d5930680c205d857097470
GET /lbs/v1 HTTP/1.1
Host: lbs.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 9 Feb 2023 04:22:40 GMT
access-control-allow-origin: https://filehippo.com
vary: Origin
content-type: application/json
content-length: 34
strict-transport-security: max-age=63072000; includeSubDomains; preload
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=gg_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_smrt_3lift
67.220.228.201302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=gg_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_smrt_3lift
IP 67.220.228.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=gg_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_smrt_3lift HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Thu, 09 Feb 2023 04:22:40 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: ZGV03E2TETZ18D2VFMF8
Set-Cookie: ad-id=A746Q0MH2EC1s-d1sKM8DpY|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 04:22:40 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=gg_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_smrt_3lift&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d94967bf690ccfa9f59dbdb6afa0dcc6
53499f4fbdd896eb0ea4bf42141a68bea7b1d0a4
a26aa054218d073314e4a15bfad12bb01f8756dc5540183398c188ff0beb19a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4439
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Last-Modified: Thu, 09 Feb 2023 03:08:41 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=gg_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_smrt_3lift&dcc=t
67.220.228.201200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=gg_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_smrt_3lift&dcc=t
IP 67.220.228.201:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=gg_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_smrt_3lift&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Thu, 09 Feb 2023 04:22:40 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: B5FK43BHV8SGRKXJRM9X
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash c6c99cc48f277af65661d2fb95e75fae
5cddd9822dcd08e0c5fcfad85b6378384d2c6ad2
77c91dd09f190462a7dc0b733f4c09b091e65579306e9a6483a9ddd49290bf23
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149458
Date: Thu, 09 Feb 2023 04:22:40 GMT
Etag: "63e403bc-1d7"
Expires: Fri, 10 Feb 2023 21:53:38 GMT
Last-Modified: Wed, 08 Feb 2023 20:19:08 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JtudBUuzhO4OmB7OXKKiSC2DLaYwjnyDWGr7VEn4UWcaHMJczhY5vA==
Age: 5670
mcdp-nydc1.outbrain.com/l?token=1846ecb8f249686b0e07f6a86cf3e282_6574_1675916559745&tm=571&eT=0&widgetWidth=836&widgetHeight=0&widgetX=24&widgetY=2319&wRV=2010156&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=219&oo=true&lo=1655&odbreq=2152&odbres=2371&to=1675916614880&chs=1&ab=0&wl=0
64.202.112.191200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=1846ecb8f249686b0e07f6a86cf3e282_6574_1675916559745&tm=571&eT=0&widgetWidth=836&widgetHeight=0&widgetX=24&widgetY=2319&wRV=2010156&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=219&oo=true&lo=1655&odbreq=2152&odbres=2371&to=1675916614880&chs=1&ab=0&wl=0
IP 64.202.112.191:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=1846ecb8f249686b0e07f6a86cf3e282_6574_1675916559745&tm=571&eT=0&widgetWidth=836&widgetHeight=0&widgetX=24&widgetY=2319&wRV=2010156&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=219&oo=true&lo=1655&odbreq=2152&odbres=2371&to=1675916614880&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Origin: https://filehippo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 04:22:40 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: a70333b9597699307c0215b7e9b9887f
log.outbrainimg.com/loggerServices/dwce_cheq_events?timestamp=1675916617278&sessionId=69cc704f-e124-bc7b-ee6d-0da97bd30d65&url=filehippo.com&cheqSource=1&cheqEvent=3&responseTime=597
64.202.112.191200 OK 4 B URL HTTP/1.1 log.outbrainimg.com/loggerServices/dwce_cheq_events?timestamp=1675916617278&sessionId=69cc704f-e124-bc7b-ee6d-0da97bd30d65&url=filehippo.com&cheqSource=1&cheqEvent=3&responseTime=597
IP 64.202.112.191:0
File type ASCII text, with no line terminators
Hash b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b
GET /loggerServices/dwce_cheq_events?timestamp=1675916617278&sessionId=69cc704f-e124-bc7b-ee6d-0da97bd30d65&url=filehippo.com&cheqSource=1&cheqEvent=3&responseTime=597 HTTP/1.1
Host: log.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 04:22:40 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 4
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
X-TraceId: 28b5ca2d0a4346ccf11615e625085884
prod.us-east-1.cxm-bcn.publisher-services.amazon.dev/v1/recordVendorsLoaded
52.22.181.172200 OK 0 B URL HTTP/2 prod.us-east-1.cxm-bcn.publisher-services.amazon.dev/v1/recordVendorsLoaded
IP 52.22.181.172:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/recordVendorsLoaded HTTP/1.1
Host: prod.us-east-1.cxm-bcn.publisher-services.amazon.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://filehippo.com/
Origin: https://filehippo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:40 GMT
content-length: 0
set-cookie: AWSALB=o/b4v5ZfrOPo8BZhzBCEwadhHAcbGKmiuwmgOjQJ+jY/nQRx67N3yVu4UnBEwmwq+fhv3KkLrQUQJiTT2Wd70+gvn1dxXHeX8JWQH3HuB1SyESyYh2fHbTpTYlfN; Expires=Thu, 16 Feb 2023 04:22:40 GMT; Path=/
