r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9f3cf7e36f17a535e53e5213c02cf2b4
e65acbc03135ce135b9e91b4f74b3e1439faa6f6
a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9528
Expires: Sun, 18 Dec 2022 10:02:49 GMT
Date: Sun, 18 Dec 2022 07:24:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 460af93786e1eaa666f135e6c3fdc634
bc8aeba36225c79718f5de73d79928fe817c5490
471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7894
Expires: Sun, 18 Dec 2022 09:35:35 GMT
Date: Sun, 18 Dec 2022 07:24:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 18 Dec 2022 06:45:25 GMT
content-type: application/json
age: 2316
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bcade8542361774f13ecd22557ff8fb8
5e67a3753b0856c765f3b17f1742d3ed684ffb6d
647f8d9d3d1170e60a60e15fdfd9b59445feb56a6ce9d9bb2fa4720f0bfc3a14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "647F8D9D3D1170E60A60E15FDFD9B59445FEB56A6CE9D9BB2FA4720F0BFC3A14"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9016
Expires: Sun, 18 Dec 2022 09:54:17 GMT
Date: Sun, 18 Dec 2022 07:24:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: k9xpC3Gd2/g6EBbwT8vCCvjEnzvPFFoNPwWH9eA8ugy2LNMNzInkEVHJwy9VxYpqZhU8GefdgsY=
x-amz-request-id: W2QYZSK5YXT50X8C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 18 Dec 2022 06:54:00 GMT
age: 1801
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
a.browserspeed.support/
52.34.232.110302 Moved Temporarily 49 B IP 52.34.232.110:0
File type HTML document, ASCII text
Hash 6ef60ba1cb1350ea155d7bb021c05f88
859cdc65c36677332cc4064b4448b2b3d118ea56
56ffc0a154ec5b79dfa63d116ed0a399b2457f62db9c4e48a6cf2f5003ed83e7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: a.browserspeed.support
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: awselb/2.0
Date: Sun, 18 Dec 2022 07:24:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 49
Connection: keep-alive
Set-Cookie: tuid=4954702d-4bf3-48e6-866d-ecfc5b702b69; Path=/; Domain=a.usbrowserspeed.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
Location: https://www.speedtest.net/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 07:24:01 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 18 Dec 2022 06:33:23 GMT
age: 3039
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2d1752cd6eb7f48e7494373911a5b996
43d9c23c4d03cccce0fc478f0e12c0874dc762fd
aded7fd1d638c001b0b462fdfeee0549d2ed61b51ced88eb83690e2e20ed36d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1876
Cache-Control: max-age=94445
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:02 GMT
Etag: "639d86ab-1d7"
Expires: Mon, 19 Dec 2022 09:38:07 GMT
Last-Modified: Sat, 17 Dec 2022 09:06:51 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.156.115101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.156.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JUriK/EZwS360w+Ieq9DjA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jFx0ANbtBMRA7niHbFQ5HLs8hxo=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 84259a4cd35476ef0c0c3c47023ce401
d1c15ebdd1aeac885dbea61af124e862eba54e7a
faa406cc6eb0e50c84bf2ed24df974387556e6d073c592500b08bf61f2e5136e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2925
Cache-Control: max-age=112057
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:03 GMT
Etag: "639dc75f-117"
Expires: Mon, 19 Dec 2022 14:31:40 GMT
Last-Modified: Sat, 17 Dec 2022 13:42:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
www.speedtest.net/
104.16.209.12200 OK 35 kB IP 104.16.209.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22371)
Hash 6cda3e055c36b74ae4e2b3f651fd015c
ccde014ef3aba80137f28d0e88aa171b66d1da2e
abb8e2c21db212aa2847dd4e27087845c42148c152eaf4419bb4f05ea5ffa88c
GET / HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:03 GMT
content-type: text/html; charset=utf-8
content-length: 35067
cache-control: private
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
etag: W/"1d69c-5Y6RGTVJezhYg4WNi2kFU9qaB/8"
content-encoding: gzip
accept-ranges: bytes
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=Y3W4qf5dx6EdNr2mqkDCkPF9N8KQsVSBlFmRckS9kJI-1671348243-0-AZ+eeyNFKYtA5Mw6tIKG9Xv8ZPgRHOJtsQK0vAORK5Bx/pJhedyVtCK0gyREU5Z7yu+W7XkTpsr1cMbjYquvoYk=; path=/; expires=Sun, 18-Dec-22 07:54:03 GMT; domain=.www.speedtest.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77b628178888b4f4-OSL
X-Firefox-Spdy: h2
b.cdnst.net/styles/main.a272578758de0452a2dda11a5ad32a75.css
151.101.194.219200 OK 24 kB URL HTTP/2 b.cdnst.net/styles/main.a272578758de0452a2dda11a5ad32a75.css
IP 151.101.194.219:0
File type Unicode text, UTF-8 text, with very long lines (40636)
Hash 3f0c744e918d2a270762120479172f9e
e2b332e9244dd38b07e95d33e63cb946fc088918
e7af63fe5f85dc1f67d2ef07a0ecb7b753ac31e778c755e772baf4cfedfe16c1
GET /styles/main.a272578758de0452a2dda11a5ad32a75.css HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"229bf-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
content-length: 23635
X-Firefox-Spdy: h2
b.cdnst.net/images/group-black/groupblack-white_on_black-1x.png
151.101.194.219200 OK 1.9 kB URL HTTP/2 b.cdnst.net/images/group-black/groupblack-white_on_black-1x.png
IP 151.101.194.219:0
File type PNG image data, 114 x 47, 8-bit gray+alpha, non-interlaced\012- data
Hash 3cc9efdb28931e49be68fa4a0b46f406
b441662754ddf61d834775702f7a8cb1e6c6c4a4
b76abca4ceaaf1788e86a4c3f6794567c085cb1b44220876d8953fcc3df0ac06
GET /images/group-black/groupblack-white_on_black-1x.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"75b-184cfd83948"
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
content-length: 1883
X-Firefox-Spdy: h2
b.cdnst.net/javascript/amazon.js
151.101.194.219200 OK 326 B URL HTTP/2 b.cdnst.net/javascript/amazon.js
IP 151.101.194.219:0
Hash 31a960a9b6caf9c52d50bf454a1f2ca8
b5d55701558c3eb68314fd7047205127067166fe
18760464a0ba60759418e348d6d059454c832ad9e6a1c8bf638b92c38be7dac3
GET /javascript/amazon.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"227-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
content-length: 326
X-Firefox-Spdy: h2
b.cdnst.net/javascript/ads/ad.js
151.101.194.219200 OK 45 B URL HTTP/2 b.cdnst.net/javascript/ads/ad.js
IP 151.101.194.219:0
File type ASCII text, with no line terminators
Hash e12a754e35639d5ed2a61f8b748b4f72
542f4ae4b82be75d0112e3f56a9b74b77d576722
5aa7a00356136259ec912f1b212a7782783e8a4488dabdc073a36ebcf706d73b
GET /javascript/ads/ad.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"19-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
content-length: 45
X-Firefox-Spdy: h2
zdstatic.speedtest.net/jst/zdconsent.js
23.33.119.35200 OK 16 kB URL HTTP/2 zdstatic.speedtest.net/jst/zdconsent.js
IP 23.33.119.35:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21276)
Hash 201a1de58f7cc8a4bae928100a000493
e50d25a1211f0f746948fd861aeaa88351efd8be
7381b8409dab5919427b5b9b8201816e0bf725e6247c1ee1323a27eefbf885a3
GET /jst/zdconsent.js HTTP/1.1
Host: zdstatic.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 14:46:15 GMT
etag: "d671f12d5ad53b24ddd17889d912928a"
accept-ranges: bytes
content-type: application/javascript
content-encoding: gzip
content-length: 15622
cache-control: max-age=1605
expires: Sun, 18 Dec 2022 07:50:48 GMT
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
b.cdnst.net/fonts/HCo_fonts.css
151.101.194.219200 OK 112 kB URL HTTP/2 b.cdnst.net/fonts/HCo_fonts.css
IP 151.101.194.219:0
File type ASCII text, with very long lines (35408)
Size 112 kB (111462 bytes)
Hash a058224608f9b70a4f0502d4dee2d4e0
bc6e3a5bf3439f67f8639361ecb35bd9cbcedafb
278a508174af4db3bae86cc5001fd8b3c7a9728c12db1c3f7e2504656cb6e204
GET /fonts/HCo_fonts.css HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"24005-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
content-length: 111462
X-Firefox-Spdy: h2
b.cdnst.net/javascript/speedtest-main.js?v=4b580f535aa38d2c4bc4b13de35de1fa
151.101.194.219200 OK 856 kB URL HTTP/2 b.cdnst.net/javascript/speedtest-main.js?v=4b580f535aa38d2c4bc4b13de35de1fa
IP 151.101.194.219:0
File type ASCII text, with very long lines (65464)
Size 856 kB (855665 bytes)
Hash bc1f677f4bfe335c9274917804da43dd
24dbb1fcf02fa746c39fad759a07b12530256920
dd544144b4bbba68ce6bde1e28b5e825f7f4ff2ed07a4c95a00f354840e1e1d8
GET /javascript/speedtest-main.js?v=4b580f535aa38d2c4bc4b13de35de1fa HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:44:51 GMT
etag: W/"312c64-184cfdd32b8"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
content-length: 855665
X-Firefox-Spdy: h2
b.cdnst.net/fonts/gaugemono-regular-webfont.woff2
151.101.194.219200 OK 4.2 kB URL HTTP/2 b.cdnst.net/fonts/gaugemono-regular-webfont.woff2
IP 151.101.194.219:0
File type Web Open Font Format (Version 2), TrueType, length 4240, version 1.0\012- data
Hash ccd3711eb47a7fa5244eb22d02d4a605
df7fb091a8fd957509c81ba54144c8b123569cb8
1a00aa81f6ca32a692772c6a8bc908b62198154ce3eef1eeef346d80100b8e04
GET /fonts/gaugemono-regular-webfont.woff2 HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://b.cdnst.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"1090-184cfd83948"
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
access-control-allow-origin: *
content-length: 4240
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 10a3a852ef62dc4d4ccbbf6ff396688b
953e40775326102f6c3fc09a18a7039239df656f
30872c631302c914fc93b789892b200beb6284a3ba6753e1ee7f909a1231f2dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-K7SNBZ
172.217.21.168200 OK 90 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K7SNBZ
IP 172.217.21.168:0
File type ASCII text, with very long lines (24354)
Hash 5d7f8ee0b4b8aa07d8229c1d4b4bffe6
31da61624d53565f350dfa9a5d2fa205b5327412
01525dd746cebc233e4996e5738b6c3e8eac2b1cfccbc177002e4be0244077f7
GET /gtm.js?id=GTM-K7SNBZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Dec 2022 07:24:03 GMT
expires: Sun, 18 Dec 2022 07:24:03 GMT
cache-control: private, max-age=900
last-modified: Sun, 18 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89532
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/159017/2865/pwt.js
2.18.172.200200 OK 80 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/159017/2865/pwt.js
IP 2.18.172.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4faf89a7cdd5cf9fe2128742a667c276
eab04696fb93e47fd4680c9dc51fee62675bc96c
c3a9c7908fee321f54f16ef8a316f8336584a4e5b3c1ad9bc73558e3b4515518
GET /AdServer/js/pwt/159017/2865/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 17 Aug 2021 18:53:17 GMT
etag: "10e1230-3f41a-5c9c5d4a9bb4b"
server: Apache
unused62: 8096267
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: text/javascript
content-length: 80189
cache-control: public, max-age=106659
expires: Mon, 19 Dec 2022 13:01:42 GMT
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
b.cdnst.net/javascript/prebid.6.18.0.min.js
151.101.194.219200 OK 85 kB URL HTTP/2 b.cdnst.net/javascript/prebid.6.18.0.min.js
IP 151.101.194.219:0
File type ASCII text, with very long lines (65423)
Hash 0c181b01f40c7cfbf630a33bb1dc564f
4dabcf43f36a752173763bd317feb57fe95e883a
9c338a174f8a51846cedf933dbd41df93e6ba86714c247d331e503f42948cbba
GET /javascript/prebid.6.18.0.min.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"4422f-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:03 GMT
vary: Accept-Encoding
content-length: 84764
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12633
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 07:24:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12633
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 07:24:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12633
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 07:24:03 GMT
Connection: keep-alive
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 3.2 kB URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
Hash a5ae13162fe25b48316f13d08b261481
275d381c675b8f29c97ba6c252cb3533c778fd47
2ffcfed8bc6f0adb11dcaa9b6335adb460675a5ea544877f7456da419b95abca
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 07 Dec 2022 02:43:04 GMT
x-amz-version-id: KO0V33_zzBQMkGMaMpLupHqINiAUum0D
server: AmazonS3
content-encoding: gzip
date: Sat, 17 Dec 2022 12:01:22 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C1Q2I_HnZYLSF1ODNdzf4tWXWXyQnrnpoAwdL9Tms1sNvbiFf5NS0A==
age: 85564
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F345d372d-49ec-4387-99c1-d3cf9f5906f5.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F345d372d-49ec-4387-99c1-d3cf9f5906f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e9d18ca29ccd52a2d503336cd466b00d
d9efd68382ccd3309c943690088cca4e5934ecff
