r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9066
Expires: Mon, 28 Nov 2022 01:31:52 GMT
Date: Sun, 27 Nov 2022 23:00:46 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5283
Cache-Control: max-age=133110
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:46 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:59:16 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7876
Expires: Mon, 28 Nov 2022 01:12:02 GMT
Date: Sun, 27 Nov 2022 23:00:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 22:19:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2480
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: f0+N94zw+8DnaOLhtd59929IK5yfJSd1UATm7qfX9dgZlz06w+akI4lQcPpPKjPi4d/pe7ha3MYxFxFVS70vdQ==
x-amz-request-id: YDM5D2NF1ETB5QCA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 22:41:49 GMT
age: 1137
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 23:00:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.tinyurl.com/2bcg2erkbaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru&ibi=com.example.ios&ifl=https://w95k-503ae.firebaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru
301 Moved Permanently 0 B URL HTTP/2 www.tinyurl.com/2bcg2erkbaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru&ibi=com.example.ios&ifl=https://w95k-503ae.firebaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2bcg2erkbaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru&ibi=com.example.ios&ifl=https://w95k-503ae.firebaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru HTTP/1.1
Host: www.tinyurl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 23:00:46 GMT
content-length: 0
location: http://tinyurl.com/2bcg2erkbaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru&ibi=com.example.ios&ifl=https://w95k-503ae.firebaseapp.com/__/auth/action?apiKey%3DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%26mode%3DsignIn%26oobCode%3DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%26continueUrl%3Dhttps://w95k-503ae.firebaseapp.com/finishSignUp?cartId%253D19awjgxg%2526linkPP%253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%253D%253D%26lang%3Dru
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 770e7b5d1ea7b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 22:08:54 GMT
cache-control: public,max-age=3600
age: 3113
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2152
Cache-Control: max-age=124917
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:47 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 09:42:44 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 64ae07fb1c6ceb1e1f4f4220ff5c7f03
0517df381a9f5de7b458b39b327a15b7e0e9d39e
393004203ecc6dc45be09c3da9136a7a901d8fed774681273711b38bab865b69
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "393004203ECC6DC45BE09C3DA9136A7A901D8FED774681273711B38BAB865B69"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9331
Expires: Mon, 28 Nov 2022 01:36:18 GMT
Date: Sun, 27 Nov 2022 23:00:47 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 64ae07fb1c6ceb1e1f4f4220ff5c7f03
0517df381a9f5de7b458b39b327a15b7e0e9d39e
393004203ecc6dc45be09c3da9136a7a901d8fed774681273711b38bab865b69
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "393004203ECC6DC45BE09C3DA9136A7A901D8FED774681273711B38BAB865B69"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9331
Expires: Mon, 28 Nov 2022 01:36:18 GMT
Date: Sun, 27 Nov 2022 23:00:47 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
IP
File type ASCII text, with very long lines (32341)
Hash 856f85cc1b07156fa844b44a10c236c2
7cef457c0e1cd0c20f4e699564ea8997f0332021
c61aa9ce7b32f93630abac1a4b27382f9333e0ff69477c9d9099070ae0742b01
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 21:00:17 GMT
expires: Tue, 21 Nov 2023 21:00:17 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 525630
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: n0vU2mR2bBF7laPc1YyZ8A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2PLkF2KGAKh+Im+QQdrRGmiuzMQ=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 1def611ed1604b222e2c1b4e5b4dbbb3
efab3f910adb2498ed4aa794df938959e861b0f1
e455592a25ecac760d03d4ca2ff3ec5a74332ff8e4d9d38384390a20d3e959f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:47 GMT
Last-Modified: Sun, 27 Nov 2022 21:45:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 2ZzHna23PuH/+NScmCS6vqVr9epYVtck1TMIz02QD+KWYIgrncUFr5NXwlqSmO9i6Qmh5QzjmXiu5azWNvd+PQ==
content-length: 27340
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 23:00:47 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stats.g.doubleclick.net/dc.js
200 OK 17 kB URL HTTP/2 stats.g.doubleclick.net/dc.js
IP
File type ASCII text, with very long lines (1305)
Hash 5f65521f6c6223e1e18cb161832bea2a
f03800023e7bbe2579cd24e122cdf8c6ecf8b4c6
787b69b93681cf41784dfa8655cbdafe8a56ecc62f0112a6ea2241a284a0e3c9
GET /dc.js HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17093
date: Sun, 27 Nov 2022 22:02:41 GMT
expires: Mon, 28 Nov 2022 00:02:41 GMT
cache-control: public, max-age=7200
age: 3486
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1def611ed1604b222e2c1b4e5b4dbbb3
efab3f910adb2498ed4aa794df938959e861b0f1
e455592a25ecac760d03d4ca2ff3ec5a74332ff8e4d9d38384390a20d3e959f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:47 GMT
Last-Modified: Sun, 27 Nov 2022 21:45:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 6b246e605f001d4e9cbebe3f572a73c5
b711d49ed8881536776b1f34bfa2b5dbcca9a38a
df26a161a16259fe95cff70b92a63e8692abd6d7be0dbb8df0f88096764370de
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 23:00:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 27 Nov 2022 19:54:02 GMT
Expires: Mon, 28 Nov 2022 19:54:02 GMT
ETag: "b711d49ed8881536776b1f34bfa2b5dbcca9a38a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.facebook.com/tr/?id=196261077476671&ev=PageView&dl=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&rl=&if=false&ts=1669590047653&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669590047652.1512342242&it=1669590047393&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=196261077476671&ev=PageView&dl=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&rl=&if=false&ts=1669590047653&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669590047652.1512342242&it=1669590047393&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=196261077476671&ev=PageView&dl=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&rl=&if=false&ts=1669590047653&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669590047652.1512342242&it=1669590047393&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 27 Nov 2022 23:00:48 GMT
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 6b246e605f001d4e9cbebe3f572a73c5
b711d49ed8881536776b1f34bfa2b5dbcca9a38a
df26a161a16259fe95cff70b92a63e8692abd6d7be0dbb8df0f88096764370de
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 23:00:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 27 Nov 2022 19:54:02 GMT
Expires: Mon, 28 Nov 2022 19:54:02 GMT
ETag: "b711d49ed8881536776b1f34bfa2b5dbcca9a38a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
d.pub.network/v2/init?siteId=3163&env=PROD
200 OK 6.3 kB URL HTTP/2 d.pub.network/v2/init?siteId=3163&env=PROD
IP
Hash 39991cf2c8db4a7230067170df4a9ab1
9af02f9e4bfa21da68a875d094e98bd3ac90497a
a00cd2f23ad3784107b09acc67bdcbe5215d5650b53e64ca1831a3a9210179de
GET /v2/init?siteId=3163&env=PROD HTTP/1.1
Host: d.pub.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:47 GMT
set-cookie: _fsuid=16761bcb-da74-4dcf-95c0-d85d2f8249ab; path=/; Domain=.pub.network; Max-Age=63113904; SameSite=None; Secure; HttpOnly=true;
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
content-type: application/json
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.pub.network/tinyurl-com/pubfig.min.js
200 OK 62 kB URL HTTP/2 a.pub.network/tinyurl-com/pubfig.min.js
IP
Hash 0d8bc35228d9f61f8c600f84b93efb2c
e41217344c156852dd4370ff66a0e3ec7a8a3847
2905cf247863fc8e17ed6f3e4f3e8480cbd7f2b950991780642669549d1f6c4a
GET /tinyurl-com/pubfig.min.js HTTP/1.1
Host: a.pub.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:47 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycds2A4gPxQLHNI8OdGfdR09301zMIVZzC-sqbrQ130a335f0ToOMCKPT7_sLFVGpr_DM9reiFFdIKUgirluKbmlEIQ
x-goog-generation: 1668794421501534
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 170264
x-goog-hash: crc32c=q9IFaQ==, md5=y7cPlLqLhwaBER8K/9ZLQg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sun, 27 Nov 2022 23:30:47 GMT
cache-control: public, max-age=1800
last-modified: Tue, 22 Nov 2022 22:46:00 GMT
etag: W/"cbb70f94ba8b870681111f0affd64b42"
cf-cache-status: HIT
age: 356444
vary: Accept-Encoding
server: cloudflare
cf-ray: 770e7b653c57fab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 577ca55bb6b8e71607d075dca60ac710
3788692d76e196315e20b1a89bb70d52ae3b3716
10724160a03d74e166a653eb72bf9e56cb99d83cb786756c66b5cdfb2b8a24f5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "10724160A03D74E166A653EB72BF9E56CB99D83CB786756C66B5CDFB2B8A24F5"
Last-Modified: Sun, 27 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2300
Expires: Sun, 27 Nov 2022 23:39:08 GMT
Date: Sun, 27 Nov 2022 23:00:48 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 278 B IP
Hash 07ed7fbb210d59cc319fff4a08e1f610
eefa99d484a9011f1432ece6470a94fc10148f39
a1178e4a97421f3f8e5e7020591dfaccf0f95986d9b53d86c31644e7408e41fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2177
Cache-Control: max-age=88612
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:48 GMT
Etag: "63829ac3-116"
Expires: Mon, 28 Nov 2022 23:37:40 GMT
Last-Modified: Sat, 26 Nov 2022 23:01:23 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
freestar-io.videoplayerhub.com/gallery.js
301 Moved Permanently 135 kB URL HTTP/2 freestar-io.videoplayerhub.com/gallery.js
IP
Size 135 kB (135088 bytes)
Hash 6ec726de4e194191960b46d879bcaedb
b1d65350833129bec073fa62ec79bbb83e136750
a6ea7cc3e594d72bb1632f377f0b1d9aa2523794372b2e49a6400ad7e352160c
GET /gallery.js HTTP/1.1
Host: freestar-io.videoplayerhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 23:00:48 GMT
location: https://btloader.com/tag?h=freestar-io&upapi=true
cache-control: max-age=3600
expires: Mon, 28 Nov 2022 00:00:48 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SVMBU0qG6%2B4a1nTt1bggDMcgxWEWh5QxS1heuCeUqvIifuEytOJnBoFrGMpKGldCL1XPEshSrWvmscTH%2BGbgGG3mM6kUKeVB64ApHeNMN%2FEGK1Lz0xZHn4y7M3idA5o1Ou4s9oEe3IiFdmry5LXwRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770e7b6a3d88b515-OSL
X-Firefox-Spdy: h2
sb.scorecardresearch.com/b2?c1=2&c2=23384447&cs_ucfr=&cs_it=b3&cv=3.8.0.210223&ns__t=1669590047777&ns_c=UTF-8&gdpr=1&gdpr_p1t=0&gdpr_li=0&gdpr_purps=&gdpr_pcc=AA&cs_cmp_nc=1&cs_cmp_id=10&cs_cmp_sv=45&cs_cmp_rt=404&c7=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&c8=TinyURL.com%20-%20shorten%20that%20long%20URL%20into%20a%20tiny%20URL&c9=