AWSALBCORS=o/b4v5ZfrOPo8BZhzBCEwadhHAcbGKmiuwmgOjQJ+jY/nQRx67N3yVu4UnBEwmwq+fhv3KkLrQUQJiTT2Wd70+gvn1dxXHeX8JWQH3HuB1SyESyYh2fHbTpTYlfN; Expires=Thu, 16 Feb 2023 04:22:40 GMT; Path=/; SameSite=None; Secure
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
X-Firefox-Spdy: h2
prod.us-east-1.cxm-bcn.publisher-services.amazon.dev/v1/recordVendorsLoaded
52.22.181.172200 OK 0 B URL HTTP/2 prod.us-east-1.cxm-bcn.publisher-services.amazon.dev/v1/recordVendorsLoaded
IP 52.22.181.172:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/recordVendorsLoaded HTTP/1.1
Host: prod.us-east-1.cxm-bcn.publisher-services.amazon.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 78
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:40 GMT
content-length: 0
set-cookie: AWSALB=AtBvDCjbv0dvEYuevxXtZgQK1y8h1SmcMaPM0mExbkl7K8ReXzuJyvbKuRDjeslz6pAXNNu+KFB+W7Z4yRXbcN1fvXEbtXXSgDwEZB7JDPkx9QSwm3K/h2Pl8ZcQ; Expires=Thu, 16 Feb 2023 04:22:40 GMT; Path=/
AWSALBCORS=AtBvDCjbv0dvEYuevxXtZgQK1y8h1SmcMaPM0mExbkl7K8ReXzuJyvbKuRDjeslz6pAXNNu+KFB+W7Z4yRXbcN1fvXEbtXXSgDwEZB7JDPkx9QSwm3K/h2Pl8ZcQ; Expires=Thu, 16 Feb 2023 04:22:40 GMT; Path=/; SameSite=None; Secure
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1f624b69683c56bfc6f7637d6141593b
5011035e77350337bde950bdf583c70f57ce37d3
443a7ae6036b3601919fbf3604858267cad7e91bb0079776dd0310eeba75f3c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1f624b69683c56bfc6f7637d6141593b
5011035e77350337bde950bdf583c70f57ce37d3
443a7ae6036b3601919fbf3604858267cad7e91bb0079776dd0310eeba75f3c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1f624b69683c56bfc6f7637d6141593b
5011035e77350337bde950bdf583c70f57ce37d3
443a7ae6036b3601919fbf3604858267cad7e91bb0079776dd0310eeba75f3c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012301242213000/amp4ads-v0.mjs
216.58.207.193200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012301242213000/amp4ads-v0.mjs
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash e69a282437c2fecf650a1a9e3d74ac25
4f74af852f8b469c96c0b4772e21405a18dc6567
2dd9818be574ad81e7841351d05c7a17776133168e003b575a4adbb711c5ba2b
GET /rtv/012301242213000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61710
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 18:12:41 GMT
expires: Tue, 06 Feb 2024 18:12:41 GMT
cache-control: public, max-age=31536000
etag: "f7fde309d00c7e4f"
content-type: text/javascript; charset=UTF-8
age: 209399
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96712aeae562ade92e53a7f44af41877
bb012ee0f08d602747f47da8ba9028dfd6358129
ea2efb35d357a6f317f71355a394a3fcf962686faba6a42410878df7ceb01fcb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA2EFB35D357A6F317F71355A394A3FCF962686FABA6A42410878DF7CEB01FCB"
Last-Modified: Tue, 07 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9950
Expires: Thu, 09 Feb 2023 07:08:30 GMT
Date: Thu, 09 Feb 2023 04:22:40 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1f624b69683c56bfc6f7637d6141593b
5011035e77350337bde950bdf583c70f57ce37d3
443a7ae6036b3601919fbf3604858267cad7e91bb0079776dd0310eeba75f3c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mcdp-nydc1.outbrain.com/l?token=780e73ce319fcdc16aecda2a375566da_6574_1675916560115&tm=954&eT=0&widgetWidth=836&widgetHeight=0&widgetX=24&widgetY=2319&wRV=2010156&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=176&oo=true&lo=1655&odbreq=2152&odbres=2371&mvreq=2576&mvres=2753&re=2755&cs=1&to=1675916614880&chs=1&ab=0&wl=0
64.202.112.191200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=780e73ce319fcdc16aecda2a375566da_6574_1675916560115&tm=954&eT=0&widgetWidth=836&widgetHeight=0&widgetX=24&widgetY=2319&wRV=2010156&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=176&oo=true&lo=1655&odbreq=2152&odbres=2371&mvreq=2576&mvres=2753&re=2755&cs=1&to=1675916614880&chs=1&ab=0&wl=0
IP 64.202.112.191:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=780e73ce319fcdc16aecda2a375566da_6574_1675916560115&tm=954&eT=0&widgetWidth=836&widgetHeight=0&widgetX=24&widgetY=2319&wRV=2010156&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=176&oo=true&lo=1655&odbreq=2152&odbres=2371&mvreq=2576&mvres=2753&re=2755&cs=1&to=1675916614880&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Origin: https://filehippo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 04:22:40 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 1471156ac54015517db60953b7fcf639
cdn.ampproject.org/rtv/012301242213000/v0/amp-ad-exit-0.1.mjs
216.58.207.193200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301242213000/v0/amp-ad-exit-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (14751)
Hash 14b409217a0b2a45c78ccf0e6194d07f
cfc4e7ca7ba09aa75474d4d3bc92ecb5a20bc642
e655e124c9241cd096aef731470dace69ec92b2dda2f96d99e4bdfc066939b6f
GET /rtv/012301242213000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 18:12:41 GMT
expires: Tue, 06 Feb 2024 18:12:41 GMT
cache-control: public, max-age=31536000
etag: "ba49594f66f11825"
content-type: text/javascript; charset=UTF-8
age: 209399
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301242213000/v0/amp-fit-text-0.1.mjs
216.58.207.193200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301242213000/v0/amp-fit-text-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (5021)
Hash a55d34740c5b489a185a6544d8d0048b
43e37eb3cabe3fc358eae6722d391e66f7e3511d
5accf775c4cb99b0237b7d5962a15bc8894c67e2353891598680521ee303f48b