de202292f0930aaaf434fc9b54652707b9da5ef7ccd7a1f888d3bf46755874be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F345d372d-49ec-4387-99c1-d3cf9f5906f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5439
x-amzn-requestid: 52d18b91-20fd-417a-9fb2-2d039e05e6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2Z2HCXoAMFsqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3772-2f8d69d42408b30e4725763a;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:41:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g476TsOSjA6Kp4ghVgWGp3OkzfigI1a8JzcvpwTrdHF1QC3PeaoHxg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:52:23 GMT
etag: "d9efd68382ccd3309c943690088cca4e5934ecff"
content-type: image/jpeg
age: 34300
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0973dd05c36d5b21a858d6a6bec71334
e5bc1af376e6cd71fe3be45b393ceb1f61434891
e46922306d68a94ce397d96c12c5ddfd0341e139369cab988a6c57b57a9bd0ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12c4c2232b6d09e9085f0214b3260c1e
a24f8e949a2f2a973fe2dd5af994cd970d37f13a
000475ed7d0aab9a7dab3e25f0a29f82552739fea99f98cbf5131282d0db7d63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10670
x-amzn-requestid: d72e1904-caf4-4c72-a811-d1bde023f4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11JGCsIAMFRDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3687-7789040d71253d00378f9162;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NWh-ecaQXJITj6VyK4qutXz95L557E8kCDxs-fNBRmkjUk_ZG0Oygg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:39:05 GMT
age: 35099
etag: "a24f8e949a2f2a973fe2dd5af994cd970d37f13a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Dg3c2lWr1FbFUalH5QB05VrQIkpt3LNuUM-VxJZiaXy3nJu-cfd5jg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:39:05 GMT
age: 35099
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed374d0c34e8b2e15f08a6479a4f45e7
5db9e59699048998f0685e940640eae19ef11c8e
9933854830be796a87cfe44b6b8336294e2d3dbbe3205f267720aca6968c3a21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12125
x-amzn-requestid: e44faa15-1dfd-4bc0-bdfb-307c3de2755d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2QPFZAIAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3734-33d636210a1e24742ee71187;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JHDfcd35b-bHZm6oayBIN5NDt6ZeGygBfvu7IKU18wFiLHMGEPQPkQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 22:02:19 GMT
etag: "5db9e59699048998f0685e940640eae19ef11c8e"
content-type: image/jpeg
age: 33705
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada04738696f861648635c9ba98841e4
ce644cd4349d88aa7c24b2503b0b18b444061639
e5cee777efbf1d8a0f95f6cce71199e5f016a91f90cf0afe38bc86654b9d730d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8696
x-amzn-requestid: c897aeed-a082-46a1-965f-39e8c763cb05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10ZH3jIAMF0gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-548ac80840737a20743980f5;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xFbmIbrDz7MnhaF8tqHeTDzjrwbsP7SbmYb_OLLWZPb7poAmecfDew==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:39:05 GMT
age: 35099
etag: "ce644cd4349d88aa7c24b2503b0b18b444061639"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4a5f117-9f4b-424b-9fa6-90cc78f66709.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4a5f117-9f4b-424b-9fa6-90cc78f66709.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6272c50d983ad7a1dc4ffdac8af30bd3
f85d27fe6f179b734ebc693de64ad2c94ad4cf13
fdb3764c309f38b2b7d4fc0020897f011daad7ce120dace7dffeaaaed6ffdc98
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4a5f117-9f4b-424b-9fa6-90cc78f66709.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7839
x-amzn-requestid: 173ca9af-c95f-4a33-a9af-ca2df02168f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11nFC0IAMFl-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e368a-276da17e300ced9a5ee66b65;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: NDsOrtgy2htSe-dnWpuyLIbZJdGikuP6LMLql2VuXCNXR2EkLtbRvA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:50:33 GMT
age: 34411
etag: "f85d27fe6f179b734ebc693de64ad2c94ad4cf13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagservices.com/tag/js/gpt.js
142.250.74.162200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (40253)
Hash a2f96a94326697776c299ac15105a634
9b66938127d4cc4eda070145718eb8462e06e3ce
dbe1b417d50953ead625b642c4e673eeb642b3b36e8ae18c79a045c0402d4d82
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27544
date: Sun, 18 Dec 2022 07:24:04 GMT
expires: Sun, 18 Dec 2022 07:24:04 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1424 / 360 of 1000 / last-modified: 1670587582"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0973dd05c36d5b21a858d6a6bec71334
e5bc1af376e6cd71fe3be45b393ceb1f61434891
e46922306d68a94ce397d96c12c5ddfd0341e139369cab988a6c57b57a9bd0ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
23.36.79.26200 OK 29 kB URL HTTP/2 cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
IP 23.36.79.26:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 74db3e86259e17fd9ab8483b5e4ca7c5
590b9fb0577f126cd87c886197e64bdc0d8fa6ba
e95958e6818e67b68de70afef88492f09735add883fbbc64d5d48edf47a63a2f
GET /js/z0WVjCBSEeGLoxIxOQVEwQ.min.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0vXuFK41YCw5EMrTO0NntsE00yHSomjYv5q46YMvQ7xG7tHojR1x8Cx+0hJFl2p0lmBf9CQc4gY=
x-amz-request-id: SR929QA15CAZGGXR
last-modified: Wed, 14 Dec 2022 10:51:51 GMT
x-amz-version-id: JuNqguPqUP_S228j7s95GVnD6Bvkdegn
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Mon, 19 Dec 2022 07:24:04 GMT
date: Sun, 18 Dec 2022 07:24:04 GMT
content-length: 28869
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6ad021c6e32ec67d46660866532972fa
b8f928b144e5ed61f167329b98a870fb6ad0c063
07a7e8f98b1ad20ff5156468e0b252fc7b38efa8ea8bc318efbf11659756544f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2636
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:04 GMT
Last-Modified: Sun, 18 Dec 2022 06:40:08 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
secure-us.imrworldwide.com/v60a.js
34.248.105.76301 Moved Permanently 134 B URL HTTP/2 secure-us.imrworldwide.com/v60a.js
IP 34.248.105.76:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /v60a.js HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Sun, 18 Dec 2022 07:24:04 GMT
content-type: text/html
content-length: 134
location: https://cdn-gl.imrworldwide.com:443/v60a.js
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 59d510ddc8d7b510e90169b7d26f362c
f3db9fd0ee851797e3213400fa78ac5697163e02
2c076107b268543bee8b336642b885638d42e92a971eb3d5c4d9396b5a0b5d25
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140996
Date: Sun, 18 Dec 2022 07:24:04 GMT
Etag: "639e30ce-1d7"
Expires: Mon, 19 Dec 2022 22:34:00 GMT
Last-Modified: Sat, 17 Dec 2022 21:12:46 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GgKqvtYsxXWvDXO5sf9Zg6S2flj-LxvOpi6Z2J5WiLXKIJH5GwPoqg==
Age: 4874
c.amazon-adsystem.com/cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net
54.230.111.210200 OK 385 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with very long lines (385), with no line terminators
Hash b5fd7d5c611ff86d1676b6b21747caea
bdedbfd5e13c6e6e23b92e60fcee8d79364d7919
914c000aa08337760c704cc5feb9e74b9ec19e7da927332e8247297cec57fe88
GET /cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 385
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Sun, 18 Dec 2022 05:11:14 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xZdLmj6kXoBNaJ3W089SIjJWY0ORzMXpz2P6QvO9IAocUF06u4tAOw==
age: 7970
X-Firefox-Spdy: h2
gurgle.speedtest.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fp=1&lcl_id=
3.208.202.151302 Found 0 B URL HTTP/2 gurgle.speedtest.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fp=1&lcl_id=
IP 3.208.202.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /info?url=https%3A%2F%2Fwww.speedtest.net%2F&fp=1&lcl_id= HTTP/1.1
Host: gurgle.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id=
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-dl-multi-web.png
151.101.194.219200 OK 78 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-dl-multi-web.png
IP 151.101.194.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 8890e079e9f34641ac2e83e72fddb3e0
3bc76a8ea40f63494a0fdcbc5f31dedc501eb6cb
32b79f49ad238f7718e7ba9aa4cbb32e74a8a11a8a32dbcfdbfa926228c783f5
GET /images/gauge-gradient-dl-multi-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"132c5-184cfd83948"
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
content-length: 78533
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-ul-multi-web.png
151.101.194.219200 OK 74 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-ul-multi-web.png
IP 151.101.194.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 6751b2a4d9a7fb3ee0796273b9f3e37b
344d00d650da41f3ed0c454f93c3e07fb45475dd
0d23c759f4302ff762012a6ff00cbd124858dd9b387ea06eafa727c5e726fd77
GET /images/gauge-gradient-ul-multi-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"12248-184cfd83948"
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
content-length: 74312
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/v60a.js
54.230.111.127200 OK 69 kB URL HTTP/2 cdn-gl.imrworldwide.com/v60a.js
IP 54.230.111.127:0
Hash 371edfdbbb9c43da08c7d8f2820f6078
d5262da57bb0b912e35c76210c9d7682a6b8e2ce
0e76b8c8f522cbe19f15fea762da55d84a20c561beb61b8e649319245f547e29
GET /v60a.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 25 Jul 2022 13:33:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: c8VfWXv7S6pgr9z4BXPhlw..1tDQQwHP
server: AmazonS3
content-encoding: gzip
date: Sat, 17 Dec 2022 09:12:53 GMT
cache-control: max-age=86400
etag: W/"a63502ab51b5896d4875d375d8d72fc3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Eiu2VEco0JbzAFeD6OejyoGN93-xK9Iu3UFUhe3TNSYhVq9cadoXIQ==
age: 79889
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-ul-single-web.png
151.101.194.219200 OK 65 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-ul-single-web.png
IP 151.101.194.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash d1dc88ef5824cb2b83db61a7b40265d7
cad3a25dbf0c2a750df576f001ca16f780e89fea
d3c3db2b5256d7c5fa7f2502e752ced784853fe0fdd01d8a219bd9e041a579c7
GET /images/gauge-gradient-ul-single-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"ff47-184cfd83948"
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
content-length: 65351
X-Firefox-Spdy: h2
www.speedtest.net/images/English_get-it-from-MS_InvariantCulture_Default.png
104.16.209.12200 OK 14 kB URL HTTP/2 www.speedtest.net/images/English_get-it-from-MS_InvariantCulture_Default.png
IP 104.16.209.12:0
File type PNG image data, 864 x 312, 8-bit/color RGB, non-interlaced\012- data
Hash 597c2089aebc1c541a6a60c5eef7ed84
b1b8d807c9a55c164dc5fb1892bd946ddc675a69
2e0da7b78f6365146f0889b05e139587016e6b5e2e1a8d778dbc3272ad0a6278
GET /images/English_get-it-from-MS_InvariantCulture_Default.png HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: __cf_bm=Y3W4qf5dx6EdNr2mqkDCkPF9N8KQsVSBlFmRckS9kJI-1671348243-0-AZ+eeyNFKYtA5Mw6tIKG9Xv8ZPgRHOJtsQK0vAORK5Bx/pJhedyVtCK0gyREU5Z7yu+W7XkTpsr1cMbjYquvoYk=; fu=1; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:04 GMT
content-type: image/png
content-length: 14457
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"3879-184cfd83948"
cf-cache-status: HIT
age: 20003
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77b6282148d0b4f4-OSL
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_insights.svg
151.101.194.219200 OK 632 B URL HTTP/2 b.cdnst.net/images/icg_insights.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (767)
Hash 1dd75d9f003576b4f7c16ce3db022fb6
45824c0b887ea969b5c06912460e04d9ed1e9038
cf5a635aa243a9fb2c645ceaacbe30a8b89f88acb03219bfdf8fe37812b3f173
GET /images/icg_insights.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"490-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
vary: Accept-Encoding
content-length: 632
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_globalindex.svg
151.101.194.219200 OK 854 B URL HTTP/2 b.cdnst.net/images/icg_globalindex.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1607)
Hash 955004aa76b7563342da8c5638e85917
9a4c7e53ef2f2fac734670596e4f13f420fb09d8
5d9b99de9761666f5b2f4d578610922522a4cf7754ea6d47c31488c1bcf07476
GET /images/icg_globalindex.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"80f-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
vary: Accept-Encoding
content-length: 854
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_5g.svg
151.101.194.219200 OK 1.1 kB URL HTTP/2 b.cdnst.net/images/icg_5g.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1879)
Hash 38a0887861d123e3073bc3b1e3619305