204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b2?c1=2&c2=23384447&cs_ucfr=&cs_it=b3&cv=3.8.0.210223&ns__t=1669590047777&ns_c=UTF-8&gdpr=1&gdpr_p1t=0&gdpr_li=0&gdpr_purps=&gdpr_pcc=AA&cs_cmp_nc=1&cs_cmp_id=10&cs_cmp_sv=45&cs_cmp_rt=404&c7=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&c8=TinyURL.com%20-%20shorten%20that%20long%20URL%20into%20a%20tiny%20URL&c9=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b2?c1=2&c2=23384447&cs_ucfr=&cs_it=b3&cv=3.8.0.210223&ns__t=1669590047777&ns_c=UTF-8&gdpr=1&gdpr_p1t=0&gdpr_li=0&gdpr_purps=&gdpr_pcc=AA&cs_cmp_nc=1&cs_cmp_id=10&cs_cmp_sv=45&cs_cmp_rt=404&c7=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&c8=TinyURL.com%20-%20shorten%20that%20long%20URL%20into%20a%20tiny%20URL&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:48 GMT
x-cache: Miss from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FP6A-9914Jvv_8RjVlI9Ann7WoMxl2D5DsjZKwhg3Xr79AamaITK9A==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash f172f589fe97c27b1f654d2926c17153
843d6855baaa47c74d0ee22e9a4ba6dcbab164de
bb97d6c050e5520e30f66cd5a29fa7b0d5e0809e04a80f7e025f20ae1c192e8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6154
Cache-Control: max-age=129293
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:48 GMT
Etag: "63832a23-117"
Expires: Tue, 29 Nov 2022 10:55:41 GMT
Last-Modified: Sun, 27 Nov 2022 09:13:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash f172f589fe97c27b1f654d2926c17153
843d6855baaa47c74d0ee22e9a4ba6dcbab164de
bb97d6c050e5520e30f66cd5a29fa7b0d5e0809e04a80f7e025f20ae1c192e8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6154
Cache-Control: max-age=129293
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:48 GMT
Etag: "63832a23-117"
Expires: Tue, 29 Nov 2022 10:55:41 GMT
Last-Modified: Sun, 27 Nov 2022 09:13:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
cmp.quantcast.com/tcfv2/45/cmp2ui-en.js
200 OK 109 kB URL HTTP/2 cmp.quantcast.com/tcfv2/45/cmp2ui-en.js
IP
Size 109 kB (108909 bytes)
Hash 8fd12e85ebeddce3fb8d9a9bee6623e9
4f1dc73bf43a34a81c5036b7d79ac575b5b9c240
c1679d8732a8f1a3d20d59b8f1e15f221458a6a8fb8df0dde1be9a621da7b8c2
GET /tcfv2/45/cmp2ui-en.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 604800
last-modified: Thu, 10 Nov 2022 18:23:24 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sun, 27 Nov 2022 20:45:07 GMT
cache-control: max-age=172800
etag: W/"39d0cac7e548f81f1e1e1c36db3c775e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CAB6IG3TSgqqP00V2_VpvfGTe2PLmgU7OkSLBdqXQ9aFj1wRkTAu7g==
age: 11635
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022111501.js
200 OK 132 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022111501.js
IP
File type ASCII text, with very long lines (65395)
Size 132 kB (132177 bytes)
Hash 3308ca8addf332f89a8f9ae5fada3b60
69a0af021add1aa44292528532ef632aff2ab1d0
7c1c9e093bf8e56cf2ba9af1d8cfc092f7a98c4b9472abc3257147aa97ec0ee3
GET /gpt/pubads_impl_2022111501.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 132177
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 10:34:42 GMT
expires: Fri, 24 Nov 2023 10:34:42 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 15 Nov 2022 09:35:23 GMT
content-type: text/javascript
age: 303966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad-delivery.net/px.gif?ch=1&e=0.17144184105347293
200 OK 43 B URL HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.17144184105347293
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.17144184105347293 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:48 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdt6VCtqtIBnBTdsF1vvDPQfLazGd9ibEd203R5L043lLiuyTx5erfdDBO4fPOmvTjQfhaq1ovVTvyGIn5JVehsmeQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sat, 05 Nov 2022 18:30:05 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 1920570
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2BrZcGjb%2B9t3p8OUq4nH8DvQYygD%2FmzUbN%2BQyfncjJrypJSIKZIMTIZIcOO8dUjsIof5U2PnHGVNA48XBhLfOdiCdW7XtdUGiPSrLpA%2Fh9DY2P5yb7J%2FBdcX3ww2UtCEeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770e7b6c8940fac4-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9cff2c2ad4207e09e07c017987177850
833082ded91a1983a1367c48c8076949e079ce95
82b03e92d004f116875ba023a7e8782d3c124a1c499a6328f29cff70f397a6cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
200 OK 104 B URL HTTP/2 ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
IP
File type MS Windows icon resource - 2 icons, 16x16, 16 colors, 32x32, 16 colors\012- data
Hash 32ac8a9b81788b981a3a7e13c14082d4
fbfd48a2bfe8d4247a975176f88d18c3c2ad1952
00cc7617e054596ff0aaabd8a93a9214dc5304bfe317316022dbf4fb3ea073d2
GET /favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 104
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 11:00:31 GMT
expires: Mon, 28 Nov 2022 11:00:31 GMT
cache-control: public, max-age=86400
age: 43217
last-modified: Tue, 08 May 2012 13:08:06 GMT
content-type: image/x-icon
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11974
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 23:00:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11974
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 23:00:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11974
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 23:00:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f14adca-9ca8-4ff4-8a3e-4620f8c1e8f8.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f14adca-9ca8-4ff4-8a3e-4620f8c1e8f8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13f4c2b3410532b6c756990f1759da46
16096289cd354fada56dbb3f2d75d406ae8ab62f
9894d998a884f2b5637bd12b0cd3df556835ea7a3134eb0f516fc03e3d31c26c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f14adca-9ca8-4ff4-8a3e-4620f8c1e8f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8568
x-amzn-requestid: da2726a2-20ad-4201-b4e9-3de9be88a485
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7-BHcUIAMFieA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9f3-370921803a9de7e627682c94;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MPWvdL-woEL21aHiMtzg--1Z1p2w9y0XTGxb445LyuMVlWTp4nsMQw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:16:30 GMT
age: 2658
etag: "16096289cd354fada56dbb3f2d75d406ae8ab62f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9cff2c2ad4207e09e07c017987177850
833082ded91a1983a1367c48c8076949e079ce95
82b03e92d004f116875ba023a7e8782d3c124a1c499a6328f29cff70f397a6cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e33decf-55e5-425f-bb8d-5e1ca290e633.jpeg
200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e33decf-55e5-425f-bb8d-5e1ca290e633.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 300ba2bd11eefb4b5b9ba5b9d56c6cca
55c9d2899b16945f329d0dacc021161038629988
a866abff0b6b5c6ed6758f1208f106d8f00c7f16fa07f2a676301cce8301e964
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e33decf-55e5-425f-bb8d-5e1ca290e633.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4254
x-amzn-requestid: 9c63d2a1-e805-4114-8875-fc1dc022c047
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR8IwHopoAMFq0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383da37-395ca7b76b364c11172fbdd6;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:44:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kEPPpR5WF9pdwcaIAgJlKrueznhQ4g5RFucMPj5eI0EbNk5Dt2dLIQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:00:48 GMT
age: 3600
etag: "55c9d2899b16945f329d0dacc021161038629988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 577b69fd08ad8368ea5a94fe41476c1c
9442f111d329f721ddc55100cd246586d8204048
bdafc5068032dcf5e207cf2685a1b9350dbe8d990ba181520ff47889524532f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8517
x-amzn-requestid: 12456791-0e7f-45d7-97ae-d663c8fa841d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMozvHHLoAMFVqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb4a-54ed1ec101789247052c9ec8;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:07:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UzzTPZIBjoow9PK-oM9rfGh5HkrivyPDofbTXy-I-9e4_baQnyKVhQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:55:42 GMT
age: 61506
etag: "9442f111d329f721ddc55100cd246586d8204048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69fecdd0-f203-4856-9306-7df6eb537732.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69fecdd0-f203-4856-9306-7df6eb537732.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 515b38218003c32df1ae80c1028ca88c
1b129f9794cbee796ec6321c52d062a58e3c26ab
acc804008b482ba917a113be5361f5172b973db477947b3da749d3287774980f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69fecdd0-f203-4856-9306-7df6eb537732.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7444
x-amzn-requestid: 71662fef-ed42-4596-ae11-80d8fc05f7fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGNloAMFjZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-4fd8cdaa43d66ba20286e4ed;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Hvz7wRVwS6OkBe7PWFijKhnz_qF5naVplBMUPC6zFrgLSuWXLKyIhw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:16:08 GMT
age: 2680
etag: "1b129f9794cbee796ec6321c52d062a58e3c26ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ff6b6f2-e6dd-4654-9894-50de6f502f83.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ff6b6f2-e6dd-4654-9894-50de6f502f83.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e240caa3153ea25c34d07185b47f8a5
602e8ba5c6671ff947acfda757577ddc8ecec6ec
c2b37bf1ef003ceffaaf4612f2001b6f7998d5b95cd55b32c79fefcb24ccad7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ff6b6f2-e6dd-4654-9894-50de6f502f83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11255
x-amzn-requestid: ce06e0cc-3874-4a3d-a6c5-5cc1cb342138
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7w8EEOIAMF_6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99f-5ca652aa369ee1690b0d08cc;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6qKDE2jlIb8D2Mhg-OcsfU1haVtyGYfcMcs1NJT_HPlTv-O26tR60w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:34 GMT
age: 3974
etag: "602e8ba5c6671ff947acfda757577ddc8ecec6ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22wZt3yQfgdwnz-%22%2C%22domain%22%3A%22tinyurl.com%22%2C%22publisher%22%3A%22Tinyurl.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.45%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%222rXDIkjHn7mjZ18%2BGoqeow%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1669590048272%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-97rmw1odcfeg0porbx68%22%7D
200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22wZt3yQfgdwnz-%22%2C%22domain%22%3A%22tinyurl.com%22%2C%22publisher%22%3A%22Tinyurl.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.45%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%222rXDIkjHn7mjZ18%2BGoqeow%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1669590048272%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-97rmw1odcfeg0porbx68%22%7D
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%22wZt3yQfgdwnz-%22%2C%22domain%22%3A%22tinyurl.com%22%2C%22publisher%22%3A%22Tinyurl.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.45%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%222rXDIkjHn7mjZ18%2BGoqeow%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1669590048272%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-97rmw1odcfeg0porbx68%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:48 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a4e0bb1e2748bdce6bbf685a910f0fc