GET /rtv/012301242213000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1920
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 18:12:41 GMT
expires: Tue, 06 Feb 2024 18:12:41 GMT
cache-control: public, max-age=31536000
etag: "2258180a38796c63"
content-type: text/javascript; charset=UTF-8
age: 209399
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301242213000/v0/amp-analytics-0.1.mjs
216.58.207.193200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301242213000/v0/amp-analytics-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (65534)
Hash ee931a9494b5c28839f8ffda5f4ee803
b43560b30647e0200962e52b833705e0b5fd461e
e840a2867a7f50da3f4b2d2c3c3fb03ea9882d1704a8d82750fbf974b93233c5
GET /rtv/012301242213000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28871
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 18:12:41 GMT
expires: Tue, 06 Feb 2024 18:12:41 GMT
cache-control: public, max-age=31536000
etag: "02f301facbbd58b4"
content-type: text/javascript; charset=UTF-8
age: 209399
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id5-sync.com/g/v2/691.json
162.19.138.116200 216 B URL HTTP/1.1 id5-sync.com/g/v2/691.json
IP 162.19.138.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9e6775bfd6fb3cfa73c3356fb90994af
d400074757d250033d8a35c47703bbb40abc0a49
343d02703e83506a5d4d524abc83dfa681db2d714848cb18125bc7f8c1511180
POST /g/v2/691.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 500
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://filehippo.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 09 Feb 2023 04:22:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1f624b69683c56bfc6f7637d6141593b
5011035e77350337bde950bdf583c70f57ce37d3
443a7ae6036b3601919fbf3604858267cad7e91bb0079776dd0310eeba75f3c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a9c5a278f07b138c1503ea3f0ec3797e
d36fe8427bd7ba735b06e69469ef715d1600da4e
978b6a189d73e308e1d79ac9241b2e1d07c43bc9ec65e2f4112ed74f143e342b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a9c5a278f07b138c1503ea3f0ec3797e
d36fe8427bd7ba735b06e69469ef715d1600da4e
978b6a189d73e308e1d79ac9241b2e1d07c43bc9ec65e2f4112ed74f143e342b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a9c5a278f07b138c1503ea3f0ec3797e
d36fe8427bd7ba735b06e69469ef715d1600da4e
978b6a189d73e308e1d79ac9241b2e1d07c43bc9ec65e2f4112ed74f143e342b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a9c5a278f07b138c1503ea3f0ec3797e
d36fe8427bd7ba735b06e69469ef715d1600da4e
978b6a189d73e308e1d79ac9241b2e1d07c43bc9ec65e2f4112ed74f143e342b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C700
142.250.74.138200 OK 3.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C700
IP 142.250.74.138:0
Hash fb03c2f044d60dbfd6c3358b4e1b47d6
2c70d0af828b06daee03b56bbf2ed91138b698cf
4377c82b6b940f79261d93c485c5ca9277615eeb358980ee7d25ad09e0957934
GET /css?family=Google%20Sans%3A400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 Feb 2023 04:22:40 GMT
date: Thu, 09 Feb 2023 04:22:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/images/adchoices/en.png
216.58.207.193200 OK 2.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/images/adchoices/en.png
IP 216.58.207.193:0
File type PNG image data, 150 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash ff862c0e7a4755adf3682da543bce1e4
9db9b9c9bb176aee7f639f5f4a4cd702105358b6
36133ca07927c88a7cc578fddbaed3c668ab75087834d0ca13dca5de4ec856c1
GET /pagead/images/adchoices/en.png HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
server: cafe
content-length: 2502
x-xss-protection: 0
date: Wed, 08 Feb 2023 22:44:35 GMT
expires: Thu, 09 Feb 2023 22:44:35 GMT
cache-control: public, max-age=86400
age: 20285
etag: 14819457070020093239
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/11966216597269777964/14763004658117789537?sqp=4sqPyQSLAUKIAQgAEhQNzczMPhUAAABAHQAAAAAlAAAAABgAIgoNAACAPxUAAIA_Kk8IWhABHQAAtEIgASgBMAY4A0CAwtcvSABQAFgAYFpwAngAgAEAiAEAkAEAnQEAAIA_oAEAqAEAsAGAreIEuAH___________8BxQEtsp0-Mg8I2AQQ2AQYASABLQAAAD8&rs=AOga4qnoq1nAgbTbY8qaHmE7PPYDlmaKRQ
216.58.207.193200 OK 84 kB URL HTTP/2 tpc.googlesyndication.com/simgad/11966216597269777964/14763004658117789537?sqp=4sqPyQSLAUKIAQgAEhQNzczMPhUAAABAHQAAAAAlAAAAABgAIgoNAACAPxUAAIA_Kk8IWhABHQAAtEIgASgBMAY4A0CAwtcvSABQAFgAYFpwAngAgAEAiAEAkAEAnQEAAIA_oAEAqAEAsAGAreIEuAH___________8BxQEtsp0-Mg8I2AQQ2AQYASABLQAAAD8&rs=AOga4qnoq1nAgbTbY8qaHmE7PPYDlmaKRQ
IP 216.58.207.193:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3\012- data
Hash 0123eada2e26d667fc3043ef27614432
5deff5fdb4d2a846fec52c5e1ee7559305c88306
ae7d935cfa003b4f89811074fb6310dc828c6ee99c9783ea458968ea6aff1d5f
GET /simgad/11966216597269777964/14763004658117789537?sqp=4sqPyQSLAUKIAQgAEhQNzczMPhUAAABAHQAAAAAlAAAAABgAIgoNAACAPxUAAIA_Kk8IWhABHQAAtEIgASgBMAY4A0CAwtcvSABQAFgAYFpwAngAgAEAiAEAkAEAnQEAAIA_oAEAqAEAsAGAreIEuAH___________8BxQEtsp0-Mg8I2AQQ2AQYASABLQAAAD8&rs=AOga4qnoq1nAgbTbY8qaHmE7PPYDlmaKRQ HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 83962
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 19:15:51 GMT
expires: Tue, 06 Feb 2024 19:15:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Jun 2022 11:13:00 GMT
content-type: image/jpeg
age: 205609
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/images/adchoices/icon.png
216.58.207.193200 OK 295 B URL HTTP/2 tpc.googlesyndication.com/pagead/images/adchoices/icon.png
IP 216.58.207.193:0