220537693625dc57d33f16f3ed184cc61e2c1919
dbd830272351c00f0b0b990e13ff70088d704bb1b8a1c2e62b265295a475ad08
GET /images/icg_5g.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"8e9-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
vary: Accept-Encoding
content-length: 1110
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_enterprise.svg
151.101.194.219200 OK 499 B URL HTTP/2 b.cdnst.net/images/icg_enterprise.svg
IP 151.101.194.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1191)
Hash a5c920adb9ebfea363efb502b478e72e
b6edfa3fdd099cb9dfb592464903ddf5b7188999
6efc71b52a8ff0b5f2acef4bc4ab187521837977cd6732dc60944b4ae01bcfbc
GET /images/icg_enterprise.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"66c-184cfd83948"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
vary: Accept-Encoding
content-length: 499
X-Firefox-Spdy: h2
b.cdnst.net/images/ad-free-125x101-fade-anim-1x.gif
151.101.194.219200 OK 9.8 kB URL HTTP/2 b.cdnst.net/images/ad-free-125x101-fade-anim-1x.gif
IP 151.101.194.219:0
File type GIF image data, version 89a, 125 x 101\012- data
Hash d70b4d345b2bc01280fff39975214d30
3743f84697b021b03405e9bc5e7887e67da25a94
9f30799e7ea5caddb7b79f074957baeaecccf1a31846993414008331c257d242
GET /images/ad-free-125x101-fade-anim-1x.gif HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Thu, 01 Dec 2022 22:39:25 GMT
etag: W/"266b-184cfd83948"
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:04 GMT
content-length: 9835
X-Firefox-Spdy: h2
secure-us.imrworldwide.com/storageframe.html
34.248.105.76200 OK 3.5 kB URL HTTP/2 secure-us.imrworldwide.com/storageframe.html
IP 34.248.105.76:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 705dd5d6d8d6fd8165f3c0af8ad4c473
596a961f7024fa42b4e777fa6043000ec5040e3f
38e321832698437cbd4bf54a4314eddbee7850351a1d1b778b030c597948ec26
GET /storageframe.html HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:04 GMT
content-type: text/html
content-length: 3489
server: nginx
last-modified: Thu, 17 Nov 2022 16:35:03 GMT
etag: "637662b7-da1"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ac72db6939c023d8623d3f381e2877ad
eccaaa1ec6b1d3a441b5bcd207cd9be65598d225
1a228bbdc035ed1a613e8fe8a129860bafa89c4ba7f2b3bef00988a6042b0b5a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114391
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639dc8da-1d7"
Expires: Mon, 19 Dec 2022 15:10:36 GMT
Last-Modified: Sat, 17 Dec 2022 13:49:14 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Db8r5cuxLELc4PfIWwH5cMM609XbelLZLWg7qODCz3hYtDVSLzgRpA==
Age: 4882
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 367122385f96e6132181bf8fee0e2fc7
a39c2ee06f344cb2b5d402a37ae020c4d37f032a
90d5a98957d3eb91d2c5e0b9cb96025f92f4da1c01019fed53458ce579348aba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6428
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Last-Modified: Sun, 18 Dec 2022 05:36:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 367122385f96e6132181bf8fee0e2fc7
a39c2ee06f344cb2b5d402a37ae020c4d37f032a
90d5a98957d3eb91d2c5e0b9cb96025f92f4da1c01019fed53458ce579348aba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6428
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Last-Modified: Sun, 18 Dec 2022 05:36:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id=
3.208.202.151200 OK 252 B URL HTTP/2 gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id=
IP 3.208.202.151:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 35bea842e275d02a7dd14f60ad903319
36b2664e612e6a7701ce413756269c052a65be44
7c04986908b4fa5f8e344b57c55ab9346dfd7cd9962bace18023b02f170160d2
GET /info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id= HTTP/1.1
Host: gurgle.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
content-length: 252
access-control-allow-origin: null
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 13300839901b0165286d6bdeab90d357
b3a4357c32b16dba4e597d541559d3fd8029f97a
c590ca1555491e702971c44a354a6075afc892677c3c2aed594705b5727ca264
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5911
Cache-Control: max-age=109643
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639db249-116"
Expires: Mon, 19 Dec 2022 13:51:28 GMT
Last-Modified: Sat, 17 Dec 2022 12:12:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 367122385f96e6132181bf8fee0e2fc7
a39c2ee06f344cb2b5d402a37ae020c4d37f032a
90d5a98957d3eb91d2c5e0b9cb96025f92f4da1c01019fed53458ce579348aba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6560
Cache-Control: max-age=156745
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639e67be-1d7"
Expires: Tue, 20 Dec 2022 02:56:30 GMT
Last-Modified: Sun, 18 Dec 2022 01:07:10 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 367122385f96e6132181bf8fee0e2fc7
a39c2ee06f344cb2b5d402a37ae020c4d37f032a
90d5a98957d3eb91d2c5e0b9cb96025f92f4da1c01019fed53458ce579348aba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6428
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Last-Modified: Sun, 18 Dec 2022 05:36:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=b3df2bd4-5340-40d8-991e-3e7294793ce5&l_pb_bid_id=8fe6aa53f047858&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&slots=1&rand=0.9031994104020942
213.19.162.31200 OK 295 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=b3df2bd4-5340-40d8-991e-3e7294793ce5&l_pb_bid_id=8fe6aa53f047858&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&slots=1&rand=0.9031994104020942
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with no line terminators
Hash de35746cb486b2d73e56717c4785c752
f9d0b3e880942c5ed822ed8ca9fa671586b8e87e
96f8ced2625c376a36b16692ce08a87af6c9a3a42573abfc352f5db26419f94b
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=b3df2bd4-5340-40d8-991e-3e7294793ce5&l_pb_bid_id=8fe6aa53f047858&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&slots=1&rand=0.9031994104020942 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBT1LBKI-I-MA8X; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qo/9Fm93Cu98u9DtVM30fCg94lfoeI5p1AcOSgOd4jYArUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 295
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=131546cf-5faa-40be-97c3-d79ae47e387a&l_pb_bid_id=10e0841e5e8628b&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.3329455554146412
213.19.162.31200 OK 298 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=131546cf-5faa-40be-97c3-d79ae47e387a&l_pb_bid_id=10e0841e5e8628b&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.3329455554146412
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c9da479ed1d51cf3c24c1cc62b0f386c
cfd8714698fe5a55b7d72eac07b57c980f839c39
e403ecf4cd16280d7f67b4c5aa52f440b5d35691a30733c94e8cabfce1b75318
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=131546cf-5faa-40be-97c3-d79ae47e387a&l_pb_bid_id=10e0841e5e8628b&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.3329455554146412 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBT1LBKD-1J-H4DS; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoAYXEktbIxR+9DtVM30fCg94lfoeI5p1AcOSgOd4jYArUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 298
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c84da7cf0945a10c6a23d6a81f69ecd
157dc5cb772191204f79545d940c7ba74b68db58
0ce042d8511fa2588d5cd8033ad47dd8f517dad89380bc6d318df81a4b418d31
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3842
Cache-Control: max-age=117291
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639dd83e-1d7"
Expires: Mon, 19 Dec 2022 15:58:56 GMT
Last-Modified: Sat, 17 Dec 2022 14:54:54 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/ut/v3/prebid
185.89.211.12200 OK 249 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.211.12:0
File type JSON data\012- , ASCII text, with very long lines (598), with no line terminators
Hash 5e0d09958c85cafedde7d23c1b14ebc3
f95391a587e9cc0488fb3c4e8d86341f9e54661b
01f35995f1c510618022d4933159e9790846d1e6331cf5a82fac20797bd8442f
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1644
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:05 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.speedtest.net
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 84b9f8fe-efd3-4376-9a13-5cfca45294eb
Set-Cookie: icu=ChgIo9cnEAoYASABKAEwlYD7nAY4AUABSAEQlYD7nAYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 18-Mar-2023 07:24:05 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=7280266587819597479; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 18-Mar-2023 07:24:05 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
Content-Encoding: gzip
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=05cd6159-d4de-49c7-b80f-f67d870d2d45&l_pb_bid_id=114e25d319823d48&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.8882093534957578
213.19.162.31200 OK 301 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=05cd6159-d4de-49c7-b80f-f67d870d2d45&l_pb_bid_id=114e25d319823d48&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.8882093534957578
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with very long lines (301), with no line terminators
Hash 1025e336ece480659fae4f85f3056002
ae03f7877888603be805f814bf542f81a6d7a84d
439eba10b83e1494ee41f3840ab242017b72b2f9590c8ac130e3a23df77c9264
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=05cd6159-d4de-49c7-b80f-f67d870d2d45&l_pb_bid_id=114e25d319823d48&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.8882093534957578 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBT1LBKT-6-LPA1; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|SDziDG3X/Eib0QWXueg7o+9DtVM30fCg94lfoeI5p1AcOSgOd4jYArUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 301
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9b9ddf188f413556537893963e5fde04
4d9b113197d8367429ed8821d4268c8568f62ce4
9b4c2f2f5f2d198f5643fe1ba3ba9cbc4f14b67e551858b8bd013d6814a4029f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1029
Cache-Control: max-age=95374
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639d8d9e-1d7"
Expires: Mon, 19 Dec 2022 09:53:39 GMT
Last-Modified: Sat, 17 Dec 2022 09:36:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ookla-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.speedtest.net%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=b3df2bd4-5340-40d8-991e-3e7294793ce5%2Cd289dd1c-ae56-4fba-afe3-f2d9bb522f7b%2C131546cf-5faa-40be-97c3-d79ae47e387a%2C05cd6159-d4de-49c7-b80f-f67d870d2d45%2C4a23afc7-6c4b-4266-9cd2-500eb23d5c1e&nocache=1671348241586&us_privacy=1YNY&aus=728x90%7C160x600%7C300x250%7C300x250%7C728x90&divids=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&aucs=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&auid=538306129%2C538306131%2C538306127%2C538306123%2C538306126
34.98.64.218200 OK 79 B URL HTTP/2 ookla-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.speedtest.net%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=b3df2bd4-5340-40d8-991e-3e7294793ce5%2Cd289dd1c-ae56-4fba-afe3-f2d9bb522f7b%2C131546cf-5faa-40be-97c3-d79ae47e387a%2C05cd6159-d4de-49c7-b80f-f67d870d2d45%2C4a23afc7-6c4b-4266-9cd2-500eb23d5c1e&nocache=1671348241586&us_privacy=1YNY&aus=728x90%7C160x600%7C300x250%7C300x250%7C728x90&divids=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&aucs=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&auid=538306129%2C538306131%2C538306127%2C538306123%2C538306126
IP 34.98.64.218:0
File type JSON data\012- , ASCII text
Hash c48968824bf93db5a4ea4ab1ae947ac2
3f59dc03ad2a4290156965a0abc1891ef319b9fc
f91762a499690185403ca3ad765a35e2cd7e7ace279af492a46a58e9162987f9
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.speedtest.net%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=b3df2bd4-5340-40d8-991e-3e7294793ce5%2Cd289dd1c-ae56-4fba-afe3-f2d9bb522f7b%2C131546cf-5faa-40be-97c3-d79ae47e387a%2C05cd6159-d4de-49c7-b80f-f67d870d2d45%2C4a23afc7-6c4b-4266-9cd2-500eb23d5c1e&nocache=1671348241586&us_privacy=1YNY&aus=728x90%7C160x600%7C300x250%7C300x250%7C728x90&divids=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&aucs=%252F6692%252Fspeedtest.net%252Fstnext_leaderboard%2C%252F6692%252Fspeedtest.net%252Fstnext_skyscraper%2C%252F6692%252Fspeedtest.net%252Fstnext_top_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_bottom_rectangle%2C%252F6692%252Fspeedtest.net%252Fstnext_lowerboard&auid=538306129%2C538306131%2C538306127%2C538306123%2C538306126 HTTP/1.1
Host: ookla-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
content-length: 79
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gurgle.speedtest.net/set_fpid/speedtest.net/c/b80dffc932e54784875ffd0da0dcf1be
3.208.202.151200 OK 32 B URL HTTP/2 gurgle.speedtest.net/set_fpid/speedtest.net/c/b80dffc932e54784875ffd0da0dcf1be