5b97bfd787afcb912cdbef0f137f78a059082992
a7bc9adeb22cb57675e907bd961a6f554e6b7a46414ed782bcc9b53d68b1c328
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15639
x-amzn-requestid: 98e846b4-287f-4698-9529-25bcc2727a4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78dGReoAMFiDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e9-62c41b2717bd8e6f3b3797da;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AhbL-wXc_eYsgxdjf0DIEJD7Z3XfXMjXwDC52Bz_SnvmmWAhl3g99A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:38 GMT
age: 4150
etag: "5b97bfd787afcb912cdbef0f137f78a059082992"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/wZt3yQfgdwnz-/tinyurl.com/choice.js?tag_version=V2
200 OK 72 kB URL HTTP/2 cmp.quantcast.com/choice/wZt3yQfgdwnz-/tinyurl.com/choice.js?tag_version=V2
IP
Hash b9df715eee522aab2c54eccf0dbf3c26
460aa887fe082d61c93277a67c65e544b54d3618
2500a308b45214fb39b4d86fcc480aaa95bdfbdf9f625fffd94a36412200ca79
GET /choice/wZt3yQfgdwnz-/tinyurl.com/choice.js?tag_version=V2 HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 14:22:31 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: gzip
date: Sun, 27 Nov 2022 23:00:48 GMT
cache-control: max-age=3600
etag: W/"9b1bcf279ce40fabb7d1a9fa392e9538"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RzO_HFk6DqD-36GaxKpz9j6Z43ntm_Vox0XpV2ffdhB5i5QZ8jOH9g==
age: 12
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/8WDrLhpUxOc
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8WDrLhpUxOc
IP
Hash e6624e9d6b359af3a4d5708b0ad2dc9d
8ce9e943b86254af2db065f8dec8e7850576d9b4
23f58b13c80b75b33e85b3b7b53640c4b210876fcc51b759e910e72347cec217
POST /s/gts1d4/8WDrLhpUxOc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/Kv93g70ZFQU
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Kv93g70ZFQU
IP
Hash f5b29ff092f5cc46b6f2208a5d2a98a3
38d0bb7127694abdbd151ac9e91d1efea3cc28ec
983118b3c1d42da4f397b4e0cbc3910067cbe2200371a088eb96edd99ead1a3b
POST /s/gts1d4/Kv93g70ZFQU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/Kv93g70ZFQU
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Kv93g70ZFQU
IP
Hash f5b29ff092f5cc46b6f2208a5d2a98a3
38d0bb7127694abdbd151ac9e91d1efea3cc28ec
983118b3c1d42da4f397b4e0cbc3910067cbe2200371a088eb96edd99ead1a3b
POST /s/gts1d4/Kv93g70ZFQU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/8WDrLhpUxOc
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8WDrLhpUxOc
IP
Hash e6624e9d6b359af3a4d5708b0ad2dc9d
8ce9e943b86254af2db065f8dec8e7850576d9b4
23f58b13c80b75b33e85b3b7b53640c4b210876fcc51b759e910e72347cec217
POST /s/gts1d4/8WDrLhpUxOc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.floors.dev/sgw/v1/floors
200 OK 0 B URL HTTP/2 api.floors.dev/sgw/v1/floors
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sgw/v1/floors HTTP/1.1
Host: api.floors.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-api-key
Referer: https://tinyurl.com/
Origin: https://tinyurl.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:49 GMT
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
access-control-allow-methods: ACL, CANCELUPLOAD, CHECKIN, CHECKOUT, COPY, DELETE, GET, HEAD, LOCK, MKCALENDAR, MKCOL, MOVE, OPTIONS, POST, PROPFIND, PROPPATCH, PUT, REPORT, SEARCH, UNCHECKOUT, UNLOCK, UPDATE, VERSION-CONTROL
access-control-max-age: 3600
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Key, Authorization, x-api-key
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000;includeSubDomains;preload;
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Kv93g70ZFQU
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Kv93g70ZFQU
IP
Hash f5b29ff092f5cc46b6f2208a5d2a98a3
38d0bb7127694abdbd151ac9e91d1efea3cc28ec
983118b3c1d42da4f397b4e0cbc3910067cbe2200371a088eb96edd99ead1a3b
POST /s/gts1d4/Kv93g70ZFQU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.btloader.com/pv?tid=ioVnoRwNA&w=6316674530148352&o=5714937848528896&cv=2.1.0&r=false&vr=1280x939&pageURL=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&upapi=true
204 No Content 0 B URL HTTP/2 api.btloader.com/pv?tid=ioVnoRwNA&w=6316674530148352&o=5714937848528896&cv=2.1.0&r=false&vr=1280x939&pageURL=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&upapi=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=ioVnoRwNA&w=6316674530148352&o=5714937848528896&cv=2.1.0&r=false&vr=1280x939&pageURL=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Sun, 27 Nov 2022 23:00:49 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/8WDrLhpUxOc
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8WDrLhpUxOc
IP
Hash e6624e9d6b359af3a4d5708b0ad2dc9d
8ce9e943b86254af2db065f8dec8e7850576d9b4
23f58b13c80b75b33e85b3b7b53640c4b210876fcc51b759e910e72347cec217
POST /s/gts1d4/8WDrLhpUxOc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.btloader.com/country
200 OK 16 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 452880c1a375b8fba8c9499f0930d05f
ffe5484a23512c2a574d837fe2d3267b134e48c8
8b3383aa4c71f1d816bfaf33e3ef2e8ded067698a7798b9f306204d5777b140d
GET /country HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tinyurl.com/
Origin: https://tinyurl.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Sun, 27 Nov 2022 23:00:49 GMT
content-length: 16
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
301 Moved Permanently 167 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 167
location: https://d3div1mtym39ic.cloudfront.net/aax2/apstag.js
server: CloudFront
date: Sun, 27 Nov 2022 00:09:35 GMT
via: 1.1 06a27d66e25d02ebcfb014b9d194016a.cloudfront.net (CloudFront), 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-C1
x-amz-cf-id: 3wBjaXnQzWWpVeEPEEmAY69QzDc_5y01CUVRM2Kra4Y44KMUy864qQ==
age: 82274
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash fccdc9d595df75bfa103ba6c111345e1
55f48f6d8e5ed539b8feaa9fbeceb23edf23561b
15b3fb717cf37be0bf3a9da7e5fdf720b1124d2ea13c2afa01e9edc37c5c5b2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3050
Cache-Control: max-age=133008
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "638344c7-139"
Expires: Tue, 29 Nov 2022 11:57:37 GMT
Last-Modified: Sun, 27 Nov 2022 11:06:47 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash fccdc9d595df75bfa103ba6c111345e1
55f48f6d8e5ed539b8feaa9fbeceb23edf23561b
15b3fb717cf37be0bf3a9da7e5fdf720b1124d2ea13c2afa01e9edc37c5c5b2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3063
Cache-Control: max-age=133021
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "638344c7-139"
Expires: Tue, 29 Nov 2022 11:57:50 GMT
Last-Modified: Sun, 27 Nov 2022 11:06:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash d996b3b02a338e212dae521732826d1c
d3c60cd1d57a5968c6bc5a16c6c57a9d1151b42f
dcaad91f0cd7aff553d0f44aabd4320df86de16db57dbe72967b09d8669193ab
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 23:00:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 01 Dec 2022 21:10:14 GMT
ETag: "d3c60cd1d57a5968c6bc5a16c6c57a9d1151b42f"
Last-Modified: Sun, 27 Nov 2022 21:10:15 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3153
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770e7b705e61b51b-OSL
match.adsrvr.org/track/rid?ttd_pid=6bjin1p&fmt=json
200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=6bjin1p&fmt=json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 16ccc609c2553c15b2be94610f912455
07528944474ef0e54d09b2952896a2cbd002c86f
7f97f843d581807c708cf19c89d8ea63472fe8efb85fad5e4269cc42e899d93b
GET /track/rid?ttd_pid=6bjin1p&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:49 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Tue, 27 Dec 2022 23:00:49 GMT
vary: Origin
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/i2z-CsId4wM
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/i2z-CsId4wM
IP
Hash da2df535ac9af55cdf4f45a9af136331
eb116f0a5c10748f7477247c2cbae01c3f8c33c0
474d9282c4f8b1d370d22f43dea66dde273456a96d9d06f3947d225701c2bc72
POST /s/gts1d4/i2z-CsId4wM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/i2z-CsId4wM
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/i2z-CsId4wM
IP
Hash da2df535ac9af55cdf4f45a9af136331
eb116f0a5c10748f7477247c2cbae01c3f8c33c0
474d9282c4f8b1d370d22f43dea66dde273456a96d9d06f3947d225701c2bc72
POST /s/gts1d4/i2z-CsId4wM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftinyurl.com%2F&domain=tinyurl.com&cw=1&lsw=1
200 OK 637 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftinyurl.com%2F&domain=tinyurl.com&cw=1&lsw=1
IP
File type JSON data\012- , ASCII text, with very long lines (2171), with no line terminators
Hash f1208c826e670045dfdaf9d4b7d32271
1ba73ca1c02c30cfb71d847eeb71961b5502e4e5
78bf6270598a6905f890e64e8b1fee847fa8794c14b05da4be43f68b89634cdb
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Ftinyurl.com%2F&domain=tinyurl.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://tinyurl.com/
Origin: https://tinyurl.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:48 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://tinyurl.com
server-processing-duration-in-ticks: 470543
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
a.pub.network/core/pubfig/cls.css
200 OK 590 B URL HTTP/2 a.pub.network/core/pubfig/cls.css
IP
Hash 665b2454bca666e804417eb42507f94b
6faf8d452713c8277b1e645eb953b041a17320ff
bd326bf0895f81ebf66f401e88e85b815f0e8b1619c3e899606c35db12a1266b
GET /core/pubfig/cls.css HTTP/1.1
Host: a.pub.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:47 GMT
content-type: text/css
x-guploader-uploadid: ADPycdsWDkS553uIcD9FTSztmsjOAgafvBRm5jfN_CQ2i5zN35_X5gIqYY78SrqXfqQFQB-o7iOwFpwwEAtD8xePaKuIXA
x-goog-generation: 1666967770269941
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2096
x-goog-hash: crc32c=4G+Zdg==, md5=gWeDFGs5B+Y00OgiynWYZA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 28 Nov 2022 00:00:47 GMT
cache-control: public, max-age=3600
last-modified: Fri, 28 Oct 2022 14:36:10 GMT
etag: W/"816783146b3907e634d0e822ca759864"
cf-cache-status: HIT
age: 3477
vary: Accept-Encoding
server: cloudflare
cf-ray: 770e7b653c5bfab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
s2s.t13.io/openrtb2/auction
200 OK 168 B URL HTTP/2 s2s.t13.io/openrtb2/auction
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 8234d491f5c24433eed3ac7a57a781a1
76b777a50fe70c232db6d59934f317e9101218f3
bf9c6161400f12ec4ffeaed4b7c6e4c8c81e001a565635642a22c3e052d493d9
POST /openrtb2/auction HTTP/1.1
Host: s2s.t13.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3665
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-origin: https://tinyurl.com
x-prebid: pbs-java/1.94.0
content-type: application/json
content-encoding: gzip
content-length: 168
date: Sun, 27 Nov 2022 23:00:49 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cca1f2d9aff20735cb4efbaf92b60508
1c4f8674282fe817b614b8137550379bef086af3
9a1f827ab5bc3236c3b28f855c3941fad3a0ecd1232f880e1245264db6089d64