File type PNG image data, 15 x 15, 16-bit/color RGBA, non-interlaced\012- data
Hash d848a2953307aa510bdad31f5bf84671
e9d6d8daa9255f99e4e778ff4c4b47806bdb18c1
7fd59024b6ca83f11f7a3448ec148309a13b705725716df134f699e60a96eb1b
GET /pagead/images/adchoices/icon.png HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
server: cafe
content-length: 295
x-xss-protection: 0
date: Wed, 08 Feb 2023 13:49:48 GMT
expires: Thu, 09 Feb 2023 13:49:48 GMT
cache-control: public, max-age=86400
age: 52372
etag: 426692510519060060
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=24062121678999782258788106227016928770729612110500016210206505272782&nc=0&tsf=0&tsfmi=&pv=0&cb=1675916617790&ref=&pit=1&hl=1&op=0&fs=1280x939&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDI1MTddLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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%0D%0AOSwiLSJdLFsiYm5jaCIsOTNdXQ%3D%3D&tsfu=&fst=1280x939&dep=0&cpos=%5B%7B%22x%22%3A24%2C%22y%22%3A2319%2C%22w%22%3A836%2C%22h%22%3A0%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A939%7D%5D&ver=41&cri=uIYv3DoJRe&sdd=%7B%7D&pto=2914
54.83.110.109200 OK 1.3 kB URL HTTP/2 flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=24062121678999782258788106227016928770729612110500016210206505272782&nc=0&tsf=0&tsfmi=&pv=0&cb=1675916617790&ref=&pit=1&hl=1&op=0&fs=1280x939&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDI1MTddLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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%0D%0AOSwiLSJdLFsiYm5jaCIsOTNdXQ%3D%3D&tsfu=&fst=1280x939&dep=0&cpos=%5B%7B%22x%22%3A24%2C%22y%22%3A2319%2C%22w%22%3A836%2C%22h%22%3A0%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A939%7D%5D&ver=41&cri=uIYv3DoJRe&sdd=%7B%7D&pto=2914
IP 54.83.110.109:0
File type ASCII text, with very long lines (2149), with no line terminators
Hash cd32fb7e07105027d57f5037b71c976e
5baa436007e482ee0a1693be9d2f2e53a5cc37e4
5e00bfe88dfb14ed83be2c31b9b65d19510fe90342fde3c6dc33e8b88cbb5d6d
GET /show_pla?id=65349&url=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=24062121678999782258788106227016928770729612110500016210206505272782&nc=0&tsf=0&tsfmi=&pv=0&cb=1675916617790&ref=&pit=1&hl=1&op=0&fs=1280x939&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDI1MTddLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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%0D%0AOSwiLSJdLFsiYm5jaCIsOTNdXQ%3D%3D&tsfu=&fst=1280x939&dep=0&cpos=%5B%7B%22x%22%3A24%2C%22y%22%3A2319%2C%22w%22%3A836%2C%22h%22%3A0%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A939%7D%5D&ver=41&cri=uIYv3DoJRe&sdd=%7B%7D&pto=2914 HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Thu, 09 Feb 2023 04:22:40 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 1308
X-Firefox-Spdy: h2
flint.defybrick.com/tracker/imp.gif?e=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&cb=1675916618376&cri=uIYv3DoJRe
54.83.110.109200 OK 43 B URL HTTP/2 flint.defybrick.com/tracker/imp.gif?e=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&cb=1675916618376&cri=uIYv3DoJRe
IP 54.83.110.109:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/imp.gif?e=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&cb=1675916618376&cri=uIYv3DoJRe HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Thu, 09 Feb 2023 04:22:40 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
216.58.207.227200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 14:34:21 GMT
expires: Fri, 02 Feb 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 568100
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023020601&st=env
142.250.74.66200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023020601&st=env
IP 142.250.74.66:0
File type JSON data\012- , ASCII text, with very long lines (14953), with no line terminators
Hash 4960a093e7e064f5cd34975f83fe6ed5
8fa440dcf8660da140a466defc3b55e6c3954e55
5442dab7afe2cd1eb171ddba5066a43a165329acca886cebf053381831d85c28
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023020601&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Thu, 09 Feb 2023 04:22:41 GMT
server: cafe
content-length: 11285
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159047&gdpr=0&gdpr_consent=
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159047&gdpr=0&gdpr_consent=
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=159047&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=73325
expires: Fri, 10 Feb 2023 00:44:49 GMT
date: Thu, 09 Feb 2023 04:22:44 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
151.101.129.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.129.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Thu, 02 Feb 2023 03:42:30 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 09 Feb 2023 04:22:44 GMT
Age: 2401
X-Served-By: cache-lga13626-LGA, cache-bma1679-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 8, 2554
X-Timer: S1675916565.716114,VS0,VE0
Vary: Accept-Encoding
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6293ae308db71b099acd420c8908be4b
337a942c43fd899fccd514bee9493139a77eb260
dc72bef4bc85e74d831e7a16338326a088e27f810a778f2d15fbf0b8af65afce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5550
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 04:22:44 GMT
Last-Modified: Thu, 09 Feb 2023 02:50:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
eb2.3lift.com/sync?