IP 3.208.202.151:0
File type ASCII text, with no line terminators
Hash 1ac08fc6ca2ae7cc629299a02bfcd8ad
3823f1dd70ffb6bd274d81f16dc3f87dd6eb6faf
2cfbe8c26802e41226bb4515ccd2c94ced8637423eaa75f31e75289a03de071e
GET /set_fpid/speedtest.net/c/b80dffc932e54784875ffd0da0dcf1be HTTP/1.1
Host: gurgle.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: _ga_KKLSRK6J1Z=GS1.1.1671348241.1.0.1671348241.60.0.0; _ga=GA1.1.426336086.1671348241; st4-sid=s%3AQe1qtJAIQmgFF5hHC8CEcjXESQo3OGYr.On0QuvLvO4ZmmRKNgrUkW6rHTXOvDdVR6UTfCcjUz6I
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: text/plain; charset=utf-8
content-length: 32
set-cookie: fpid=b80dffc932e54784875ffd0da0dcf1be; Path=/; Max-Age=15552000; Domain=speedtest.net; SameSite=None; Secure; HttpOnly
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=4a23afc7-6c4b-4266-9cd2-500eb23d5c1e&l_pb_bid_id=12a44c8ebf259c6&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.30566673984632764
213.19.162.31200 OK 294 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=4a23afc7-6c4b-4266-9cd2-500eb23d5c1e&l_pb_bid_id=12a44c8ebf259c6&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.30566673984632764
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7445c26eac3edfa440a77e021d93a027
e3a8c9b4df87c4d919eb5d6a80bc649f426ac535
694e427ea5762091db079b61d64b72de32684383c40c87f71cf7e691962a8032
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=4a23afc7-6c4b-4266-9cd2-500eb23d5c1e&l_pb_bid_id=12a44c8ebf259c6&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.30566673984632764 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBT1LBNK-1C-ED0; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qryutCILqlLQe9DtVM30fCg94lfoeI5p1AcOSgOd4jYArUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 294
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f9e9c6360d78c2689bb0afca4efaf2a5
5117d3fe3fe8682bb4468e9bd88a4b4fbd2bdecc
97ec1402d2fc741514bf68c79074764c64a0fcc53da87d37b3a76a4c305eb5a7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 18 Dec 2022 07:24:05 GMT
Last-Modified: Sun, 18 Dec 2022 06:54:19 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kz8IhobXfFfIJCQeNxG2O4SnjVWm-CjPctCwBULn_IMab_NszXErqQ==
Age: 1786
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 6ab40649455be036fb7cf522f8038b44
c19827dbb7795b8bfe688640aa359829b4438475
a4c9d107f0e9c6d010496b8881526b85f9fd8992b5525dd208eabe0bcae74a23
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 18 Dec 2022 07:24:05 GMT
Last-Modified: Sun, 18 Dec 2022 05:42:23 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eZMk9t_glEyNNEryqxXOtctFsfBKQHymN2oWcFhGkcawXWstgBuJhg==
Age: 6103
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 236ae9b3bbc2cc0fbe30cfe50f1a56b6
3ff870af8e20d30a628b5e65ba8e8a4fbca9db96
59bbf62b7ad8af74bf2e17609bdc3f97b01babc5de1b185556470120ed13b252
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6387
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Last-Modified: Sun, 18 Dec 2022 05:37:38 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 236ae9b3bbc2cc0fbe30cfe50f1a56b6
3ff870af8e20d30a628b5e65ba8e8a4fbca9db96
59bbf62b7ad8af74bf2e17609bdc3f97b01babc5de1b185556470120ed13b252
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5653
Cache-Control: max-age=169148
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639e9bbc-1d7"
Expires: Tue, 20 Dec 2022 06:23:13 GMT
Last-Modified: Sun, 18 Dec 2022 04:49:00 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f9e9c6360d78c2689bb0afca4efaf2a5
5117d3fe3fe8682bb4468e9bd88a4b4fbd2bdecc
97ec1402d2fc741514bf68c79074764c64a0fcc53da87d37b3a76a4c305eb5a7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165993
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639e9e7c-1d7"
Expires: Tue, 20 Dec 2022 05:30:38 GMT
Last-Modified: Sun, 18 Dec 2022 05:00:44 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PNdXNUy4VP0sl7HMRvo068evLmZt3KH8Yvk-HNZF7pbiD3ftXOcJyw==
Age: 1794
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f9e9c6360d78c2689bb0afca4efaf2a5
5117d3fe3fe8682bb4468e9bd88a4b4fbd2bdecc
97ec1402d2fc741514bf68c79074764c64a0fcc53da87d37b3a76a4c305eb5a7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166003
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639e9e7c-1d7"
Expires: Tue, 20 Dec 2022 05:30:48 GMT
Last-Modified: Sun, 18 Dec 2022 05:00:44 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vnUkhrO49g9qJh_tHz_oDElescX6_1gCavNXmqmcdazg6FPxnDWD7g==
Age: 1804
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c84da7cf0945a10c6a23d6a81f69ecd
157dc5cb772191204f79545d940c7ba74b68db58
0ce042d8511fa2588d5cd8033ad47dd8f517dad89380bc6d318df81a4b418d31
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1856
Cache-Control: max-age=115305
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639dd83e-1d7"
Expires: Mon, 19 Dec 2022 15:25:50 GMT
Last-Modified: Sat, 17 Dec 2022 14:54:54 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 13300839901b0165286d6bdeab90d357
b3a4357c32b16dba4e597d541559d3fd8029f97a
c590ca1555491e702971c44a354a6075afc892677c3c2aed594705b5727ca264
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5853
Cache-Control: max-age=109585
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639db249-116"
Expires: Mon, 19 Dec 2022 13:50:30 GMT
Last-Modified: Sat, 17 Dec 2022 12:12:57 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c33607058cee436ad67912dc73b214f1
863f1bf8d4fc20cf606e8c2eaeda7d780478a75d
a1ffbb716184f1db4051c1e829cfb6329a3e9ae68735fa03a6369fc39329722a
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 892
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d289dd1c-ae56-4fba-afe3-f2d9bb522f7b&l_pb_bid_id=97f2d201fd071f8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.9714956916136438
213.19.162.31200 OK 294 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d289dd1c-ae56-4fba-afe3-f2d9bb522f7b&l_pb_bid_id=97f2d201fd071f8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.9714956916136438
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1073a35aeddc7fd0615e5f4f8f75c555
8f609cb544252dd1a9bafbb7c8456d82f0debebc
759353d6d78f9658ed354f7521a32e19d03c26f58c9ac7a7da3c0e1570124659
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d289dd1c-ae56-4fba-afe3-f2d9bb522f7b&l_pb_bid_id=97f2d201fd071f8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.9714956916136438 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LBT1LBMZ-Z-ERPZ; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoVlFT9cKBwyu9DtVM30fCg94lfoeI5p1AcOSgOd4jYArUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 18-Dec-2023 07:24:05 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 294
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.70.105.175204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.70.105.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 691
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:05 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.70.105.175204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.70.105.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 689
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:05 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 497a79caaf73c6d94d5241506cc2d4e0
6594fe6e769208f1d3d6e6b4618ab82fb0991d18
10408bebf8545e554f62f150c49b6a65f45039f57a6372515c78998f4d6ad2bf
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 897
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e5e16bdf5f51fe3d9617c16ccd38ab38
5bd39f837d3a5c35b4012e5dc0809a791a245a56
e44b678c97c005eddb3bd6e64d74ceb7136dde9d64636e88e8480c447147a120
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 911
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 628bc056466abbff9790cf380f22a5c8
06230da6164f1a8f9112f95c1c3e94202282d720
f473f12f06216427975799ef30f4c0344971b4b058fa5f6186006e3247741709
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 926
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3313ef66fcdf832267b0943079cecf65
96b866a9fb8733c76e0fb9bceaeba7a3ac3fb0ba
0ccd7e8b55844fe6eb9445fd80baa5a522cd2e265141ab51470ed2b9f1a08839
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 896
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c1a97c3aa35a50c8dfc09326b246db0e
7bf4d228c9cd37859b7388c00cb0dac3e103fff8
af2186c0b1cf5111b11d66883d5fe8399ef932ded67e48445f5a0a6f470bd618
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128926
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639dfb71-1d7"
Expires: Mon, 19 Dec 2022 19:12:51 GMT
Last-Modified: Sat, 17 Dec 2022 17:25:05 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AIloAxpfoyYDce22ktVSXqUGyGekgETu7GrnyveaMP-cs2k13qH1CQ==
Age: 6466
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.70.105.175204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.70.105.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 688
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:05 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.70.105.175204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.70.105.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 694
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:05 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.70.105.175204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.70.105.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 689
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:05 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2302
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
cache-control: no-cache, no-store, must-revalidate
date: Sun, 18 Dec 2022 07:24:05 GMT
X-Firefox-Spdy: h2
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=59ee2985-498c-4eae-b2fe-3239ab9bcda2&zd_session_id=9b995e67-2517-4194-af9a-41bae0703564&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=b80dffc932e54784875ffd0da0dcf1be&ppid=b80dffc932e54784875ffd0da0dcf1be
34.250.219.138303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=59ee2985-498c-4eae-b2fe-3239ab9bcda2&zd_session_id=9b995e67-2517-4194-af9a-41bae0703564&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=b80dffc932e54784875ffd0da0dcf1be&ppid=b80dffc932e54784875ffd0da0dcf1be
IP 34.250.219.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=59ee2985-498c-4eae-b2fe-3239ab9bcda2&zd_session_id=9b995e67-2517-4194-af9a-41bae0703564&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=b80dffc932e54784875ffd0da0dcf1be&ppid=b80dffc932e54784875ffd0da0dcf1be HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=59ee2985-498c-4eae-b2fe-3239ab9bcda2&zd_session_id=9b995e67-2517-4194-af9a-41bae0703564&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=b80dffc932e54784875ffd0da0dcf1be&ppid=b80dffc932e54784875ffd0da0dcf1be&_cc=1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: h_zdbb=b80dffc932e54784875ffd0da0dcf1be; Path=/; Max-Age=15552000; Domain=.zdbb.net; SameSite=None; Secure
csp=0; Path=/; Max-Age=2592000; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 5be5f8ccbd384f5d8e4cf272010eca67
ec7cee65d4565cb6c77a81fe4dfc321ef873dfa9
11a9f8faac8d402b603f2f87dc3b332eb737fe599ef6dc80f7105038d954aae1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 07:45:27 GMT
Expires: Sat, 24 Dec 2022 07:45:26 GMT
Etag: "ec7cee65d4565cb6c77a81fe4dfc321ef873dfa9"
Cache-Control: max-age=519080,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b628252da1b505-OSL
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=59ee2985-498c-4eae-b2fe-3239ab9bcda2&zd_session_id=9b995e67-2517-4194-af9a-41bae0703564&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=b80dffc932e54784875ffd0da0dcf1be&ppid=b80dffc932e54784875ffd0da0dcf1be&_cc=1
34.250.219.138303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=59ee2985-498c-4eae-b2fe-3239ab9bcda2&zd_session_id=9b995e67-2517-4194-af9a-41bae0703564&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=b80dffc932e54784875ffd0da0dcf1be&ppid=b80dffc932e54784875ffd0da0dcf1be&_cc=1
IP 34.250.219.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=59ee2985-498c-4eae-b2fe-3239ab9bcda2&zd_session_id=9b995e67-2517-4194-af9a-41bae0703564&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=b80dffc932e54784875ffd0da0dcf1be&ppid=b80dffc932e54784875ffd0da0dcf1be&_cc=1 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Cookie: h_zdbb=b80dffc932e54784875ffd0da0dcf1be; csp=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU=