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111922
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6382eefc-1d7"
Expires: Tue, 29 Nov 2022 06:06:11 GMT
Last-Modified: Sun, 27 Nov 2022 05:00:44 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JF1JeCt7oZASDhPkV0PEHDoeFN-p0Nvy9bDtSr4duU5Je4A0J-7uYw==
Age: 3927
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cca1f2d9aff20735cb4efbaf92b60508
1c4f8674282fe817b614b8137550379bef086af3
9a1f827ab5bc3236c3b28f855c3941fad3a0ecd1232f880e1245264db6089d64
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114120
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6382eefc-1d7"
Expires: Tue, 29 Nov 2022 06:42:49 GMT
Last-Modified: Sun, 27 Nov 2022 05:00:44 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NfJ6zxDSMPa-Q-w7AM558VA8aPxtT0pdlyNVK8HAdF0EyFe7opMQDA==
Age: 6125
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cca1f2d9aff20735cb4efbaf92b60508
1c4f8674282fe817b614b8137550379bef086af3
9a1f827ab5bc3236c3b28f855c3941fad3a0ecd1232f880e1245264db6089d64
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108786
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6382eefc-1d7"
Expires: Tue, 29 Nov 2022 05:13:55 GMT
Last-Modified: Sun, 27 Nov 2022 05:00:44 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gg7sHVyZJDPo7rXR2hOHBTRdgFF0EXZAdcpcas-twSuqTK_Jab0BUw==
Age: 791
ocsp.digicert.com/
200 OK 471 B IP
Hash efcf392f1072119318357b01bd77f81b
3ea91881e886432891f4a7fce7adbfbc9b44b313
7395c328f9c0ab9a0699818885ece40ff960d727d32f518c613a9e530d98e609
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6473
Cache-Control: max-age=131020
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "63832fa4-1d7"
Expires: Tue, 29 Nov 2022 11:24:29 GMT
Last-Modified: Sun, 27 Nov 2022 09:36:36 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cca1f2d9aff20735cb4efbaf92b60508
1c4f8674282fe817b614b8137550379bef086af3
9a1f827ab5bc3236c3b28f855c3941fad3a0ecd1232f880e1245264db6089d64
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109318
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6382eefc-1d7"
Expires: Tue, 29 Nov 2022 05:22:47 GMT
Last-Modified: Sun, 27 Nov 2022 05:00:44 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dEBKNVKZzqWqc_5RG2fPkzW-pmRbAcON08zEq6oki9p4kavIWa_LBw==
Age: 1323
ocsp.pki.goog/s/gts1d4/i2z-CsId4wM
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/i2z-CsId4wM
IP
Hash da2df535ac9af55cdf4f45a9af136331
eb116f0a5c10748f7477247c2cbae01c3f8c33c0
474d9282c4f8b1d370d22f43dea66dde273456a96d9d06f3947d225701c2bc72
POST /s/gts1d4/i2z-CsId4wM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 314 B IP
Hash 9f018ceccb2163a7089025014a17bf7d
d64256bd91f2d7c1a4f75ba360a0b03154ce1884
8fe7a3e1acbf4b648ba43e1dca8bb8b23cbf570e62598e5c0db1508d9b7f10e3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2965
Cache-Control: max-age=156712
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6383a1b4-13a"
Expires: Tue, 29 Nov 2022 18:32:41 GMT
Last-Modified: Sun, 27 Nov 2022 17:43:16 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
hbopenbid.pubmatic.com/translator?source=prebid-client
204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4527
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://tinyurl.com
cache-control: no-cache, no-store, must-revalidate
date: Sun, 27 Nov 2022 23:00:49 GMT
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 96f4bcc886b8c578f525c9224d59b088
a56b867059fe38c079bb427c8af920b0022a8373
cf3eab6db8890054cfa721d87641ad08470cf6ae12e54c737b69a468f85f4a1f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93024
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6382a763-1d7"
Expires: Tue, 29 Nov 2022 00:51:13 GMT
Last-Modified: Sat, 26 Nov 2022 23:55:15 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Dx6c-gy3Y8LzR9Egji20KJ8cC2sxa25zkysj-XyTrOWpgqxDY9KE-g==
Age: 3358
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:49 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=GVt1B180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQmhjdU1FWEpWUW1WZUVnV2glMkJvYWVuM3VMZTNPeUplbHduQXNNQU1FUU1Y; expires=Fri, 22 Dec 2023 23:00:49 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://tinyurl.com
server-processing-duration-in-ticks: 321733
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2029
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2002
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f39102a6340bb2fd8c961680d4058687
ddb18aa541e869773f4b396894bcaa17a302c1b7
e7b8f4a2903c81045b0795ce1aea1298807b394ea85548f7f97e635e9cf65a2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5767
Cache-Control: max-age=99733
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6382b82f-1d7"
Expires: Tue, 29 Nov 2022 02:43:02 GMT
Last-Modified: Sun, 27 Nov 2022 01:06:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2011
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2002
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 97c405675fd0c82667ebb208ad205b34
ca65a65b525169747722461b58c5c7bed10c8c1d
4492a5c6b7c79e525f4f3801d399fd16afd0499cb4a06fcab442bd71f1486333
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141825
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "63835fa0-1d7"
Expires: Tue, 29 Nov 2022 14:24:34 GMT
Last-Modified: Sun, 27 Nov 2022 13:01:20 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JHasKbggSjLaNfozahzRywRZHQOS3-4xAbEzgD254CcJdCzMRC3nyA==
Age: 4994
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2010
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2029
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8d83c2f515e8067e9bcd8efef94f5e21
0fd66a4ae64e6d8e7a96805a6153b2560df0e4ca
f7c5055f4417ccc288b25921d794775c84184bbaac5a042dad23d89e1ebca2d5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 27 Nov 2022 23:00:49 GMT
Last-Modified: Sun, 27 Nov 2022 22:49:47 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q2MpvBPNtn_43rRuMjBxgy9btEs20VXT-CrQjEYiCGLhPn4RmilJBg==
Age: 662
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2011
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 96f4bcc886b8c578f525c9224d59b088
a56b867059fe38c079bb427c8af920b0022a8373
cf3eab6db8890054cfa721d87641ad08470cf6ae12e54c737b69a468f85f4a1f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93365
Date: Sun, 27 Nov 2022 23:00:49 GMT
Etag: "6382a763-1d7"
Expires: Tue, 29 Nov 2022 00:56:54 GMT
Last-Modified: Sat, 26 Nov 2022 23:55:15 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GNvNg8k99-gx7cFzgcGgwhri688z3j8mjbZloo_2pPCo_JD4xtX_4Q==
Age: 3699
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2029
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:49 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash a3caee13b2768a2322b5128bf8085e4e
08e4daaf190aaac09bcf26b548450089d640b708
e12fde0d4239f6fcdd1a7df2340f9cf25d879495b16482a3e742d6deb6ac36f8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 23:00:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 27 Nov 2022 19:49:59 GMT
Expires: Mon, 28 Nov 2022 19:49:59 GMT
ETag: "08e4daaf190aaac09bcf26b548450089d640b708"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ads.yieldmo.com/exchange/prebid?pbav=7.19.0&p=%5B%7B%22placement_id%22%3A%22tinyurl_right_sidebar_2%22%2C%22callback_id%22%3A%2259ef82e8818153b8%22%2C%22sizes%22%3A%5B%5B160%2C600%5D%2C%5B120%2C600%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%22%2C%22tid%22%3A%22813704b9-fd30-42ea-97c4-451d0e963082%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%2C%7B%22placement_id%22%3A%22tinyurl_leaderboard%22%2C%22callback_id%22%3A%22609a028eab886818%22%2C%22sizes%22%3A%5B%5B970%2C90%5D%2C%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%22%2C%22tid%22%3A%221b48fbf9-6100-4279-8bee-fcdfb447e13c%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%2C%7B%22placement_id%22%3A%22tinyurl_right-multisize-2.0%22%2C%22callback_id%22%3A%22616beffb766120f8%22%2C%22sizes%22%3A%5B%5B300%2C600%5D%2C%5B336%2C280%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0%22%2C%22tid%22%3A%2239ecac80-39bd-4a68-85cf-15c084107ddb%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%5D&page_url=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&bust=1669590049184&dnt=false&description=TinyURL%20is%20the%20original%20URL%20shortener%20that%20shortens%20your%20unwieldly%20links%20into%20more%20manageable%20and%20useable%20URLs.&userConsent=%7B%22gdprApplies%22%3A%22%22%2C%22cmp%22%3A%22%22%7D&us_privacy=1---&pr=&scrd=1&title=TinyURL.com%20-%20shorten%20that%20long%20URL%20into%20a%20tiny%20URL&w=1280&h=939&pubcid=028d3293-dbd2-4611-8162-86c22856a67e&cri_prebid=wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22freestar.com%22%2C%22sid%22%3A%221214%22%2C%22hp%22%3A1%7D%5D%7D&eids=%5B%7B%22source%22%3A%22criteo.com%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA%22%2C%22atype%22%3A1%7D%5D%7D%2C%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22028d3293-dbd2-4611-8162-86c22856a67e%22%2C%22atype%22%3A1%7D%5D%7D%5D
204 No Content 0 B URL HTTP/2 ads.yieldmo.com/exchange/prebid?pbav=7.19.0&p=%5B%7B%22placement_id%22%3A%22tinyurl_right_sidebar_2%22%2C%22callback_id%22%3A%2259ef82e8818153b8%22%2C%22sizes%22%3A%5B%5B160%2C600%5D%2C%5B120%2C600%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%22%2C%22tid%22%3A%22813704b9-fd30-42ea-97c4-451d0e963082%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%2C%7B%22placement_id%22%3A%22tinyurl_leaderboard%22%2C%22callback_id%22%3A%22609a028eab886818%22%2C%22sizes%22%3A%5B%5B970%2C90%5D%2C%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%22%2C%22tid%22%3A%221b48fbf9-6100-4279-8bee-fcdfb447e13c%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%2C%7B%22placement_id%22%3A%22tinyurl_right-multisize-2.0%22%2C%22callback_id%22%3A%22616beffb766120f8%22%2C%22sizes%22%3A%5B%5B300%2C600%5D%2C%5B336%2C280%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0%22%2C%22tid%22%3A%2239ecac80-39bd-4a68-85cf-15c084107ddb%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%5D&page_url=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&bust=1669590049184&dnt=false&description=TinyURL%20is%20the%20original%20URL%20shortener%20that%20shortens%20your%20unwieldly%20links%20into%20more%20manageable%20and%20useable%20URLs.