76.223.111.18200 OK 37 B IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sync? HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:44 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?gdpr=0
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=0
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?gdpr=0 HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 09 Feb 2023 04:22:44 GMT
Connection: keep-alive
Vary: Accept-Encoding
js-sec.indexww.com/um/ixmatch.html
172.64.151.162200 OK 1.4 kB URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 172.64.151.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2920), with no line terminators
Hash 5afd6e52a87d99b7b9be7c2fc0b1a091
b6331e837ab190a6a2c616f940e56ef8e357aa77
8e48f6997aa3f9b4c3b853c8974843341b34ee4b50f9e84ac69ddf531b244158
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:44 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:19 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 397
expires: Thu, 09 Feb 2023 08:22:44 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7969d3619ce0b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18415)
Hash b5c30cc6d678af1f21e540acde2da3df
e4d2820e29cfbe4e91571208f71083cf1423d15c
1a7aab62e7c33f20363e9d736e180ba25d1bd41e8128264194b87d94198ca431
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?gdpr=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Thu, 09 Feb 2023 00:20:27 GMT
Content-Encoding: gzip
Content-Length: 10007
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=71838
Expires: Fri, 10 Feb 2023 00:20:02 GMT
Date: Thu, 09 Feb 2023 04:22:44 GMT
Connection: keep-alive
Vary: Accept-Encoding
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.171.52200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.171.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 09 Feb 2023 04:22:44 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 96ce2bdb-5b12-42fb-8c56-e3e0b87e5ca9
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
198.47.127.19200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 198.47.127.19:0
File type ASCII text, with no line terminators
Hash eea4a4cd1a0a46a3c6a87ce4139aee4b
a474f9d60b9955416c8f7a8a9f3ed649fd0050b3
04febf7c7c4e5c1b5f23fcbdfea790fa6d434d47cbacbd1e12d29390d235213d
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Tue, 9 May 2023 20:30:47 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Thu, 09 Feb 2023 04:22:44 GMT
content-length: 60
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300&lang=en
142.250.74.138200 OK 546 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300&lang=en
IP 142.250.74.138:0
Hash 4c012576ffb3e5d973cf4480109267f5
3ade4940e0c1ba2da19ca047372a73502a5ba817
34532488f45183dbdf16566efde5788ac903fa872d1729632bd4604e51f981c1
GET /css?family=Roboto:300&lang=en HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 Feb 2023 04:22:40 GMT
date: Thu, 09 Feb 2023 04:22:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ms-cookie-sync.presage.io/v1/init-sync/bid-switch?iab_string=&source=prebid
54.230.111.71200 OK 35 B URL HTTP/1.1 ms-cookie-sync.presage.io/v1/init-sync/bid-switch?iab_string=&source=prebid
IP 54.230.111.71:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /v1/init-sync/bid-switch?iab_string=&source=prebid HTTP/1.1
Host: ms-cookie-sync.presage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Date: Thu, 09 Feb 2023 04:22:44 GMT
Expires: 0
Last-Modified: Wed, 18 Jan 2023 13:45:37 GMT
Pragma: no-cache
Surrogate-Control: no-store
X-Powered-By: Express
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nfPY7oy9Db0PNXBz4bBMNaQrNN4i18LLDcESu66Eo-GESTELCXUrTw==
ib.adnxs.com/getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID&gdpr=0
37.252.171.52307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID&gdpr=0
IP 37.252.171.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID&gdpr=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 09 Feb 2023 04:22:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID%26gdpr%3D0
AN-X-Request-Uuid: c0a05cc8-aa4b-43fa-be57-0b1a2f40b342
Set-Cookie: uuid2=3769685262509164596; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 10-May-2023 04:22:45 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
simage4.pubmatic.com/AdServer/SPug?o=1&p=159047&sc=1&u=BD1D0CA8-5D18-471B-B7CD-39DFE76BB0BF&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 349 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=159047&sc=1&u=BD1D0CA8-5D18-471B-B7CD-39DFE76BB0BF&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
File type ASCII text, with very long lines (468)
Hash 83bbd3aa12f9edb3b28839bc6b588668
9d4f3b0e18be7303fcf335363fdf36b2dc6e71de
7b398f205e6605ffba7dcda78e7db943939d2c58f5dbd854d24f7df5d1c936a2
GET /AdServer/SPug?o=1&p=159047&sc=1&u=BD1D0CA8-5D18-471B-B7CD-39DFE76BB0BF&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 04:22:43 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DBD1D0CA8-5D18-471B-B7CD-39DFE76BB0BF%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 878 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DBD1D0CA8-5D18-471B-B7CD-39DFE76BB0BF%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1524), with no line terminators
Hash 2d4d43862bd7f604d0034d47cb2e5549
8d3bc9e49c3823d379b92d21f11f36274a118391
700ca0b0c89a1732084acaec0f049d37cdc8c014d51db719e70fc4bb9354d685
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DBD1D0CA8-5D18-471B-B7CD-39DFE76BB0BF%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 08 Feb 2023 05:37:50 GMT