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_go=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oebu0&_p=472049591&_gaz=1&cid=426336086.1671348241&ul=en-us&sr=1280x1024&_s=1&sid=1671348241&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1671348241267&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oebu0&_p=472049591&_gaz=1&cid=426336086.1671348241&ul=en-us&sr=1280x1024&_s=1&sid=1671348241&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1671348241267&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oebu0&_p=472049591&_gaz=1&cid=426336086.1671348241&ul=en-us&sr=1280x1024&_s=1&sid=1671348241&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1671348241267&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.speedtest.net
date: Sun, 18 Dec 2022 07:24:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-KKLSRK6J1Z&cid=426336086.1671348241>m=2oebu0&aip=1
209.85.233.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-KKLSRK6J1Z&cid=426336086.1671348241>m=2oebu0&aip=1
IP 209.85.233.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KKLSRK6J1Z&cid=426336086.1671348241>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.speedtest.net
date: Sun, 18 Dec 2022 07:24:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 565eacd11fc43b3a7fceaca7f2e476df
cc1fcd25c85f59dab9ddb70f012c87ba933695ee
7a9f3438ed6dafb8eef011fabfecc7fa9eef582ea3602db439a8ebb66f90dd16
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6413
Cache-Control: max-age=111587
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Etag: "639db7eb-118"
Expires: Mon, 19 Dec 2022 14:23:52 GMT
Last-Modified: Sat, 17 Dec 2022 12:36:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2f3dbc33499e42ecb967c87f0df23a85
96a87c596ae880eb482b0e8a5fdb6e09bb728895
aee03631139a47dfbb4dbbfd4257d10afc3b814b5f70366759bdff153e9e2bd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU=
216.58.207.226302 Found 345 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU=
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5368529997971df2e1ddea6abf77d8ec
b8d3adac921a32e24385c2debaeafebd3889df45
74b1b0c9d5c5cfd55e97de304a56ef8669c74e9f1c9dbe47a9a32da1ed9eabb9
GET /pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU=&google_tc=
date: Sun, 18 Dec 2022 07:24:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 345
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 18-Dec-2022 07:39:05 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=GTM-MPW4L3J
216.239.32.178200 OK 45 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-MPW4L3J
IP 216.239.32.178:0
File type ASCII text, with very long lines (2066)
Hash 4f697c50257557ff6830482287de3b31
2aa50bfc339a39d786fcef2066fec5321c49f736
614b8bf9542ce6fb5ca0495ecc043bdeebdfd14928c26639c03b81630c5fef75
GET /gtm/optimize.js?id=GTM-MPW4L3J HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Dec 2022 07:24:05 GMT
expires: Sun, 18 Dec 2022 07:24:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45445
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=426336086.1671348241>m=2oebu0&aip=1&z=223275765
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=426336086.1671348241>m=2oebu0&aip=1&z=223275765
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=426336086.1671348241>m=2oebu0&aip=1&z=223275765 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 18 Dec 2022 07:24:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU=&google_tc=
216.58.207.226302 Found 254 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU=&google_tc=
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c2d0bebff457212836cd7579d6479f02
ed968673145f194fb9762843cbf8802865958146
96e5615dcd22a83b3f52f6371fd090f0b60223f6b954426a024e172707f2134c
GET /pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=YjgwZGZmYzkzMmU1NDc4NDg3NWZmZDBkYTBkY2YxYmU=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
date: Sun, 18 Dec 2022 07:24:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bee.imrworldwide.com/v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/
54.230.111.121200 OK 99 B URL HTTP/2 bee.imrworldwide.com/v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/
IP 54.230.111.121:0
File type JSON data\012- , ASCII text
Hash 827663c3ae513eca472814365881c8b3
4d21f2e496f047ed5080e5ca71a34bf1af8cb68c
6ccb1c07628f71f0ae7af1483aae0894bb7febafb80691f30d94d6f3e31e8494
GET /v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/ HTTP/1.1
Host: bee.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 99
date: Sat, 17 Dec 2022 08:17:56 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: max-age=3600
content-encoding: gzip
strict-transport-security: max-age=25920000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _VLlgRTUbHxzGW49aQ512TI4RuWaUg3xpsEHNxxxV7TJJuNjk5iguA==
age: 83169
X-Firefox-Spdy: h2
trc.taboola.com/1288978/log/3/unip?en=SpeedTestViewContent>mcb=1127940103
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1288978/log/3/unip?en=SpeedTestViewContent>mcb=1127940103
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1288978/log/3/unip?en=SpeedTestViewContent>mcb=1127940103 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:05 GMT
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671348246.871425,VS0,VE81
x-vcl-time-ms: 81
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2f3dbc33499e42ecb967c87f0df23a85
96a87c596ae880eb482b0e8a5fdb6e09bb728895
aee03631139a47dfbb4dbbfd4257d10afc3b814b5f70366759bdff153e9e2bd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
34.250.219.138303 See Other 0 B URL HTTP/2 zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
IP 34.250.219.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/qI109lRAEeGCiBIxORcFRw/?google_error=3 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Cookie: h_zdbb=b80dffc932e54784875ffd0da0dcf1be; csp=0; zd_cs_go=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://aa.agkn.com/adscores/g.pixel?sid=9212302198
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_ns=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js
54.230.111.127200 OK 56 kB URL HTTP/2 cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js
IP 54.230.111.127:0
Hash 740012909325353cb3e5c84cfe414bd7
c046a40f70ebb5e31c884c31eb6b227fc69d4f08
ceced1ab2b4528e2c708a6431b7805a33c50bfd2d55d8d59f94ef697b65bd4fc
GET /novms/js/2/nlsSDK600.bundle.min.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 14:09:01 GMT
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-version-id: Tw1ZrV6S6M8HrQmSnEoR4BpykB7j_69v
server: AmazonS3
content-encoding: gzip
date: Sun, 18 Dec 2022 06:28:45 GMT
cache-control: max-age=86400
etag: W/"81a9e2a298d0019660cb2966f0c24748"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VCCOvP31gbylqMS9idrOj5_N1rR_2m1oBObzDLZEkO04-7U0s51AiA==
age: 3321
X-Firefox-Spdy: h2
lbs.eu-1-id5-sync.com/lbs/v1
162.19.138.116200 OK 34 B URL HTTP/1.1 lbs.eu-1-id5-sync.com/lbs/v1
IP 162.19.138.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3d3927bd9d947ce5c740fe12bf385414
3ca9f843a67bb3698b7ed81a7d51e6be08ee26f6
afd57a70447f2a84869f65a9e77c1b6e04a840f269a5f8be4cba2604b6dc79e4
GET /lbs/v1 HTTP/1.1
Host: lbs.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 18 Dec 2022 07:24:06 GMT
access-control-allow-origin: https://www.speedtest.net
vary: Origin
content-type: application/json
content-length: 34
strict-transport-security: max-age=63072000; includeSubDomains; preload
lb.eu-1-id5-sync.com/lb/v1
141.95.33.111200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 141.95.33.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5ebcf3263cf84190ffab5fee5f873ebf
81a49b8259d6d4d3ea2b6eb001d9d8634c44914e
dd802a962f4e0da7182276075a20d645efe5bfb56772970a17d37936c6b80c2f
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.speedtest.net
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sun, 18 Dec 2022 07:24:05 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 277d29f7599cedf1d78f96f0fa97d14f
65974b58e398d49873d5e5107892c7f630c12b53
d12bb4573ed9f2e5fcf6201038289708808c875cffbfc7362a82babd950192dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4965
Cache-Control: max-age=88168
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:06 GMT
Etag: "639d621a-2d7"
Expires: Mon, 19 Dec 2022 07:53:34 GMT
Last-Modified: Sat, 17 Dec 2022 06:30:50 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 727
cdn-gl.imrworldwide.com/novms/html/ls.html
54.230.111.127200 OK 3.6 kB URL HTTP/2 cdn-gl.imrworldwide.com/novms/html/ls.html
IP 54.230.111.127:0
Hash 192a39be8fee7df8a59b454e1c470bda
bf629af934a399cc4da7e3dc3bb0cffaf66aa771
846d4ddaf8f706de86e2628d0c37d77e81bac8b9146670cfd58046468213be0d
GET /novms/html/ls.html HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 28 Sep 2022 14:09:00 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: kefD87rpNa3sUBHNjAEOkjjRzic54A4V
server: AmazonS3
content-encoding: gzip
date: Sun, 18 Dec 2022 07:23:34 GMT
cache-control: max-age=86400
etag: W/"7fa83dfc7b78314b137e2eb13834daa7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p61eL3LuCX9w3c75daaX963ZL_PVJP1EadIetcXo0vb4P5Oj4lxKyg==
age: 33
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 744556ca493a591f6c2d4efc1436ede4
8fb1e85e9b8214862f842b8c2766412073fb5616
c8b6c414f5b9b94273faeec8e057de8f4208d26653d9c7e01113e5952febbf48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8B6C414F5B9B94273FAEEC8E057DE8F4208D26653D9C7E01113E5952FEBBF48"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9014
Expires: Sun, 18 Dec 2022 09:54:20 GMT
Date: Sun, 18 Dec 2022 07:24:06 GMT
Connection: keep-alive
id5-sync.com/g/v2/718.json
162.19.138.120200 216 B URL HTTP/1.1 id5-sync.com/g/v2/718.json
IP 162.19.138.120:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f420cb41d360f9bb114bcb41ddb2726b
e6b9e84f6ef59bc3530c9302459845527e9c847c
8b4d2274500c48aecf23f994293cc7a33a34d0ada7d85f44f6df12057f8576c5
POST /g/v2/718.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 390
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sun, 18 Dec 2022 07:24:05 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
aa.agkn.com/adscores/g.pixel?sid=9212302198
52.58.215.26302 Found 0 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212302198
IP 52.58.215.26:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adscores/g.pixel?sid=9212302198 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:06 GMT
location: https://zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=ddx2nyGkIDujd4lMeCXpJrGu3ALvf4OgPqmISYjX2i0%3D
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AW7uppEXqeZzHy7g8TAh02rt1uQTD6C7D; Path=/; Domain=.agkn.com; Expires=Mon, 18-Dec-2023 07:24:06 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242.nuid.imrworldwide.com/
143.204.55.63200 OK 35 B URL HTTP/2 tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242.nuid.imrworldwide.com/
IP 143.204.55.63:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET / HTTP/1.1
Host: tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242.nuid.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Tue, 11 Sep 2018 17:05:20 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Dec 2022 02:35:00 GMT
etag: "c2196de8ba412c60c22ab491af7b1409"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iG-IIG2NkT-E5MsgfrOgtLUSiLEtEl3Cik_fMWPH8cIZmPfqdJ6aoQ==
age: 17346
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3336&u=https%3A%2F%2Fwww.speedtest.net%2F&pid=AgQ4serv8YFzL&cb=0&ws=1280x939&v=22.1212.1511&t=2000&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1591980299503-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980417879-0%22%2C%22s%22%3A%5B%22160x600%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980440646-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980270785-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980370035-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 2.0 kB URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3336&u=https%3A%2F%2Fwww.speedtest.net%2F&pid=AgQ4serv8YFzL&cb=0&ws=1280x939&v=22.1212.1511&t=2000&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1591980299503-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980417879-0%22%2C%22s%22%3A%5B%22160x600%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980440646-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980270785-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980370035-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with very long lines (2029)
Hash 27cdedf7c9fc87fe1af735b8ed545100
443353ed502ec835f94de8ae5826cf78051ed76e
974d28e748be11ab2c04655959c4e8cfcc0e5afb150d1d00544758c38ff09b9e