&userConsent=%7B%22gdprApplies%22%3A%22%22%2C%22cmp%22%3A%22%22%7D&us_privacy=1---&pr=&scrd=1&title=TinyURL.com%20-%20shorten%20that%20long%20URL%20into%20a%20tiny%20URL&w=1280&h=939&pubcid=028d3293-dbd2-4611-8162-86c22856a67e&cri_prebid=wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22freestar.com%22%2C%22sid%22%3A%221214%22%2C%22hp%22%3A1%7D%5D%7D&eids=%5B%7B%22source%22%3A%22criteo.com%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA%22%2C%22atype%22%3A1%7D%5D%7D%2C%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22028d3293-dbd2-4611-8162-86c22856a67e%22%2C%22atype%22%3A1%7D%5D%7D%5D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/prebid?pbav=7.19.0&p=%5B%7B%22placement_id%22%3A%22tinyurl_right_sidebar_2%22%2C%22callback_id%22%3A%2259ef82e8818153b8%22%2C%22sizes%22%3A%5B%5B160%2C600%5D%2C%5B120%2C600%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%22%2C%22tid%22%3A%22813704b9-fd30-42ea-97c4-451d0e963082%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%2C%7B%22placement_id%22%3A%22tinyurl_leaderboard%22%2C%22callback_id%22%3A%22609a028eab886818%22%2C%22sizes%22%3A%5B%5B970%2C90%5D%2C%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%22%2C%22tid%22%3A%221b48fbf9-6100-4279-8bee-fcdfb447e13c%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%2C%7B%22placement_id%22%3A%22tinyurl_right-multisize-2.0%22%2C%22callback_id%22%3A%22616beffb766120f8%22%2C%22sizes%22%3A%5B%5B300%2C600%5D%2C%5B336%2C280%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222662464007037722661%22%2C%22gpid%22%3A%22%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0%22%2C%22tid%22%3A%2239ecac80-39bd-4a68-85cf-15c084107ddb%22%2C%22auctionId%22%3A%228c785efa-6cd7-4c27-be8f-fa518bdf3c39%22%7D%5D&page_url=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&bust=1669590049184&dnt=false&description=TinyURL%20is%20the%20original%20URL%20shortener%20that%20shortens%20your%20unwieldly%20links%20into%20more%20manageable%20and%20useable%20URLs.&userConsent=%7B%22gdprApplies%22%3A%22%22%2C%22cmp%22%3A%22%22%7D&us_privacy=1---&pr=&scrd=1&title=TinyURL.com%20-%20shorten%20that%20long%20URL%20into%20a%20tiny%20URL&w=1280&h=939&pubcid=028d3293-dbd2-4611-8162-86c22856a67e&cri_prebid=wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22freestar.com%22%2C%22sid%22%3A%221214%22%2C%22hp%22%3A1%7D%5D%7D&eids=%5B%7B%22source%22%3A%22criteo.com%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA%22%2C%22atype%22%3A1%7D%5D%7D%2C%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22028d3293-dbd2-4611-8162-86c22856a67e%22%2C%22atype%22%3A1%7D%5D%7D%5D HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:50 GMT
x-robots-tag: none,NOINDEX,NOFOLLOW
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: POST, GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 378 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP
File type JSON data\012- , ASCII text, with very long lines (378), with no line terminators
Hash 7888aca388bf775fea237228d5c9a899
065aa9ed8fefd8c8ab8043cf3d4b246185cb36c6
c24143b0977a7d696aa30177603c141686be1718496c628f7079be31deebf1a7
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3242
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 27 Nov 2022 23:00:50 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 378
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://tinyurl.com
AN-X-Request-Uuid: 328d5768-7ecd-4d28-b26f-9dcc5faa728b
Set-Cookie: icu=ChgIodc0EAoYASABKAEwotiPnAY4AUABSAEQotiPnAYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 25-Feb-2023 23:00:50 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=7008567069645185713; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 25-Feb-2023 23:00:50 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
tlx.3lift.com/header/auction?lib=prebid&v=7.19.0&referrer=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tmax=1200&us_privacy=1---
200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=7.19.0&referrer=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tmax=1200&us_privacy=1---
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=7.19.0&referrer=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tmax=1200&us_privacy=1--- HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2644
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-width,sec-ch-ect,user-agent,sec-ch-downlink,sec-ch-ua-mobile,sec-ch-save-data,sec-ch-device-memory,sec-ch-dpr,sec-ch-ua-full-version,sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-viewport-width,sec-ch-ua-platform,sec-ch-viewport-height,sec-ch-rtt,sec-ch-ua-arch,sec-ch-ua,sec-ch-ua-bitness,sec-ch-prefers-color-scheme
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5c8551591e515d9029e8c9a29804eecb
1298f0c1b78880a93b57d06eeecddc8f668208b9
87bd2ac1ed0fcd041651ce64766499da60cc349352b42f5bf28ace8ef647a72a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 23:00:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 01:56:51 GMT
Expires: Sat, 03 Dec 2022 01:56:50 GMT
Etag: "1298f0c1b78880a93b57d06eeecddc8f668208b9"
Cache-Control: max-age=441959,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770e7b73bee4b50b-OSL
grid.bidswitch.net/hbjson
200 OK 50 B URL HTTP/2 grid.bidswitch.net/hbjson
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash aeeea25d5889195ba946046d0b95153f
60ff3675f7b81cdd416c1143417dc193b5b433e8
1d4576e0e7df6d66cc8de82ef6efaf85d936b7bb19acd6b9b149921fa52d3cbd
POST /hbjson HTTP/1.1
Host: grid.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4270
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: application/json
content-length: 50
access-control-allow-credentials: true
access-control-allow-origin: https://tinyurl.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
colossusssp.com/?c=o&m=multi
200 OK 2 B URL HTTP/1.1 colossusssp.com/?c=o&m=multi
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /?c=o&m=multi HTTP/1.1
Host: colossusssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2545
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 23:00:50 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Origin: https://tinyurl.com
Access-Control-Allow-Credentials: true
ocsp.digicert.com/
200 OK 471 B IP
Hash 11b6b91126d74e2499068a555fd36c7e
67f2cc439bfa8f3d5c1e7bfd885186d7512d59ef
e0a0e355fc504f2e47a2fe27010a9788cf56c96512a1ebf69690884788423cd4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5642
Cache-Control: max-age=160800
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:50 GMT
Etag: "6383a738-1d7"
Expires: Tue, 29 Nov 2022 19:40:50 GMT
Last-Modified: Sun, 27 Nov 2022 18:06:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
cm.adform.net/cookie?redirect_url=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dadform%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Di%26uid%3D%24UID
200 OK 43 B URL HTTP/2 cm.adform.net/cookie?redirect_url=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dadform%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Di%26uid%3D%24UID
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /cookie?redirect_url=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dadform%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Di%26uid%3D%24UID HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 23:00:48 GMT
content-type: image/gif
content-length: 43
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Ftinyurl.com&pubid=0ab198dd-b265-462a-ae36-74e163ad6159
200 OK 736 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Ftinyurl.com&pubid=0ab198dd-b265-462a-ae36-74e163ad6159
IP
File type JSON data\012- , ASCII text, with very long lines (736), with no line terminators
Hash 1911a93942ef8179ac2e940469a3a968
7e7d730d742c25d47f05260dff4af48ea5b19d82
9cd0c52130a2ac95e21959817ca0ad8a7f85c72995e9ecd98e069ff5e01e2135
GET /cdn/prod/config?src=600&u=https%3A%2F%2Ftinyurl.com&pubid=0ab198dd-b265-462a-ae36-74e163ad6159 HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 736
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Sun, 27 Nov 2022 21:41:36 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ssN8WLgPjTX4PeIq40rlLfkj9v1w9JinaxPUOdgTUb2NkEY_JhKgjQ==
age: 4753
X-Firefox-Spdy: h2
cms.quantserve.com/pixel/p-N04C2m09Yy8f8.gif?idmatch=0
302 Found 0 B URL HTTP/2 cms.quantserve.com/pixel/p-N04C2m09Yy8f8.gif?idmatch=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/p-N04C2m09Yy8f8.gif?idmatch=0 HTTP/1.1
Host: cms.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 27 Nov 2022 23:00:50 GMT
content-length: 0
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
location: https://s2s.t13.io/setuid?bidder=quantcastfsx&&uid=YsqbITGakSB5zpUjMsqOJTGcl3N5yJd2MMgSHTlm
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: d=EF4BDQHWJ8nokwA; expires=Sat, 25-Feb-2023 23:00:50 GMT; path=/; domain=.quantserve.com
mc=6383ec22-761f3-7ee4a-14dd1; expires=Thu, 28-Dec-2023 23:00:50 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
d3div1mtym39ic.cloudfront.net/aax2/apstag.js
200 OK 45 kB URL HTTP/2 d3div1mtym39ic.cloudfront.net/aax2/apstag.js
IP
Hash 77f287682b1dd584a9e9bb56803f1446
a92581d32b56f0216d9558abd95880d4a38e2b2f
450c7ef57dae650e05e4f9707ff089d76a0716037e4a6b773635fbfbbcb4798d
GET /aax2/apstag.js HTTP/1.1
Host: d3div1mtym39ic.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tinyurl.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 20:51:50 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 27 Nov 2022 22:04:11 GMT
cache-control: public, max-age=3600
etag: W/"fa24fe2b94a2fc864b1ec67f32e8db32"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PiJmcRzoz7FaxBZBazWQMv8ygV1jarTj38eQoHvYafvpMxJXvzrncg==
age: 3400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 7ec5431f69a2063b5dad28b2db4dc34d
efd4791df23950a1e3e61ac9e28acce025bf4ff2
479d1b02e0496138cbcda06e92c414c6b3a81fdaf06f2c4d68fee1ab005c508e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3135
Cache-Control: max-age=138518
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:50 GMT
Etag: "638359f9-117"
Expires: Tue, 29 Nov 2022 13:29:28 GMT
Last-Modified: Sun, 27 Nov 2022 12:37:13 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
secure.quantserve.com/quant.js
200 OK 27 kB URL HTTP/2 secure.quantserve.com/quant.js
IP
File type Unicode text, UTF-8 text, with very long lines (36525), with LF, NEL line terminators
Hash 350f0d038db422c51a4892e2c245f091
6aa89db0f35a2c66047c51621ecb700ce425a9b7
149aef3aa2622ca4a3535e896ecd6595bd9ef6f81c7da23c2e0259298c0a1eb3
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "nAbmxtqHqaYrwBiADJAeFg=="
expires: Sun, 04 Dec 2022 23:00:50 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 1ca1d42355f54884283ec51700d40c81
dbef806bfa23d041ebf44b596512ab9500bec580
6e1c8a968e37e6dc737fb2e8b7b5e3a5663c3a253075cd29344a368190a6832f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 23:00:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 27 Nov 2022 19:08:32 GMT
Expires: Mon, 28 Nov 2022 19:08:32 GMT
ETag: "dbef806bfa23d041ebf44b596512ab9500bec580"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cs.emxdgt.com/um?ssp=pbs&gdpr=&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Demx_digital%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Db%26uid%3D%24UID
204 No Content 0 B URL HTTP/2 cs.emxdgt.com/um?ssp=pbs&gdpr=&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Demx_digital%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Db%26uid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?ssp=pbs&gdpr=&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Demx_digital%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Db%26uid%3D%24UID HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Sun, 27 Nov 2022 23:00:50 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 87d3b4bbaf74168d1ee04c5634573540
9f730b4cd1ec071713c44c34ca2e81708fe5512c