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 878
content-type: text/html
cache-control: max-age=91244
expires: Fri, 10 Feb 2023 05:43:29 GMT
date: Thu, 09 Feb 2023 04:22:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash a96c85526e217fa193687ab2a9a44554
e7bfd1abc99b6cdc2fe1feef9018916e010e34a0
51b7d5fc9c503c8facc6f90c9f5bb005c6d4d90f68047e537a9ea75d1311b131
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 04:22:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 13 Feb 2023 01:02:01 GMT
ETag: "e7bfd1abc99b6cdc2fe1feef9018916e010e34a0"
Last-Modified: Thu, 09 Feb 2023 01:02:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3560
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7969d363ef4fb4f7-OSL
token.rubiconproject.com/token?pid=2249&pt=n&gdpr=0
213.19.162.90302 Found 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2249&pt=n&gdpr=0
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2249&pt=n&gdpr=0 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 693f17ec94b6fd0c82d03268b1ba23d6
Location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=0
content-length: 0
token.rubiconproject.com/token?pid=25470&gdpr=0
213.19.162.90204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=25470&gdpr=0
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=25470&gdpr=0 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 693f17ec94b6fd0c82d03268b1ba23d6
token.rubiconproject.com/token?pid=2974&pt=n&a=1&gdpr=0
213.19.162.90204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2974&pt=n&a=1&gdpr=0
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2974&pt=n&a=1&gdpr=0 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 693f17ec94b6fd0c82d03268b1ba23d6
match.adsrvr.org/track/cmf/rubicon?gdpr=0
52.223.40.198200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/rubicon?gdpr=0
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/rubicon?gdpr=0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:45 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 39fe6d89e899728aa64db552467c7179
94f561886f04c5a4d30fd763da112f0865453ff3
00e6c24e93e6cbc6d342c00e80b31e022e93fc515954dad864d86825562a4bae
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 04:22:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 22:10:11 GMT
Expires: Thu, 09 Feb 2023 22:10:11 GMT
ETag: "94f561886f04c5a4d30fd763da112f0865453ff3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0&gdpr=0
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0&gdpr=0
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=564534&nid=5466&put=0&gdpr=0 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
match.adsby.bidtheatre.com/rubiconmatch?gdpr=0
178.62.202.251302 302 0 B URL HTTP/1.1 match.adsby.bidtheatre.com/rubiconmatch?gdpr=0
IP 178.62.202.251:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rubiconmatch?gdpr=0 HTTP/1.1
Host: match.adsby.bidtheatre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 302
Date: Thu, 09 Feb 2023 04:22:45 GMT
Server: Apache
P3P: policyref="/w3c/p3p.xml", CP="DSP NON LAW OUR CUR DEVo PSAo PSDo IND STA NAV COM INT"
Set-Cookie: __kuid=a307879d-3227-4d1f-8692-885bdce62159.445130565; Max-Age=604800; Domain=.adsby.bidtheatre.com; SameSite=None; Secure
Location: https://pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=0&gdpr_consent=&put=a307879d-3227-4d1f-8692-885bdce62159
Content-Length: 0
Keep-Alive: timeout=5, max=3000
Connection: Keep-Alive
pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=0&gdpr_consent=&put=a307879d-3227-4d1f-8692-885bdce62159
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=0&gdpr_consent=&put=a307879d-3227-4d1f-8692-885bdce62159
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=17039&nid=2650&days=30&gdpr=0&gdpr_consent=&put=a307879d-3227-4d1f-8692-885bdce62159 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 8922dbf80c111ae40fa662b6f2192369
98d15916f0cc14786f46b6ae2e2a80cd6d05bcba
5f42b8d03dd4caacdf67d369039f09523e3c72fd7e43f22d7d30aed421728ebd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 04:22:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 18:34:32 GMT
Expires: Thu, 09 Feb 2023 18:34:32 GMT
ETag: "98d15916f0cc14786f46b6ae2e2a80cd6d05bcba"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 297bc65c49d69adf06bb81e5f61af373
92c640748ad77b6e75bd3ddf09fae0df8d9bc248
cf3fcdfb7668814a58e51e4fa2c7cddf187ba3750d58596cdb56013c14ce6f2b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 04:22:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:55:53 GMT
Expires: Wed, 15 Feb 2023 01:55:52 GMT
Etag: "92c640748ad77b6e75bd3ddf09fae0df8d9bc248"
Cache-Control: max-age=508986,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7969d363c8ef0b06-OSL
pixel.rubiconproject.com/tap.php?v=186028&nid=4112&put=OPTOUT&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=186028&nid=4112&put=OPTOUT&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=186028&nid=4112&put=OPTOUT&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
match.deepintent.com/usersync/143?gdpr=0
169.197.150.7200 OK 0 B URL HTTP/2 match.deepintent.com/usersync/143?gdpr=0
IP 169.197.150.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/143?gdpr=0 HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 09 Feb 2023 04:22:44 GMT
server: b
X-Firefox-Spdy: h2