GET /e/dtb/bid?src=3336&u=https%3A%2F%2Fwww.speedtest.net%2F&pid=AgQ4serv8YFzL&cb=0&ws=1280x939&v=22.1212.1511&t=2000&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1591980299503-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980417879-0%22%2C%22s%22%3A%5B%22160x600%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980440646-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980270785-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1591980370035-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%5D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 2048
server: Server
date: Sun, 18 Dec 2022 07:24:06 GMT
x-amz-rid: R7VRYXY6CE49Z3WQENQT
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h3gGKgRqFB3atkPoyrkEcqWOlj48dVVdjJN12_aoGYwDjR3a_7hXHg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 953635cff82596ecfcbd7ff83474031a
5ea2fa051d49d203df6582bc273639a90348f8d2
bb63f27f12c917fccddd13680972fc6e12a8e0e4dcb9b9340f7f911c8b1db9ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-389482-3&cid=426336086.1671348241&jid=1093678496&_u=YADAAEAAQAAAACAGK~&z=689886826
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-389482-3&cid=426336086.1671348241&jid=1093678496&_u=YADAAEAAQAAAACAGK~&z=689886826
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-389482-3&cid=426336086.1671348241&jid=1093678496&_u=YADAAEAAQAAAACAGK~&z=689886826 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 18 Dec 2022 07:24:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 157b62091fad279063f540564a4c72e6
9db33b844db31eed03695c97daf4c84a4d7d265f
92904432175c023613dea4d660d2c9098e00b7f3b628c8519bf5b404cad450a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.speedtest.net
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.speedtest.net
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.speedtest.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 18 Dec 2022 07:24:06 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.speedtest.net
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.speedtest.net
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.speedtest.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 18 Dec 2022 07:24:06 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 157b62091fad279063f540564a4c72e6
9db33b844db31eed03695c97daf4c84a4d7d265f
92904432175c023613dea4d660d2c9098e00b7f3b628c8519bf5b404cad450a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stags.bluekai.com/site/31875?limit=0&id=b80dffc932e54784875ffd0da0dcf1be&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
23.38.201.22200 OK 62 B URL HTTP/2 stags.bluekai.com/site/31875?limit=0&id=b80dffc932e54784875ffd0da0dcf1be&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
IP 23.38.201.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /site/31875?limit=0&id=b80dffc932e54784875ffd0da0dcf1be&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Sun, 18 Dec 2022 07:24:06 GMT
X-Firefox-Spdy: h2
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift
52.95.125.22302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift
IP 52.95.125.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Sun, 18 Dec 2022 07:24:06 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: PVMW88V903DNCBM1TSES
Set-Cookie: ad-id=A7myqrVqQEn4pOdABEDqcHQ|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 07:24:06 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
3448ee37a3e46b24b36cf4b481a13199.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 3448ee37a3e46b24b36cf4b481a13199.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 3448ee37a3e46b24b36cf4b481a13199.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Sun, 18 Dec 2022 07:24:06 GMT
expires: Mon, 18 Dec 2023 07:24:06 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
52.95.125.22200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
IP 52.95.125.22:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Sun, 18 Dec 2022 07:24:06 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: N89FTYXXCHJ8B9YXSYK2
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
23.36.79.26200 OK 844 B URL HTTP/2 cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
IP 23.36.79.26:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (844), with no line terminators
Hash 3680b6923e0351483626ef1572e223a5
2e67500c109734f99d699aadf37293d70a62e69c
1331ce07d67579b7a85c3f1deb9479460b198356c6d1aee8de72daa1d5e377b2
GET /js/zd-core-olt.min.js?v=5 HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=b80dffc932e54784875ffd0da0dcf1be; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 53dxpjEY68DanjypTej5ehFI/FxC1RFYqdoni+ypN1XJjLpaBsPCOZ2SWXgoe2zjk5vVMsuW+Cw=
x-amz-request-id: SR9BYE7PWSGR1CZZ
last-modified: Wed, 14 Dec 2022 10:51:51 GMT
x-amz-version-id: gnGY8ttwvrf92YgYYLk_O12UQYvfy1Il
accept-ranges: bytes
content-type: application/javascript
content-length: 844
cache-control: max-age=604800
expires: Sun, 25 Dec 2022 07:24:06 GMT
date: Sun, 18 Dec 2022 07:24:06 GMT
X-Firefox-Spdy: h2
cdn.static.zdbb.net/js/krux-coretag.js
23.36.79.26200 OK 335 B URL HTTP/2 cdn.static.zdbb.net/js/krux-coretag.js
IP 23.36.79.26:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (335), with no line terminators
Hash 3d110e5f9fe1c46158e922103020ac0c
86c84d7b546a8a1eae685c4434abdbefe8058ef1
4f30bdeed794aeb92d85e55d901c0bdb634df32432010792e3b569ea73cae443
GET /js/krux-coretag.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=b80dffc932e54784875ffd0da0dcf1be; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: /FfHkcZ5Gfe8kuzTJRWS8ZTq8/Dm1tpSnz/Wd/IIdrBGBZDEFvBGUKNGZ/JX6XcGXHkMF87Lwaoccw1GFGgh4A==
x-amz-request-id: SR97NYG8274WVYPC
last-modified: Wed, 14 Dec 2022 10:51:44 GMT
x-amz-version-id: QPhsF4.GWpds6m8dj1Z2buJ6IABG6QJf
accept-ranges: bytes
content-type: application/javascript
content-length: 335
cache-control: max-age=86400
expires: Mon, 19 Dec 2022 07:24:06 GMT
date: Sun, 18 Dec 2022 07:24:06 GMT
X-Firefox-Spdy: h2
tags.bkrtx.com/js/bk-coretag.js
23.13.254.202200 OK 16 kB URL HTTP/2 tags.bkrtx.com/js/bk-coretag.js
IP 23.13.254.202:0
File type ASCII text, with very long lines (42581)
Hash 1d6730c68cb783c9b157fece2471f7b7
9c176c938a3567b446e02ccf1f919bf5bbccc921
32098d2ec6839522764c3c6c83b8427d8dca6bd041118e367b0ea6c7e1f05375
GET /js/bk-coretag.js HTTP/1.1
Host: tags.bkrtx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 21 May 2021 19:14:21 GMT
etag: W/"60a8068d-cbc2"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 16078
cache-control: max-age=604800
expires: Sun, 25 Dec 2022 07:24:06 GMT
date: Sun, 18 Dec 2022 07:24:06 GMT
X-Firefox-Spdy: h2
cdn.krxd.net/controltag/spgdj7g8u.js
151.101.130.133200 OK 22 B URL HTTP/2 cdn.krxd.net/controltag/spgdj7g8u.js
IP 151.101.130.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 49fced5a15e8763d46199088fad93fca
8b3f69bdb1250e55ab9968a157416c8968369ec3
09819ee7c805183bdc1c2cb02e46b868c31b426baa5bbede8b56ae6163af04be
GET /controltag/spgdj7g8u.js HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-app-cache: MISS
cache-control: public, max-age=1200
x-response-time: 0
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_config_service_ash_prod
via: 1.1 varnish, 1.1 varnish
x-do-esi: esi
accept-ranges: bytes
date: Sun, 18 Dec 2022 07:24:06 GMT
age: 650
x-served-by: config-service-a006-ash-prod.krxd.net, cache-iad-kjyo7100110-IAD, cache-bma1683-BMA
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 28, 16
x-timer: S1671348247.732873,VS0,VE0
vary: Accept-Encoding
content-length: 22
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
142.250.74.2200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
IP 142.250.74.2:0
File type JSON data\012- , ASCII text, with very long lines (14609), with no line terminators
Hash b6fdbed16e39eb4784bac5abd52d0d3c
bf7672bbf0a8ba863c8f5168447e97eb14d7f780
7b3b55060edf3e3ee62d768be285c0ff5fafbf1460740c5a590d05a44aee8097
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sun, 18 Dec 2022 07:24:06 GMT
server: cafe
content-length: 11028
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 95120c2b3b8e19cdce816ae385ee158d
298f7cf7633ab11ffad442e72ec607d9967cc9dc
33429750fb796a9acb15a22ff42c4e80fc39d7477569921fe73f07cd412e8630
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stags.bluekai.com/site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=88052298
23.38.201.22200 OK 71 B URL HTTP/2 stags.bluekai.com/site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=88052298
IP 23.38.201.22:0
File type HTML document text\012- HTML document, ASCII text
Hash 988428fdc0079b85e995b96b0ed4b565
27aece4f871a936951d17de604853cddc9bfb5ec
53350525edba0b889e87ea52a16ed843a928a2557e9f8d6747acd7ff991c95c3
GET /site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=88052298 HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 71
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
bk-server: a103
date: Sun, 18 Dec 2022 07:24:06 GMT
x-n: S
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 18 Dec 2022 07:24:06 GMT
expires: Sun, 18 Dec 2022 07:24:06 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jogger.zdbb.net/check?href=https%3A%2F%2Fwww.speedtest.net%2F
54.243.216.36200 OK 5 B URL HTTP/2 jogger.zdbb.net/check?href=https%3A%2F%2Fwww.speedtest.net%2F
IP 54.243.216.36:0
File type ASCII text, with no line terminators
Hash 946003f97ccc52d5d3b54ac0ec31bbfc
0ed2d7b5cdb77627bc46c6fac5026ec27b694d42
4e523a5ae5b4636c75901b79fafbd3912e41dc7987414e688b09d4b436ff22b3
GET /check?href=https%3A%2F%2Fwww.speedtest.net%2F HTTP/1.1
Host: jogger.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:06 GMT
content-type: text/plain; charset=utf-8
content-length: 5
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
cache-control: max-age=604800
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
172.217.21.161200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 17:31:48 GMT
expires: Sat, 16 Dec 2023 17:31:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 136339
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.speedtest.net/api/js/servers?engine=js&limit=10&https_functional=true
104.16.209.12200 OK 1.6 kB URL HTTP/2 www.speedtest.net/api/js/servers?engine=js&limit=10&https_functional=true
IP 104.16.209.12:0
File type JSON data\012- , ASCII text, with very long lines (5117), with no line terminators
Hash 88a0b7d14a90a41ffcb95daba14cd90e
0e7b2f4cd2ab82957ee9f520bc8fffcbf5704ac2
7e5fa4a0577bebfb12c879ab95e93b020244bad80362a023ecaae0cbc10e9bda
GET /api/js/servers?engine=js&limit=10&https_functional=true HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: __cf_bm=Y3W4qf5dx6EdNr2mqkDCkPF9N8KQsVSBlFmRckS9kJI-1671348243-0-AZ+eeyNFKYtA5Mw6tIKG9Xv8ZPgRHOJtsQK0vAORK5Bx/pJhedyVtCK0gyREU5Z7yu+W7XkTpsr1cMbjYquvoYk=; fu=1; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
cache-control: max-age=86400
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
expires: Mon, 19 Dec 2022 07:24:04 GMT
x-xss-protection: 1; mode=block
set-cookie: st4-sid=s%3AQe1qtJAIQmgFF5hHC8CEcjXESQo3OGYr.On0QuvLvO4ZmmRKNgrUkW6rHTXOvDdVR6UTfCcjUz6I; Domain=speedtest.net; Path=/; Expires=Sun, 18 Dec 2022 07:54:04 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77b6282299c4b4f4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24d2eff0bee3bddf7ed0b798bfb22165
2972af426733838c2093ec81be97facfd4d4e9ce
c6cd8d15d3141ac57f550f22f705660f0d36dbb9515ce00644db894e0b25d643
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24d2eff0bee3bddf7ed0b798bfb22165
2972af426733838c2093ec81be97facfd4d4e9ce
c6cd8d15d3141ac57f550f22f705660f0d36dbb9515ce00644db894e0b25d643
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24d2eff0bee3bddf7ed0b798bfb22165
2972af426733838c2093ec81be97facfd4d4e9ce
c6cd8d15d3141ac57f550f22f705660f0d36dbb9515ce00644db894e0b25d643
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
172.217.21.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (14697)
Hash ae1a9f090984c448deb0629cc2304ee3
e601825ccec746695f370ed68fa33325152e0d9f
6a947bfcdeea64faa6c795caea11ee09dbe00f5d4003b7b9d47e4945c05ac1e4
GET /rtv/012211060024000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 10:51:50 GMT
expires: Wed, 13 Dec 2023 10:51:50 GMT
cache-control: public, max-age=31536000
age: 419537
etag: "abd4378f71571d78"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24d2eff0bee3bddf7ed0b798bfb22165
2972af426733838c2093ec81be97facfd4d4e9ce
c6cd8d15d3141ac57f550f22f705660f0d36dbb9515ce00644db894e0b25d643
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24d2eff0bee3bddf7ed0b798bfb22165
2972af426733838c2093ec81be97facfd4d4e9ce
c6cd8d15d3141ac57f550f22f705660f0d36dbb9515ce00644db894e0b25d643
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-carousel-0.1.mjs
172.217.21.161200 OK 10 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-carousel-0.1.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (33436)
Hash 21960ccac844a4ce47f884f259f9dc98
d9aba6e60533c8b5e02d3f80360292a625957c8d