e739c2ca19ce2c1836d43031e132d133f616f7db8d800c5419711bb72d9ece15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4747
Cache-Control: max-age=86504
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:50 GMT
Etag: "6382887f-139"
Expires: Mon, 28 Nov 2022 23:02:34 GMT
Last-Modified: Sat, 26 Nov 2022 21:43:27 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
static.criteo.net/js/ld/publishertag.prebid.js
200 OK 30 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.js
IP
Hash 7470dad95f786eb9c6e50d423da9e5fb
70e10d42437e182fe45a42fd7038e8e0985bd594
9320c069a21186a740b688880b8e6cfc90df9a735bc220369018e4ed07506d99
GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 23:00:51 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-16294"
expires: Mon, 28 Nov 2022 23:00:51 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f887cd171920e391ec1eddecfb60855a
fe3ad3219554d4b346140a9c63c2e4e674dfd4da
b5a384caf1e5f5d6fff53d95644c91c6a58aa00319d2e13278fbec040d3f54cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6193
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:51 GMT
Last-Modified: Sun, 27 Nov 2022 21:17:38 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ups.analytics.yahoo.com/ups/58690/occ?gdpr=&gdpr_consent=&us_privacy=1---
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58690/occ?gdpr=&gdpr_consent=&us_privacy=1---
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58690/occ?gdpr=&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 23:00:51 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58690/occ?gdpr=&gdpr_consent=&us_privacy=1---&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBCPsg2MCEBX9rwyAhAiMja1DtMiHWUIFEgEBAQE9hWONYwAAAAAA_eMAAA&S=AQAAAvPtCHVTWeGO9QlOItgijUc; Expires=Tue, 28 Nov 2023 05:00:51 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58690/occ?gdpr=&gdpr_consent=&us_privacy=1---&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58690/occ?gdpr=&gdpr_consent=&us_privacy=1---&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58690/occ?gdpr=&gdpr_consent=&us_privacy=1---&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tinyurl.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 23:00:51 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBCPsg2MCEEKeZ9dUZiHCZ-NkLtEEeXEFEgEBAQE9hWONYwAAAAAA_eMAAA&S=AQAAAnVNMq3x12uBlUOT-s7V3F0; Expires=Tue, 28 Nov 2023 05:00:51 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 1d8d294eab8049e4556c74addf3d2567
4d987e313af32189bf2d5657458b1e7d14b403f5
65af17a2d7852b93ee64bbe2020b058d76fec16fccc1fcb8d57071020b2575e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 23:00:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 13:57:49 GMT
Expires: Sat, 03 Dec 2022 13:57:48 GMT
Etag: "4d987e313af32189bf2d5657458b1e7d14b403f5"
Cache-Control: max-age=485215,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770e7b82a8fdb50b-OSL
ssc-cms.33across.com/ps/?m=xch&rt=html&gdpr=&gdpr_consent=&us_privacy=1---&id=zzz000000000002zzz&ru=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3D33across%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Db%26uid%3D33XUSERID33X
204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?m=xch&rt=html&gdpr=&gdpr_consent=&us_privacy=1---&id=zzz000000000002zzz&ru=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3D33across%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Db%26uid%3D33XUSERID33X
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?m=xch&rt=html&gdpr=&gdpr_consent=&us_privacy=1---&id=zzz000000000002zzz&ru=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3D33across%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Db%26uid%3D33XUSERID33X HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP014
date: Sun, 27 Nov 2022 23:00:51 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dadnxs%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Di%26uid%3D%24UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dadnxs%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Di%26uid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dadnxs%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26f%3Di%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs2s.t13.io%252Fsetuid%253Fbidder%253Dadnxs%2526gdpr%253D%2526gdpr_consent%253D%2526us_privacy%253D1---%2526f%253Di%2526uid%253D%2524UID
AN-X-Request-Uuid: 6d1b928e-f12a-4cbc-8018-bd97ec7386b4
Set-Cookie: uuid2=6249845776339948025; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 25-Feb-2023 23:00:53 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs2s.t13.io%252Fsetuid%253Fbidder%253Dadnxs%2526gdpr%253D%2526gdpr_consent%253D%2526us_privacy%253D1---%2526f%253Di%2526uid%253D%2524UID
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs2s.t13.io%252Fsetuid%253Fbidder%253Dadnxs%2526gdpr%253D%2526gdpr_consent%253D%2526us_privacy%253D1---%2526f%253Di%2526uid%253D%2524UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs2s.t13.io%252Fsetuid%253Fbidder%253Dadnxs%2526gdpr%253D%2526gdpr_consent%253D%2526us_privacy%253D1---%2526f%253Di%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tinyurl.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://s2s.t13.io/setuid?bidder=adnxs&gdpr=&gdpr_consent=&us_privacy=1---&f=i&uid=0
AN-X-Request-Uuid: 5316b6c4-2b9d-4de4-8b10-81af101bf156
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156696&us_privacy=1---
200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156696&us_privacy=1---
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?kdntuid=1&p=156696&us_privacy=1--- HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=44108
expires: Mon, 28 Nov 2022 11:16:01 GMT
date: Sun, 27 Nov 2022 23:00:53 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: "623de86a-cf34"
Server: nginx/1.18.0 (Ubuntu)
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Encoding: gzip
Content-Length: 17053
Cache-Control: max-age=86402
Expires: Mon, 28 Nov 2022 23:00:55 GMT
Date: Sun, 27 Nov 2022 23:00:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
ib.adnxs.com/getuid?https://ads.yieldmo.com/v000/sync?userid=$UID&pn_id=an
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://ads.yieldmo.com/v000/sync?userid=$UID&pn_id=an
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://ads.yieldmo.com/v000/sync?userid=$UID&pn_id=an HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fuserid%3D%24UID%26pn_id%3Dan
AN-X-Request-Uuid: 6ff924dd-a223-4d50-81cd-671d1cac0829
Set-Cookie: uuid2=4746071823806753174; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 25-Feb-2023 23:00:53 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
eus.rubiconproject.com/usync.html?us_privacy=1---
200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?us_privacy=1---
IP
ASN #1299 Telia Company AB
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?us_privacy=1--- HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sun, 27 Nov 2022 23:00:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
eb2.3lift.com/sync?us_privacy=1---&
200 OK 37 B URL HTTP/2 eb2.3lift.com/sync?us_privacy=1---&
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sync?us_privacy=1---& HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:53 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash a06a3794e9df77f1de527edaf54cc15f
eeac190433f04c67f4e70fc4676912e3fe17cd2f
f0ae94ef11ef0c5ef7b9f994a13f47bad77e4c42726d76f8518b8fcc43bd07c3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 27 Nov 2022 18:46:49 GMT
Expires: Mon, 28 Nov 2022 18:46:49 GMT
ETag: "eeac190433f04c67f4e70fc4676912e3fe17cd2f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
200 OK 471 B IP
Hash 4dc8061e012690f41cc8e3b60e976494
6e3f3e9a22bf7348c5ecb244cceec16cfcd86cf5
b74d15f2e5d547246f74a267925085cd15fac8a259b0a91029b189c8f24b1b6d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5746
Cache-Control: max-age=167002
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 23:00:53 GMT
Etag: "6383bf0e-1d7"
Expires: Tue, 29 Nov 2022 21:24:15 GMT
Last-Modified: Sun, 27 Nov 2022 19:48:30 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
eus.rubiconproject.com/usync.js
200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP
ASN #1299 Telia Company AB
File type ASCII text, with very long lines (18728)
Hash 33ace7721ece274729a5849f646ef30a
35ec336f9fc48c453e68f5325611855b1dbfd0fd
ac87aa513ac9adc4cabcfe478b90ff88937274434ac3b9d80a0986d486bb791e
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?us_privacy=1---
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Sun, 27 Nov 2022 06:28:52 GMT
Content-Encoding: gzip
Content-Length: 10067
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=26895
Expires: Mon, 28 Nov 2022 06:29:08 GMT
Date: Sun, 27 Nov 2022 23:00:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash d16378133ed86e63dfb65608e8193bc0
dc52c7eb78942220c29b198d53a8212b7de0d398
24c80ffc67d4cb46381ef80c57623b8d49787e8af35a82307572647d4ac18fda
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 01 Dec 2022 19:50:36 GMT
ETag: "dc52c7eb78942220c29b198d53a8212b7de0d398"
Last-Modified: Sun, 27 Nov 2022 19:50:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3136
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770e7b897c54b51b-OSL
biddr.brealtime.com/check.html
200 OK 536 B URL HTTP/1.1 biddr.brealtime.com/check.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (926), with no line terminators
Hash 0033ea2ac7bf71369f3ca914869bd7f4
02cb500ceeafb2659c849f0233a01b1ad54849dc
e15c3b7839bfc0e44b766cc6e09520867e821936580e3cab19c0046a9815ac0e
GET /check.html HTTP/1.1
Host: biddr.brealtime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: WeqF89pYIGWpFNs426rAd5J4pPA0pX7StLc3dP4FJwbYenlb1hONdEOob5jWo4xU9l+FdgGxHIU=
x-amz-request-id: H6ZYF8B5P5AMX1X7
Last-Modified: Tue, 08 Sep 2020 13:51:51 GMT
CF-Cache-Status: HIT
Age: 3881
Expires: Mon, 28 Nov 2022 00:00:53 GMT
Cache-Control: public, max-age=3600
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770e7b898a52b51e-OSL
Content-Encoding: gzip
ads.yieldmo.com/pbcas?us_privacy=1---&gdpr=0&gdpr_consent=&type=iframe
200 OK 279 B URL HTTP/2 ads.yieldmo.com/pbcas?us_privacy=1---&gdpr=0&gdpr_consent=&type=iframe
IP
File type HTML document, ASCII text
Hash 57560984a4a797ece30d88306ab2af2a
c6fe1224a2f44cd98015033ba179fa946cf15e5a
1bb155e76f7d9b32ffe4f11c3849736db4ef18d5bc852097ed5a327f0654dd3a
GET /pbcas?us_privacy=1---&gdpr=0&gdpr_consent=&type=iframe HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:53 GMT
content-type: text/html;charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Cache-Control, Pragma, *
access-control-allow-methods: POST, GET, OPTIONS
pragma: no-cache
set-cookie: yieldmo_id=gee35c49eb90b97ed361%7C1669590053228%7C0%7C; Domain=.yieldmo.com; Expires=Mon, 27-Nov-2023 23:00:53 GMT; Path=/; Secure; SameSite=None; Secure
rptr=rc%3D1160277%7Cadfm%3D1160277%7Cstk%3D1160277%7Can%3D1160277%7Cm%3D1160277; Domain=ads.yieldmo.com; Expires=Mon, 27-Nov-2023 23:00:53 GMT; Path=/; Secure
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fuserid%3D%24UID%26pn_id%3Dan
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fuserid%3D%24UID%26pn_id%3Dan