htlb.casalemedia.com/cygnus?s=805161&v=7.2&ac=j&sd=1&sn=1&r=%7B%22id%22%3A%22109bba12db27fbd8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A1%2C%22msi%22%3A1%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.23.0%22%2C%22userIds%22%3A%5B%5D%2C%22err%22%3A%7B%224%22%3A1%7D%2C%22sn%22%3A1%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2217e6933b8297b51%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805168%22%2C%22sid%22%3A%22728x90%22%7D%7D%2C%7B%22w%22%3A468%2C%22h%22%3A60%2C%22ext%22%3A%7B%22siteID%22%3A%22805168%22%2C%22sid%22%3A%22468x60%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%22183d78c44ce2f98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805162%22%2C%22sid%22%3A%22728x90%22%7D%7D%5D%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22softonic.com%22%2C%22sid%22%3A%22350002%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D
104.18.33.19200 OK 0 B URL HTTP/2 htlb.casalemedia.com/cygnus?s=805161&v=7.2&ac=j&sd=1&sn=1&r=%7B%22id%22%3A%22109bba12db27fbd8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A1%2C%22msi%22%3A1%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.23.0%22%2C%22userIds%22%3A%5B%5D%2C%22err%22%3A%7B%224%22%3A1%7D%2C%22sn%22%3A1%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2217e6933b8297b51%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805168%22%2C%22sid%22%3A%22728x90%22%7D%7D%2C%7B%22w%22%3A468%2C%22h%22%3A60%2C%22ext%22%3A%7B%22siteID%22%3A%22805168%22%2C%22sid%22%3A%22468x60%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%22183d78c44ce2f98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805162%22%2C%22sid%22%3A%22728x90%22%7D%7D%5D%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22softonic.com%22%2C%22sid%22%3A%22350002%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D
IP 104.18.33.19:0
GET /cygnus?s=805161&v=7.2&ac=j&sd=1&sn=1&r=%7B%22id%22%3A%22109bba12db27fbd8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A1%2C%22msi%22%3A1%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.23.0%22%2C%22userIds%22%3A%5B%5D%2C%22err%22%3A%7B%224%22%3A1%7D%2C%22sn%22%3A1%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2217e6933b8297b51%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805168%22%2C%22sid%22%3A%22728x90%22%7D%7D%2C%7B%22w%22%3A468%2C%22h%22%3A60%2C%22ext%22%3A%7B%22siteID%22%3A%22805168%22%2C%22sid%22%3A%22468x60%22%7D%7D%5D%7D%7D%2C%7B%22id%22%3A%22183d78c44ce2f98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22805162%22%2C%22sid%22%3A%22728x90%22%7D%7D%5D%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22softonic.com%22%2C%22sid%22%3A%22350002%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:39 GMT
content-type: application/json
cf-ray: 7969d33f0ddcb529-OSL
access-control-allow-origin: https://filehippo.com
cache-control: no-cache
expires: 0
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eh%2FNIWmeY8OLtmsEP%2F3%2FtxTA%2BAVT9xmyGyYs1h0M%2BxaP6dlGriiJcrpMljsP5mRpSsQRtjNavNbfP49DhY5Pr7vlWmpZS85yqluFaVM4%2Bh4rd8AFN0GCrCx9Fp1R%2BXzG1Uk%2ByG8T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.138:0
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filehippo.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 Feb 2023 04:22:40 GMT
date: Thu, 09 Feb 2023 04:22:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rubicon?zcc=1&cb=1675916565312
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rubicon?zcc=1&cb=1675916565312
IP 213.19.147.44:0
GET /usersync2/rubicon?zcc=1&cb=1675916565312 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 09 Feb 2023 04:22:45 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://pixel.rubiconproject.com/tap.php?v=186028&nid=4112&put=OPTOUT&expires=30
etag: OPTOUT
X-Firefox-Spdy: h2
sdk.privacy-center.org/sdk.9ea189c7a2f62ebf389797323cb5cd68bd990dc0.js
54.230.111.7200 OK 0 B URL HTTP/2 sdk.privacy-center.org/sdk.9ea189c7a2f62ebf389797323cb5cd68bd990dc0.js
IP 54.230.111.7:0
GET /sdk.9ea189c7a2f62ebf389797323cb5cd68bd990dc0.js HTTP/1.1
Host: sdk.privacy-center.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 07 Feb 2023 07:23:06 GMT
last-modified: Tue, 07 Feb 2023 07:18:43 GMT
etag: W/"eb652dcfac73ddf0dfd1161683a187a3"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1675753991/ctime:1675753991/gid:0/gname:root/md5:eb652dcfac73ddf0dfd1161683a187a3/mode:33188/mtime:1675753991/uid:0/uname:root
cache-control: public, max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h2-hGSgX3Msci7JnIqcBYyL5SY3c7CMbwdZDF0l0WyU07JaF6mmc9g==
age: 161973
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 09 Feb 2023 04:05:19 GMT
last-modified: Wed, 08 Feb 2023 21:24:16 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 ed4565467c6c9847b6a3fcb6cec799e4.cloudfront.net (CloudFront), 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
etag: W/"73a4291e0b24cc8bf12a18bcd544a2b9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: jQ2wyWdqi4U_nk6XZrD7ycl5uuUwO73jpT9Dnzz3nCzr2qxYzTK5_w==
age: 1041
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 10:05:59 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 08 Feb 2023 10:05:52 GMT
etag: W/"a4d296427fc806b21335359e398c025c"
cache-control: public, max-age=86400
x-amz-version-id: zv0zkgF8NnUlHbYAYVWZBKSRYlhapW6k
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iM2AE3M6nEgLQhhLWcalbXaN4UqVwWc5j1Eh78D_vxL5niatJnGygg==
age: 65801
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rubicon?gdpr=0
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rubicon?gdpr=0
IP 213.19.147.44:0