ffdbbba1765ec2bb4b00c74458d0565860c35e1534a50b8333944efdd9b4141c
GET /rtv/012211060024000/v0/amp-carousel-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 10090
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:09:09 GMT
expires: Tue, 12 Dec 2023 18:09:09 GMT
cache-control: public, max-age=31536000
age: 479698
etag: "e045a48636d92551"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b09c5fd392d9d40a99ab4c70e59fd24e
40e39676ca8052fd8b9eab501750f0011737f507
8c2b60b0ec0a8121d5c5a8dda2ec1a57b923efe10246386262f359f6a458cdcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
172.217.21.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 190bcb4c44fd9e0e93baa80c9b2535b8
97bda56ddc8d6a00d19e1747d63325051f3fd144
b7677f820f06329e357561f570729fe4110af4ac5fb741b97567e20a0f533301
GET /rtv/012211060024000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61592
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:08:55 GMT
expires: Tue, 12 Dec 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 479712
etag: "a2fca7132416d151"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
172.217.21.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (65534)
Hash c88b4e73b12307e42222d337bdd646a2
621233bf4e777b2d44b1bc143187111aca2fe718
ef6935537cd5a603b79bc98d4274b70ee5608955792523fc58e818c8ddbb7b48
GET /rtv/012211060024000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28809
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 03:58:03 GMT
expires: Tue, 12 Dec 2023 03:58:03 GMT
cache-control: public, max-age=31536000
etag: "dd6615029de85e23"
content-type: text/javascript; charset=UTF-8
age: 530764
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
172.217.21.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (5046)
Hash 669c8592ef8f63e7404e45dd6ca56b71
3f6753966361bb86594193009c9097612c361064
d174ae2c0722ab8d4bf736f0200dc5b15d288f9500a706bb161b64f5a3b74f01
GET /rtv/012211060024000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1913
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 17:57:32 GMT
expires: Sat, 16 Dec 2023 17:57:32 GMT
cache-control: public, max-age=31536000
etag: "403438c4d550ee88"
content-type: text/javascript; charset=UTF-8
age: 134795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
172.217.21.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash 2f873064835eed23708bde2a16830216
7559437b82b9b761e02549d8d51f9e3571e5ed2c
0f5d00ac674cc34652997f2e0dd7fb6eb1a5b22010989c35a81cd7a388c84fdd
GET /rtv/012211060024000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12946
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 17:54:43 GMT
expires: Sat, 16 Dec 2023 17:54:43 GMT
cache-control: public, max-age=31536000
etag: "0bacd3f1ce38a7db"
content-type: text/javascript; charset=UTF-8
age: 134964
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24d2eff0bee3bddf7ed0b798bfb22165
2972af426733838c2093ec81be97facfd4d4e9ce
c6cd8d15d3141ac57f550f22f705660f0d36dbb9515ce00644db894e0b25d643
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
htlb.casalemedia.com/cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%221907e049d69a48c8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22209bd4ccc1ce5f68%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%222180779fd364a798%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%22227f712a3482dd5%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%222312f5dcdd73ef98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%22246f38ab9f1d228%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D
104.18.33.19200 OK 34 kB URL HTTP/2 htlb.casalemedia.com/cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%221907e049d69a48c8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22209bd4ccc1ce5f68%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%222180779fd364a798%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%22227f712a3482dd5%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%222312f5dcdd73ef98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%22246f38ab9f1d228%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D
IP 104.18.33.19:0
File type JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (29356), with no line terminators
Hash 6573f936ab3473ebe9ad3820d1cf1427
69f6febf4030dd96988bfc760aebbb3c1b38fd82
192f53d0eb606b6ea483c16c76b8891e2152d5460eb37f761eec6d0f1ab5a1ec
GET /cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%221907e049d69a48c8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22209bd4ccc1ce5f68%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%222180779fd364a798%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%22227f712a3482dd5%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%222312f5dcdd73ef98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%22246f38ab9f1d228%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json
cf-ray: 77b62824fbbeb52d-OSL
access-control-allow-origin: https://www.speedtest.net
cache-control: no-cache
expires: 0
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QMX6g4OH5rXo1JUFgJfh6noMI4u1hS1v6cv0JYuneAqY4dwY1XS8m6AKQ2fPaajT6uqjYSvNOcMCHPnYSGeXpczCBHaXm5%2FliKPo5H3m4TWn%2Bu3gl%2FZ2rx0Xi1SHGzmS6Cj%2BSLBo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b09c5fd392d9d40a99ab4c70e59fd24e
40e39676ca8052fd8b9eab501750f0011737f507
8c2b60b0ec0a8121d5c5a8dda2ec1a57b923efe10246386262f359f6a458cdcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:34:15 GMT
expires: Thu, 14 Dec 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 301792
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:13 GMT
expires: Sat, 16 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 150654
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:33:54 GMT
expires: Thu, 14 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 301813
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zdbb.net/check_c
34.250.219.138200 OK 32 B IP 34.250.219.138:0
File type ASCII text, with no line terminators
Hash 1ac08fc6ca2ae7cc629299a02bfcd8ad
3823f1dd70ffb6bd274d81f16dc3f87dd6eb6faf
2cfbe8c26802e41226bb4515ccd2c94ced8637423eaa75f31e75289a03de071e
GET /check_c HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=b80dffc932e54784875ffd0da0dcf1be; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:07 GMT
content-type: text/plain; charset=utf-8
content-length: 32
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74ac30fe76bdb144e2e87a6b3fbf4584
d4962f0a1e7acec0828ba0e49f76b831e8d98b82
7de7c2327c35c36f3b215f8ae6721c76a57acc19dfb2ca8ebf9ece03d2a6fc47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3144
Cache-Control: max-age=106162
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:07 GMT
Etag: "639daf81-1d7"
Expires: Mon, 19 Dec 2022 12:53:29 GMT
Last-Modified: Sat, 17 Dec 2022 12:01:05 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 68dfea06ce13871bd6944b2481c50116
bc641a3cf09b1396e25d49dd229645cd277b6ca4
a40961910eb535788d6adf3f758f0d79c75f1ed268259563949adabb38e29a21
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 01:54:54 GMT
Expires: Sun, 25 Dec 2022 01:54:53 GMT
Etag: "bc641a3cf09b1396e25d49dd229645cd277b6ca4"
Cache-Control: max-age=584445,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b62834c94bb505-OSL
beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=b80dffc932e54784875ffd0da0dcf1be
34.254.209.222204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=b80dffc932e54784875ffd0da0dcf1be
IP 34.254.209.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=zdbb&partner_uid=b80dffc932e54784875ffd0da0dcf1be HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:07 GMT
set-cookie: _kuid_=PQ8LYitf; Expires=Fri, 16-Jun-23 07:24:07 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n015-dub-prod.krxd.net
x-request-time: D=36 t=1671348247
X-Firefox-Spdy: h2
idsync.rlcdn.com/425686.gif?partner_uid=b80dffc932e54784875ffd0da0dcf1be
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/425686.gif?partner_uid=b80dffc932e54784875ffd0da0dcf1be
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /425686.gif?partner_uid=b80dffc932e54784875ffd0da0dcf1be HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Sun, 18 Dec 2022 07:24:07 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:52:41 GMT
expires: Tue, 12 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 477086
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
142.250.74.98200 OK 145 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92235b51835ea17fa6d313a73f3c2b8f
1e310139fd2be77b54f39c7c64e1616fd35785ad
2cf3e738572a24733a96c3be1d798e95e2bff434d37d6f28cde31ce53df8e333
GET /pagead/drt/s?v=r20120211 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3448ee37a3e46b24b36cf4b481a13199.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 145
x-xss-protection: 0
date: Sun, 18 Dec 2022 06:57:51 GMT
cache-control: public, max-age=3600
content-type: text/html; charset=UTF-8
age: 1576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
142.250.74.98200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/si?st=NO_DATA HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 18 Dec 2022 07:24:07 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: DSID=NO_DATA; expires=Sun, 18-Dec-2022 08:24:07 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 18 Dec 2022 07:24:07 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 68dfea06ce13871bd6944b2481c50116
bc641a3cf09b1396e25d49dd229645cd277b6ca4
a40961910eb535788d6adf3f758f0d79c75f1ed268259563949adabb38e29a21
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 01:54:54 GMT
Expires: Sun, 25 Dec 2022 01:54:53 GMT
Etag: "bc641a3cf09b1396e25d49dd229645cd277b6ca4"
Cache-Control: max-age=584444,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b62835a9d4b505-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 904 B IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash f04f7a7bd6649784b14c1cd8c6a84674
889fc26cda532907264da302ba8f05cc350e1f7d
c6fed88889043a7f9c9b864baab92a113bd623a4fcfc962893bee1cf5946d8fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/ads/studio/cached_libs/gsap_3.9.1_min.js
142.250.74.70200 OK 25 kB URL HTTP/2 s0.2mdn.net/ads/studio/cached_libs/gsap_3.9.1_min.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (63851)
Hash 839c0f19f071a97b420bf573dc1102f5
9654cad2cc914ec1905d30fcc75b3a7aeb4e4ada
5517b90cb50d0e4de8872772dfd8433fe865d147bb6dfe909fa480b9552c1402
GET /ads/studio/cached_libs/gsap_3.9.1_min.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 25329
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 07:24:08 GMT
expires: Sun, 18 Dec 2022 07:24:08 GMT
cache-control: public, max-age=0
last-modified: Wed, 29 Dec 2021 19:08:26 GMT
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 46edd66bca9004cdbe48ea37859bb466
fad5fc95272d80bbde70be2528da494cd3a48f41
4000ec7574a28a19d1696ff46481f9cff90b21c0854edd71e36123756f6865f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=152983
expires: Tue, 20 Dec 2022 01:53:51 GMT
date: Sun, 18 Dec 2022 07:24:08 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
23.38.200.189200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 23.38.200.189:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: "623de86a-cf34"
Server: nginx/1.18.0 (Ubuntu)
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Encoding: gzip
Content-Length: 17053
Cache-Control: max-age=86402
Expires: Mon, 19 Dec 2022 07:24:10 GMT
Date: Sun, 18 Dec 2022 07:24:08 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1a9afa38c2e03bb20700f91d2af4f812
860718cb22a856d3761efef8f8dda8b64291526e
1f689637ec11f73c2e69f7d91b5be5f49849b468d5399f4088043f432cbea825
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6262
Cache-Control: max-age=100277
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:08 GMT
Etag: "639d8c57-118"
Expires: Mon, 19 Dec 2022 11:15:25 GMT
Last-Modified: Sat, 17 Dec 2022 09:31:03 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
eus.rubiconproject.com/usync.html?us_privacy=1YNY
2.23.134.137200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?us_privacy=1YNY
IP 2.23.134.137:0
ASN #1299 Telia Company AB
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?us_privacy=1YNY HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sun, 18 Dec 2022 07:24:08 GMT
Connection: keep-alive
Vary: Accept-Encoding
contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY
23.38.200.22200 OK 8.5 kB URL HTTP/2 contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Hash 2f2ebaf2c8c51a50e67998f59f753ee6
d3f297033cda3726f1f2592cfb77e0b1bf61fbbf
4e4e21202c44ab420f88debeb959c815ae2ade13de455ec16fb4dffa21d642a6
GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