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fuserid%3D%24UID%26pn_id%3Dan HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ads.yieldmo.com/v000/sync?userid=0&pn_id=an
AN-X-Request-Uuid: 64b19756-8225-49e7-9926-041928b3278b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
x.bidswitch.net/sync?ssp=themediagrid&us_privacy=1---
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=themediagrid&us_privacy=1---
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=themediagrid&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 23:00:53 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=themediagrid&us_privacy=1---
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=4581e45c-a1ce-4f03-ba47-374eba9247e9; path=/; expires=Mon, 27-Nov-2023 23:00:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669590053; path=/; expires=Mon, 27-Nov-2023 23:00:53 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1669590053; path=/; expires=Mon, 27-Nov-2023 23:00:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669590053; path=/; expires=Mon, 27-Nov-2023 23:00:53 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
a.pub.network/core/pubfig/pubfig.messaging.2.36.1.dc9de165af7a72a9a47a976134cea6a7dd5cb882.js
200 OK 76 kB URL HTTP/2 a.pub.network/core/pubfig/pubfig.messaging.2.36.1.dc9de165af7a72a9a47a976134cea6a7dd5cb882.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ade3b1a538a176cad0bde27803913d11
ed0c8dc4613c03c33bf9695198c49a76a236a42e
18faccf24b2faa0a962c154b1a9032e33b86cf907b9ba4e65cdc1348bab45b0b
GET /core/pubfig/pubfig.messaging.2.36.1.dc9de165af7a72a9a47a976134cea6a7dd5cb882.js HTTP/1.1
Host: a.pub.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Cookie: _fsuid=16761bcb-da74-4dcf-95c0-d85d2f8249ab
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:49 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdsKaq5j1uC6qZYTXO7Jgwrn8pTY0WO1eWq8sGMdiatrhLllDUEufsUzqN97IMDyex1wrVbkHSx8ELuOkWZSl3IY-A
x-goog-generation: 1668791818927146
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 235209
content-language: en
x-goog-hash: crc32c=HN+LuQ==, md5=fmyjFSvl6JqGBChHrVa2ww==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 28 Nov 2022 00:00:49 GMT
cache-control: public, max-age=3600
last-modified: Fri, 18 Nov 2022 17:16:58 GMT
etag: W/"7e6ca3152be5e89a86042847ad56b6c3"
cf-cache-status: HIT
age: 356493
vary: Accept-Encoding
server: cloudflare
cf-ray: 770e7b702a39fab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
prebid-match.dotomi.com/match/bounce/current?version=1&networkId=72582&rurl=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dconversant%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26networkId%3D72582%26version%3D1%26f%3Di%26uid%3D
204 No Content 98 B URL HTTP/2 prebid-match.dotomi.com/match/bounce/current?version=1&networkId=72582&rurl=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dconversant%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26networkId%3D72582%26version%3D1%26f%3Di%26uid%3D
IP
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash 35dd0d6e0e0bdfefa1788b7d780a861b
12d298bfac14961e2f158f34078dcb472befa48e
05d0c996bffcb553aeb307ab6065accca0f85c710b749c5865c7d012e7f50043
GET /match/bounce/current?version=1&networkId=72582&rurl=https%3A%2F%2Fs2s.t13.io%2Fsetuid%3Fbidder%3Dconversant%26gdpr%3D%26gdpr_consent%3D%26us_privacy%3D1---%26networkId%3D72582%26version%3D1%26f%3Di%26uid%3D HTTP/1.1
Host: prebid-match.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 27 Nov 2022 23:00:53 GMT
cache-control: no-cache, private, max-age=0, no-store
expires: 0
pragma: no-cache
X-Firefox-Spdy: h2
ads.yieldmo.com/v000/sync?userid=0&pn_id=an
200 OK 43 B URL HTTP/2 ads.yieldmo.com/v000/sync?userid=0&pn_id=an
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /v000/sync?userid=0&pn_id=an HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:53 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?ssp=themediagrid&us_privacy=1---
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=themediagrid&us_privacy=1---
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=themediagrid&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tinyurl.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:53 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
c1.adform.net/serving/cookie/match?CC=1&party=1283
200 OK 35 B URL HTTP/2 c1.adform.net/serving/cookie/match?CC=1&party=1283
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /serving/cookie/match?CC=1&party=1283 HTTP/1.1
Host: c1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 23:00:53 GMT
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP
File type ASCII text, with no line terminators
Hash 6defce7ab84e9aecfdb89b5618dbfe64
ef05ca83d80f5a6f3e39c3996506296a23e49ef5
4d5a581c5f70bacbe5e33311af77e96a68dbcb5479c002ae4d11504314d2bc48
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Sat, 25 Feb 2023 14:07:56 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Sun, 27 Nov 2022 23:00:51 GMT
content-length: 60
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 333f31fe7701d031a5008fda226a330c
aa047540be1eb5f0a60c42fddc7d6dfe23c8874d
1f7aecefe56f99b60aa11caa10d57cd68e4ee86bbfa184137ac46d1831b864ce
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108965
Date: Sun, 27 Nov 2022 23:00:53 GMT
Etag: "6382e3ae-1d7"
Expires: Tue, 29 Nov 2022 05:16:58 GMT
Last-Modified: Sun, 27 Nov 2022 04:12:30 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: z2gagIv60ZwWHOsBo3J2Z3pBv9jTZsfgDEi8IPfsipkb51lpEc2BOw==
Age: 3868
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D08195DEA-D14A-4364-92F9-E685BAEF1196%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D08195DEA-D14A-4364-92F9-E685BAEF1196%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D08195DEA-D14A-4364-92F9-E685BAEF1196%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=128190
expires: Tue, 29 Nov 2022 10:37:23 GMT
date: Sun, 27 Nov 2022 23:00:53 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 3b548e6f66809fd5f09e0c0af49854fb
7f91367e176801af0e706752e2459a2f98b9e09e
cc543afa760a7029b36ce966a28da4a83011ca961058972e33b36d592941eaa8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 16:24:36 GMT
Expires: Sun, 04 Dec 2022 16:24:35 GMT
Etag: "7f91367e176801af0e706752e2459a2f98b9e09e"
Cache-Control: max-age=580421,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770e7b8a3a08b50b-OSL
sync.srv.stackadapt.com/sync?nid=21
302 Found 128 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=21
IP
File type HTML document, ASCII text
Hash 1ed050fce5bf7b6239588499890d32f7
1fce234ea376faa426474620d92ccd66b6070ce8
71e3f97e95160a3956366f17ae394e0726dc8d17221b5cd3a2076021f0824e05
GET /sync?nid=21 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 27 Nov 2022 23:00:53 GMT
Location: https://ads.yieldmo.com/sync?pn_id=stk&userid=c-0v-vaNRrhVMkRwOCbm7VtaKpo&gdpr=&gdpr_consent=
Set-Cookie: sa-user-id=s%3A0-73ed2ffa-f68d-46b8-5532-44703826e6ed.LmWZ8oib9U6SJg3NR8LDN97Jn%2BhSDyiq5Kec70xPhwI; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3Ac-0v-vaNRrhVMkRwOCbm7VtaKpo.EyopndsUARzJp7au5eloqI%2FiXgo8ghxe4fGL0d9kzH0; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 128
Connection: keep-alive
rtb.mfadsrvr.com/sync?ssp=yieldmo
302 Moved Temporarily 0 B URL HTTP/1.1 rtb.mfadsrvr.com/sync?ssp=yieldmo
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=yieldmo HTTP/1.1
Host: rtb.mfadsrvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 27 Nov 2022 23:00:53 GMT
Location: https://rtb.mfadsrvr.com/ul_cb/sync?ssp=yieldmo
Set-Cookie: tuuid=5e2629bf-fcb9-4091-a27c-64a3c6ac3636; path=/; expires=Tue, 26-Nov-2024 23:00:53 GMT; domain=.mfadsrvr.com
c=1669590053; path=/; expires=Tue, 26-Nov-2024 23:00:53 GMT; domain=.mfadsrvr.com
tuuid_lu=1669590053; path=/; expires=Tue, 26-Nov-2024 23:00:53 GMT; domain=.mfadsrvr.com
Content-Length: 0
Connection: keep-alive
ads.yieldmo.com/sync?pn_id=stk&userid=c-0v-vaNRrhVMkRwOCbm7VtaKpo&gdpr=&gdpr_consent=
200 OK 43 B URL HTTP/2 ads.yieldmo.com/sync?pn_id=stk&userid=c-0v-vaNRrhVMkRwOCbm7VtaKpo&gdpr=&gdpr_consent=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?pn_id=stk&userid=c-0v-vaNRrhVMkRwOCbm7VtaKpo&gdpr=&gdpr_consent= HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:53 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=ge7866fee5bcf82e8c51%7C1669590053767%7C0%7C; Domain=.yieldmo.com; Expires=Mon, 27-Nov-2023 23:00:53 GMT; Path=/; Secure; SameSite=None; Secure
ptrstk=c-0v-vaNRrhVMkRwOCbm7VtaKpo; Domain=ads.yieldmo.com; Expires=Mon, 27-Nov-2023 23:00:53 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
rtb.mfadsrvr.com/ul_cb/sync?ssp=yieldmo
200 OK 43 B URL HTTP/1.1 rtb.mfadsrvr.com/ul_cb/sync?ssp=yieldmo
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=yieldmo HTTP/1.1
Host: rtb.mfadsrvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Sun, 27 Nov 2022 23:00:53 GMT
Content-Length: 43
Connection: keep-alive
cmp.quantcast.com/tcfv2/google-atp-list.json
200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/google-atp-list.json
IP
GET /tcfv2/google-atp-list.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 27 Nov 2022 03:00:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 27 Nov 2022 03:00:26 GMT
etag: W/"5e5c32e11030f411462907ffac99a722"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iWf3nRCqlgJMWS8Z7WMxlWw8PMTeDJ2f9ETBYDAy2-Oly47fUGzEZA==
age: 72019
X-Firefox-Spdy: h2
api.floors.dev/sgw/v1/floors
200 OK 0 B URL HTTP/2 api.floors.dev/sgw/v1/floors
IP
POST /sgw/v1/floors HTTP/1.1
Host: api.floors.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tinyurl.com/
Content-Type: application/json
x-api-key: 4e799501-b8b6-4ef1-bad5-225b3dd1aa8d
Origin: https://tinyurl.com
Content-Length: 423
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:49 GMT
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
access-control-allow-methods: ACL, CANCELUPLOAD, CHECKIN, CHECKOUT, COPY, DELETE, GET, HEAD, LOCK, MKCALENDAR, MKCOL, MOVE, OPTIONS, POST, PROPFIND, PROPPATCH, PUT, REPORT, SEARCH, UNCHECKOUT, UNLOCK, UPDATE, VERSION-CONTROL
access-control-max-age: 3600
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Key, Authorization, x-api-key
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000;includeSubDomains;preload;
content-type: application/json
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.hadronid.net/hadron.js?url=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&ref=&_it=freestar&partner_id=474
200 OK 0 B URL HTTP/2 cdn.hadronid.net/hadron.js?url=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&ref=&_it=freestar&partner_id=474
IP
GET /hadron.js?url=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&ref=&_it=freestar&partner_id=474 HTTP/1.1
Host: cdn.hadronid.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:48 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"2280e2148e4ee3c06f679f8fac039778"
last-modified: Fri, 18 Nov 2022 10:57:44 GMT
x-amz-id-2: AlHhfnaYFu7DcAqm/AZXcFZz8Z4At5Hcn9XqhUxeA24L5T6B/l+VTePOXZCvBx0dhJEtzYQ2PVA=
x-amz-request-id: FNK044PCM9Y7VVCR
cache-control: max-age=3600