GET /usersync2/rubicon?gdpr=0 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 09 Feb 2023 04:22:45 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-100ae864-11bf-462b-b8aa-a4ec2566a73b-003%22%2C%22zdxidn%22%3A%222013%22%7D; path=/; expires=Fri, 09 Feb 2024 04:22:45 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rubicon?zcc=1&cb=1675916565312
etag: RX100ae86411bf462bb8aaa4ec2566a73b003
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=10496&site_id=293722&zone_id=1476032&size_id=2%3B15%3B15%3B15%3B15%3B2&alt_size_ids=1%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B1&gdpr=0&rp_schain=1.0,1!softonic.com,350002,1,,,&rf=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&tk_flint=pbjs_lite_v6.23.0&x_source.tid=bba7d1a3-2043-46e3-ba89-e512a02179a6%3Bdf205b6a-28a8-4cd0-b378-269ea7ec1f91%3Bddd81d67-6bd2-48dc-a258-829399ddc5ca%3Bf7ceb330-c1ef-4505-b62e-9289f58b7524%3B1068d283-9cbc-465a-9b52-ce6319219b4c%3B50df7573-5b66-4a59-a37c-72cbb3c4bf9c&l_pb_bid_id=307757207c4b2e88%3B31fe665b929822b8%3B3247eb63b5503138%3B33ea6c1fce78f118%3B34ce498be24e03e%3B35dc4726bc172058&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=6&rand=0.3159568483293529
213.19.162.31200 OK 0 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=10496&site_id=293722&zone_id=1476032&size_id=2%3B15%3B15%3B15%3B15%3B2&alt_size_ids=1%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B1&gdpr=0&rp_schain=1.0,1!softonic.com,350002,1,,,&rf=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&tk_flint=pbjs_lite_v6.23.0&x_source.tid=bba7d1a3-2043-46e3-ba89-e512a02179a6%3Bdf205b6a-28a8-4cd0-b378-269ea7ec1f91%3Bddd81d67-6bd2-48dc-a258-829399ddc5ca%3Bf7ceb330-c1ef-4505-b62e-9289f58b7524%3B1068d283-9cbc-465a-9b52-ce6319219b4c%3B50df7573-5b66-4a59-a37c-72cbb3c4bf9c&l_pb_bid_id=307757207c4b2e88%3B31fe665b929822b8%3B3247eb63b5503138%3B33ea6c1fce78f118%3B34ce498be24e03e%3B35dc4726bc172058&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=6&rand=0.3159568483293529
IP 213.19.162.31:0
GET /a/api/fastlane.json?account_id=10496&site_id=293722&zone_id=1476032&size_id=2%3B15%3B15%3B15%3B15%3B2&alt_size_ids=1%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B9%2C8%2C10%2C13%2C14%2C568%3B1&gdpr=0&rp_schain=1.0,1!softonic.com,350002,1,,,&rf=https%3A%2F%2Ffilehippo.com%2Fdownload_iobit-software-updater%2F&tk_flint=pbjs_lite_v6.23.0&x_source.tid=bba7d1a3-2043-46e3-ba89-e512a02179a6%3Bdf205b6a-28a8-4cd0-b378-269ea7ec1f91%3Bddd81d67-6bd2-48dc-a258-829399ddc5ca%3Bf7ceb330-c1ef-4505-b62e-9289f58b7524%3B1068d283-9cbc-465a-9b52-ce6319219b4c%3B50df7573-5b66-4a59-a37c-72cbb3c4bf9c&l_pb_bid_id=307757207c4b2e88%3B31fe665b929822b8%3B3247eb63b5503138%3B33ea6c1fce78f118%3B34ce498be24e03e%3B35dc4726bc172058&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=6&rand=0.3159568483293529 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://filehippo.com
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 09 Feb 2023 04:22:39 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://filehippo.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDWLG5AX-8-EFI3; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoxp9+J9siise9DtVM30fCgweH8d56csozAHMQyJfiFw3zhMdDy6ZZWwFCfoC+4IsUthEFnA5ZKwf0exc+f0IZt; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDWLG5AX-8-EFI3; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoxp9+J9siise9DtVM30fCgweH8d56csozAHMQyJfiFw3zhMdDy6ZZWwFCfoC+4IsUthEFnA5ZKwf0exc+f0IZt; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDWLG5AX-8-EFI3; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoxp9+J9siise9DtVM30fCgweH8d56csozAHMQyJfiFw3zhMdDy6ZZWwFCfoC+4IsUthEFnA5ZKwf0exc+f0IZt; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDWLG5AX-8-EFI3; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoxp9+J9siise9DtVM30fCgweH8d56csozAHMQyJfiFw3zhMdDy6ZZWwFCfoC+4IsUthEFnA5ZKwf0exc+f0IZt; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDWLG5AX-8-EFI3; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoxp9+J9siise9DtVM30fCgweH8d56csozAHMQyJfiFw3zhMdDy6ZZWwFCfoC+4IsUthEFnA5ZKwf0exc+f0IZt; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDWLG5AX-8-EFI3; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoxp9+J9siise9DtVM30fCgweH8d56csozAHMQyJfiFw3zhMdDy6ZZWwFCfoC+4IsUthEFnA5ZKwf0exc+f0IZt; Domain=.rubiconproject.com; Path=/; Expires=Fri, 09-Feb-2024 04:22:39 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
c.aaxads.com/aax.js?pub=AAXXX4L07&hst=filehippo.com&ver=1.2
104.22.54.232302 Found 0 B URL HTTP/2 c.aaxads.com/aax.js?pub=AAXXX4L07&hst=filehippo.com&ver=1.2
IP 104.22.54.232:0
GET /aax.js?pub=AAXXX4L07&hst=filehippo.com&ver=1.2 HTTP/1.1
Host: c.aaxads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 09 Feb 2023 04:22:38 GMT
location: https://btloader.com/tag?o=5633429348548608&upapi=true
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7969d33d7ed0fab8-OSL
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
104.22.53.86200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 104.22.53.86:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filehippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 04:22:40 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: r4RTaX6ShNAEYFTuVrlbn9+UqHwyIpgVebRVXP8w08vqRFBMN7zmExBqk0+MrLrnNtdAN56apHw=
x-amz-request-id: R092DJNPNPQG5X70
last-modified: Wed, 08 Feb 2023 10:52:00 GMT
etag: W/"62c74eda378ed4880e3634daa93922b6"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 498
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7969d3443e19b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2