cf-cache-status: HIT
age: 61
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CZJCwl0XSSRwDmqE0sfov2xy7uNIxkJ%2B%2Bl%2Bc8m9RAvRjUJ9N746e5CR9PljniXA2%2BW3x6DWU1j6CITPkgXT3C3vwLvKN0x%2BBTDv3yzRNwo6Ku%2BycYTvqQEsE7r7JTjJSntM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770e7b6a1af7b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.130.js
200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.130.js
IP
GET /js/ld/publishertag.prebid.130.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: text/javascript
last-modified: Sat, 17 Sep 2022 19:59:55 GMT
etag: W/"6326273b-16120"
expires: Mon, 28 Nov 2022 23:00:50 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=16924&site_id=433298&zone_id=2478238&size_id=9%3B15%3B15&alt_size_ids=8%3B2%2C55%3B10%2C16&us_privacy=1---&rp_schain=1.0,1!freestar.com,1214,1,,,&eid_criteo.com=wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA%5E1&eid_pubcid.org=028d3293-dbd2-4611-8162-86c22856a67e%5E1&ppuid=16761bcb-da74-4dcf-95c0-d85d2f8249ab&rf=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tg_i.name=tinyurl-com&tg_i.domain=tinyurl.com&tg_i.cat=IAB19&tg_i.sectioncat=IAB19&tg_i.pagecat=IAB19&tg_i.page=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tg_i.fs_ad_product=banner&tg_i.pbadslot=%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%3B%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%3B%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0&tk_flint=pbjs_lite_v7.19.0&x_source.tid=813704b9-fd30-42ea-97c4-451d0e963082%3B1b48fbf9-6100-4279-8bee-fcdfb447e13c%3B39ecac80-39bd-4a68-85cf-15c084107ddb&l_pb_bid_id=471a206851a13bd8%3B4804921e57bbc758%3B49d4c86a880f24d8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%3B%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%3B%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0&slots=3&rand=0.5275644263458434
200 OK 0 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=16924&site_id=433298&zone_id=2478238&size_id=9%3B15%3B15&alt_size_ids=8%3B2%2C55%3B10%2C16&us_privacy=1---&rp_schain=1.0,1!freestar.com,1214,1,,,&eid_criteo.com=wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA%5E1&eid_pubcid.org=028d3293-dbd2-4611-8162-86c22856a67e%5E1&ppuid=16761bcb-da74-4dcf-95c0-d85d2f8249ab&rf=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tg_i.name=tinyurl-com&tg_i.domain=tinyurl.com&tg_i.cat=IAB19&tg_i.sectioncat=IAB19&tg_i.pagecat=IAB19&tg_i.page=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tg_i.fs_ad_product=banner&tg_i.pbadslot=%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%3B%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%3B%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0&tk_flint=pbjs_lite_v7.19.0&x_source.tid=813704b9-fd30-42ea-97c4-451d0e963082%3B1b48fbf9-6100-4279-8bee-fcdfb447e13c%3B39ecac80-39bd-4a68-85cf-15c084107ddb&l_pb_bid_id=471a206851a13bd8%3B4804921e57bbc758%3B49d4c86a880f24d8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%3B%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%3B%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0&slots=3&rand=0.5275644263458434
IP
GET /a/api/fastlane.json?account_id=16924&site_id=433298&zone_id=2478238&size_id=9%3B15%3B15&alt_size_ids=8%3B2%2C55%3B10%2C16&us_privacy=1---&rp_schain=1.0,1!freestar.com,1214,1,,,&eid_criteo.com=wC6Ck185Z2pBb3pYdiUyQmNkSlRzcWZnUCUyQnVHQXlKaU9hN21BSFhDaXdVZ1JFeWlTTjJFdEJaVmIweGVqM2ZxblU5Wm5zSmxOQWFJWGxmOE9mNFR3SSUyQnpLSDYxZyUzRCUzRA%5E1&eid_pubcid.org=028d3293-dbd2-4611-8162-86c22856a67e%5E1&ppuid=16761bcb-da74-4dcf-95c0-d85d2f8249ab&rf=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tg_i.name=tinyurl-com&tg_i.domain=tinyurl.com&tg_i.cat=IAB19&tg_i.sectioncat=IAB19&tg_i.pagecat=IAB19&tg_i.page=https%3A%2F%2Ftinyurl.com%2F2bcg2erkbaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru%26ibi%3Dcom.example.ios%26ifl%3Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2F__%2Fauth%2Faction%3FapiKey%253DAIzaSyD8YaWiTh5v0x5EjmHA3drjmJr-Dp0-F5Q%2526mode%253DsignIn%2526oobCode%253DEFButp-ohwjAiti-faojv-JqBYqV7SknPEIf_VL7ZOcAAAGEq_YAOA%2526continueUrl%253Dhttps%3A%2F%2Fw95k-503ae.firebaseapp.com%2FfinishSignUp%3FcartId%25253D19awjgxg%252526linkPP%25253DaHR0cHM6Ly9vay5tZS9xMEw2MQ%25253D%25253D%2526lang%253Dru&tg_i.fs_ad_product=banner&tg_i.pbadslot=%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%3B%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%3B%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0&tk_flint=pbjs_lite_v7.19.0&x_source.tid=813704b9-fd30-42ea-97c4-451d0e963082%3B1b48fbf9-6100-4279-8bee-fcdfb447e13c%3B39ecac80-39bd-4a68-85cf-15c084107ddb&l_pb_bid_id=471a206851a13bd8%3B4804921e57bbc758%3B49d4c86a880f24d8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F15184186%2Ftinyurl_right_sidebar_2%2Ftinyurl_right_sidebar_2%3B%2F15184186%2Ftinyurl_leaderboard%2Ftinyurl_leaderboard%3B%2F15184186%2Ftinyurl_right-multisize-2.0%2Ftinyurl_right-multisize-2.0&slots=3&rand=0.5275644263458434 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tinyurl.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LAZYT3FC-1I-92DU; Domain=.rubiconproject.com; Path=/; Expires=Mon, 27-Nov-2023 23:00:49 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrXuF/TwhnH3+9DtVM30fCgsc7/zDE2e/gGLM2fR95sYcoDfHIOQivO4ICd6Q+AmJtaZo7MRB/uMtAPlTu0R9RN; Domain=.rubiconproject.com; Path=/; Expires=Mon, 27-Nov-2023 23:00:49 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LAZYT3FC-1I-92DU; Domain=.rubiconproject.com; Path=/; Expires=Mon, 27-Nov-2023 23:00:49 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrXuF/TwhnH3+9DtVM30fCgsc7/zDE2e/gGLM2fR95sYcoDfHIOQivO4ICd6Q+AmJtaZo7MRB/uMtAPlTu0R9RN; Domain=.rubiconproject.com; Path=/; Expires=Mon, 27-Nov-2023 23:00:49 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LAZYT3FC-1I-92DU; Domain=.rubiconproject.com; Path=/; Expires=Mon, 27-Nov-2023 23:00:49 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrXuF/TwhnH3+9DtVM30fCgsc7/zDE2e/gGLM2fR95sYcoDfHIOQivO4ICd6Q+AmJtaZo7MRB/uMtAPlTu0R9RN; Domain=.rubiconproject.com; Path=/; Expires=Mon, 27-Nov-2023 23:00:49 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
id.hadron.ad.gt/api/v1/pbhid?partner_id=474&_it=prebid
200 OK 0 B URL HTTP/2 id.hadron.ad.gt/api/v1/pbhid?partner_id=474&_it=prebid
IP
GET /api/v1/pbhid?partner_id=474&_it=prebid HTTP/1.1
Host: id.hadron.ad.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: application/json
server: nginx/1.20.0
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
vary: Origin
content-encoding: gzip
X-Firefox-Spdy: h2
id.hadron.ad.gt/v1/hadron.json?_it=prebid&partner_id=474&sync=0&domain=tinyurl.com&url=
200 OK 0 B URL HTTP/2 id.hadron.ad.gt/v1/hadron.json?_it=prebid&partner_id=474&sync=0&domain=tinyurl.com&url=
IP
OPTIONS /v1/hadron.json?_it=prebid&partner_id=474&sync=0&domain=tinyurl.com&url= HTTP/1.1
Host: id.hadron.ad.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://tinyurl.com/
Origin: https://tinyurl.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: application/json
server: nginx/1.20.0
cache-control: public,max-age=30
access-control-allow-origin: https://tinyurl.com
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
vary: Origin
content-encoding: gzip
X-Firefox-Spdy: h2
a.pub.network/core/pubfig/pubfig.engine.4.36.1.dc9de165af7a72a9a47a976134cea6a7dd5cb882.js
200 OK 0 B URL HTTP/2 a.pub.network/core/pubfig/pubfig.engine.4.36.1.dc9de165af7a72a9a47a976134cea6a7dd5cb882.js
IP
GET /core/pubfig/pubfig.engine.4.36.1.dc9de165af7a72a9a47a976134cea6a7dd5cb882.js HTTP/1.1
Host: a.pub.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Cookie: _fsuid=16761bcb-da74-4dcf-95c0-d85d2f8249ab
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:48 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycduui6M3eDBmaBuZ3nnWc46ipq_jv5TWXZZ7qMwGAizUJEC7kr6iRtsw-LjmVamdPHrnKpUiz2_ybSQIaubnuAnxgPG7ZwCk
x-goog-generation: 1668791814721400
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 457027
content-language: en
x-goog-hash: crc32c=m11fMA==, md5=xVUETRyFmCOTOrXb1aKqkA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 28 Nov 2022 00:00:48 GMT
cache-control: public, max-age=3600
last-modified: Fri, 18 Nov 2022 17:16:54 GMT
etag: W/"c555044d1c859823933ab5dbd5a2aa90"
cf-cache-status: HIT
age: 356493
vary: Accept-Encoding
server: cloudflare
cf-ray: 770e7b68bdf1fab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/cmp2.js?referer=tinyurl.com
200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/cmp2.js?referer=tinyurl.com
IP
GET /tcfv2/cmp2.js?referer=tinyurl.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Thu, 10 Nov 2022 18:23:42 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
cache-control: max-age=3600
date: Sun, 27 Nov 2022 22:51:31 GMT
etag: W/"37fdfbac0c6ef64496f7d86258c934a8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: c6fh2zDMj8uPqqNFnqiDRjqSe__GUwH-39s1Q7Smt2LBp57Lb28fbA==
age: 558
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:50 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: NzzDMQRIzsXNjVR7/B6e4yrrDcazBk60q2/S2QH7YxwqiaX7/iQchWRPdgPY0BswypKEPiqaJg8=
x-amz-request-id: EK159HTWSS7GNBQ8
last-modified: Thu, 24 Nov 2022 12:48:29 GMT
etag: W/"9ee82d693d1e83b3a37ee20226716f78"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 2837
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 770e7b786e90b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 18 Nov 2022 03:05:15 GMT
x-amz-version-id: vkCJAv2LVCiDvkjoOZrS5s9fefeFFUOq
server: AmazonS3
content-encoding: gzip
date: Sun, 27 Nov 2022 03:10:30 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uYF5o7gZaCEe0frrp9sXZVWt_rFl0X34S3psrtbtz-6FA_Gi7hUPpw==
age: 71421
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 27 Nov 2022 01:57:21 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RCozB9mpivvPw1ordFRWKjfTQLhssJhWE9NhQeJQHzM6IG8HECRShA==
age: 75808
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=156696&sc=1&u=08195DEA-D14A-4364-92F9-E685BAEF1196&rs=3&gdpr=0&gdpr_consent=&us_privacy=1---
200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=156696&sc=1&u=08195DEA-D14A-4364-92F9-E685BAEF1196&rs=3&gdpr=0&gdpr_consent=&us_privacy=1---
IP
GET /AdServer/SPug?o=1&p=156696&sc=1&u=08195DEA-D14A-4364-92F9-E685BAEF1196&rs=3&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 23:00:52 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftinyurl.com%2F&domain=tinyurl.com&cw=1&lsw=1
200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftinyurl.com%2F&domain=tinyurl.com&cw=1&lsw=1
IP
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Ftinyurl.com%2F&domain=tinyurl.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://tinyurl.com
Connection: keep-alive
Referer: https://tinyurl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 23:00:48 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://tinyurl.com
server-processing-duration-in-ticks: 1307916
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
104.20.139.65
52.41.91.37
185.89.210.212
104.18.21.226
31.13.72.12
23.36.76.226
185.64.190.77
178.250.2.146
37.157.6.233
54.228.183.149
63.215.202.140