set-cookie: usp_status=1; Expires=Wed, 21 Jun 2023 07:24:09 GMT; domain=.media.net; Path=/;
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Tue, 20 Dec 2022 07:24:09 GMT
date: Sun, 18 Dec 2022 07:24:09 GMT
content-length: 8464
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
185.89.211.12307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: c40a42bc-29b9-4541-bcd8-f7f247b6f524
Set-Cookie: uuid2=2422737137962744780; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 18-Mar-2023 07:24:09 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
eus.rubiconproject.com/usync.js
2.23.134.137200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 2.23.134.137:0
ASN #1299 Telia Company AB
File type ASCII text, with very long lines (18728)
Hash 8041e42dcbd13b57c8c4f21043a6186d
0fa318c04dd45041e14bcf7c365a68d59547e4b5
773b84c27b25231cd19fd1ad32c21b099292ad100306568d63c1cbf45e852ab1
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?us_privacy=1YNY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Sat, 17 Dec 2022 23:51:48 GMT
Content-Encoding: gzip
Content-Length: 10066
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=59253
Expires: Sun, 18 Dec 2022 23:51:42 GMT
Date: Sun, 18 Dec 2022 07:24:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=152982
expires: Tue, 20 Dec 2022 01:53:51 GMT
date: Sun, 18 Dec 2022 07:24:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
185.64.190.78200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 185.64.190.78:0
File type ASCII text, with no line terminators
Hash 95e1de34c28e59ea9bcd5dc2c79b324e
ac7b3509f01c76a0683cf3cce1559312dba1a60a
8a1101705fedd2c7040c77d4d75965c052e47e57ea5820c73cf40132974bd43b
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Fri, 17 Mar 2023 23:49:42 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Sun, 18 Dec 2022 07:24:08 GMT
content-length: 60
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js-sec.indexww.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-length: 0
location: /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
cf-ray: 77b6283cd8f9b4f9-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y57AGQ1FbTh9f0pMRM6lPgAA; Path=/; Domain=casalemedia.com; Expires=Mon, 18 Dec 2023 07:24:09 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=677; Path=/; Domain=casalemedia.com; Expires=Sat, 18 Mar 2023 07:24:09 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=677; Path=/; Domain=casalemedia.com; Expires=Sat, 18 Mar 2023 07:24:09 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zdaA1x91lVIuxLJzYpCUJCBsuAETVlOBNH%2FdxWDvFVQH0kvXtcLrNvSe%2FepMZOi4Dcel5VfkHnGi79dHukpyzimnotHngNzSpE4j7sIkNo8O5500lt5LyYQ%2B49qBdux7pZoBD3w84u9d9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-length: 0
location: /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
cf-ray: 77b6283cf901b4f9-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y57AGWfAY6S1YWcs1xMqQwAA; Path=/; Domain=casalemedia.com; Expires=Mon, 18 Dec 2023 07:24:09 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=675; Path=/; Domain=casalemedia.com; Expires=Sat, 18 Mar 2023 07:24:09 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=675; Path=/; Domain=casalemedia.com; Expires=Sat, 18 Mar 2023 07:24:09 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VsKyFGW9azT24G6rgbTGGgbV4eVL%2FjcwRARaU8bQNzV7he8OINs%2B20Z%2FPSFsSrNhLdJxeWBqj83SAOQnACHaMjAQI%2BxbR4eQ39QNUkfHOhBYgSYC9YLTd%2FJYFpIPZOPAub1ZEilcpB66Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js-sec.indexww.com/um/ixmatch.html
104.18.36.94200 OK 1.7 kB URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 104.18.36.94:0
Hash 310e7f8d44cbdde6a8e49f476afc5493
f448bb4b0ea503af47749b9ff9de274d97d7c0ed
d54fd5b7652fdd298cb9eb746de44abf8b977b222296707f4537a283d8596832
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:26 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 1016
expires: Sun, 18 Dec 2022 11:24:09 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 77b6283c5e27b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.211.12200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 0f1085ac-eedc-4ee0-b3e5-1969edff1206
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
2.21.206.244301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
IP 2.21.206.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
date: Sun, 18 Dec 2022 07:24:09 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
51.75.86.98204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP 51.75.86.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ab900c35f6585043b26775de9b303e1e
f11099b955567a6e1d4462c02868dfe06983dc0f
9cf8a2053500a2d411c71e6c2de389f769844093aed7ebb1cb92d1b076ad8ad5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9CF8A2053500A2D411C71E6C2DE389F769844093AED7EBB1CB92D1B076AD8AD5"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10729
Expires: Sun, 18 Dec 2022 10:22:58 GMT
Date: Sun, 18 Dec 2022 07:24:09 GMT
Connection: keep-alive
secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242&fp_id=f9exputrmo4dmeb8m8z3qftuqjb3a1671348242&fp_cr_tm=1671348242537&fp_acc_tm=1671348242537&fp_emm_tm=1671348242537&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16713482425352642&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1671348244&rnd=903589
34.248.105.76200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242&fp_id=f9exputrmo4dmeb8m8z3qftuqjb3a1671348242&fp_cr_tm=1671348242537&fp_acc_tm=1671348242537&fp_emm_tm=1671348242537&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16713482425352642&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1671348244&rnd=903589
IP 34.248.105.76:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242&fp_id=f9exputrmo4dmeb8m8z3qftuqjb3a1671348242&fp_cr_tm=1671348242537&fp_acc_tm=1671348242537&fp_emm_tm=1671348242537&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16713482425352642&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1671348244&rnd=903589 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=f66a95b3-7ea4-11ed-9f37-2d315b566000; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Fri, 12-Jan-2024 07:24:09 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
104.18.33.19200 OK 341 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
IP 104.18.33.19:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 471a4bafed3f3ff1a517c0f4f2190f74
b842d95fb1cb7853bc44d40a7a72e10fbb3a0978
f15fe081cb6ca10f2de55ea8d9b1a5d18c9849406207fc570390186679ef354b
GET /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html
cf-ray: 77b6283d695db4f9-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dxy%2FU3OsBh1JwyAAY5hAVvg2%2BFaISFetXQfgIpSk62JbCkG1yFK4Wss77n4FhzQiyq69ZUJRAPXu1vUZBZCCBkuRcwMbthi0RwdJh5eVn5Jv6gTYZfIW0WXTPQ7d1lwXUEAp5laiSTISGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Sun, 18 Dec 2022 07:24:08 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=bd280ebf-6d6d-410d-9917-cc0c52de5b08&gdpr=0&gdpr_consent=&us_privacy=1YNY
server: envoy
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
185.89.211.12307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
AN-X-Request-Uuid: 874e2ca4-f222-4d00-868a-99e878c2580d
Set-Cookie: uuid2=2893321856144164586; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 18-Mar-2023 07:24:09 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f361c274994cc92548e4cc672ee42f0e
24751d4682890d97488862a51d9f9620bec712d3
350e824dfebbad460d32c87a01ca499a553f92f97322034f6ec9c784ed1b84b1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99676
Date: Sun, 18 Dec 2022 07:24:09 GMT
Etag: "639d9d11-1d7"
Expires: Mon, 19 Dec 2022 11:05:25 GMT
Last-Modified: Sat, 17 Dec 2022 10:42:25 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: looPnH51YFqCBZB71Pwb7kdMnbTR24cGHg3B_uNvqyuQPZLdjgpo0A==
Age: 1380
cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D
143.204.55.37200 OK 0 B URL HTTP/2 cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D
IP 143.204.55.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D HTTP/1.1
Host: cs-rtb.minutemedia-prebid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Sun, 18 Dec 2022 07:24:09 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF,X-Requested-With
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://public.servenobid.com/
x-reason: could not perform CS due to GDPR policy: gdpr is not applied
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DjiPi391Pr3_yqzaiFetQAco43SXKfKDPKGEaV2zsfAWq923Y0lVHA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4b54a1bb7e351d5bad35a6f055c4fb46
a40243735a9c5fbab354d63babae9b2be77e2fe1
491434f4b0984422d1b36a462888311d241fd0c9777f097714847e9c5165aba7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 167
Cache-Control: max-age=114663
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:09 GMT
Etag: "639ddc59-1d7"
Expires: Mon, 19 Dec 2022 15:15:12 GMT
Last-Modified: Sat, 17 Dec 2022 15:12:25 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4b54a1bb7e351d5bad35a6f055c4fb46
a40243735a9c5fbab354d63babae9b2be77e2fe1
491434f4b0984422d1b36a462888311d241fd0c9777f097714847e9c5165aba7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 453
Cache-Control: max-age=114949
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:09 GMT
Etag: "639ddc59-1d7"
Expires: Mon, 19 Dec 2022 15:19:58 GMT
Last-Modified: Sat, 17 Dec 2022 15:12:25 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ads.servenobid.com/sync?pid=333&uid=0
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=333&uid=0
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=333&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_333=0; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=327&uid=bd280ebf-6d6d-410d-9917-cc0c52de5b08&gdpr=0&gdpr_consent=&us_privacy=1YNY
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=327&uid=bd280ebf-6d6d-410d-9917-cc0c52de5b08&gdpr=0&gdpr_consent=&us_privacy=1YNY
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=bd280ebf-6d6d-410d-9917-cc0c52de5b08&gdpr=0&gdpr_consent=&us_privacy=1YNY HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_327=bd280ebf-6d6d-410d-9917-cc0c52de5b08; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58632/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58632/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBnAnmMCEF8SrAVhi8Z67umhDIbwycAFEgEBAQERoGOoYwAAAAAA_eMAAA&S=AQAAAuyT6pcBmRYFy-l54WvPbvs; Expires=Mon, 18 Dec 2023 13:24:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a2497dd425699f85ecb66bca7bc21183
bda0f0ce939c96dba2b8d13db64873f7e41e9d36
23d4a114af63d00b3ff51f2a017c33c9df43f14ef1b97877cd65403429806723
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 14:15:45 GMT
Expires: Sat, 24 Dec 2022 14:15:44 GMT
Etag: "bda0f0ce939c96dba2b8d13db64873f7e41e9d36"
Cache-Control: max-age=542494,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b6283eddf0b4f3-OSL
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 376bf3b5504d93f6480498b4f5432fd1
5b9cb4f4fad0bb3d4a7ad31cf949f925982bbd29
e9bf4dcf950bf2fe097557a1ce72132899ae8bfa2a017c7c93bd01f269f6a12c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 986
Cache-Control: max-age=118015
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:09 GMT
Etag: "639de63e-139"
Expires: Mon, 19 Dec 2022 16:11:04 GMT
Last-Modified: Sat, 17 Dec 2022 15:54:38 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
ups.analytics.yahoo.com/ups/58559/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58559/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBnAnmMCEJBSfgQ2ZTSVt6APpBai7ZEFEgEBAQERoGOoYwAAAAAA_eMAAA&S=AQAAAjv5IZw8__DGpI80i5E-aAc; Expires=Mon, 18 Dec 2023 13:24:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
185.89.211.12302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ads.servenobid.com/sync?pid=312&uid=0
AN-X-Request-Uuid: cad0db55-29ef-472d-9ea7-a71a5682860d
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
cdn.indexww.com/ht/htw-pixel.gif?0
104.18.36.94200 OK 43 B URL HTTP/2 cdn.indexww.com/ht/htw-pixel.gif?0
IP 104.18.36.94:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /ht/htw-pixel.gif?0 HTTP/1.1
Host: cdn.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 24 Jan 2017 19:36:04 GMT
etag: "da1f1d-2b-546dc3a097100"
cache-control: public, max-age=86400
expires: Mon, 19 Dec 2022 07:24:09 GMT
edge-control: cache-maxage=1h
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 31950
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77b6283f5bd0b518-OSL
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC004FBCC-10FD-4942-BB1D-3C004FE263A4%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC004FBCC-10FD-4942-BB1D-3C004FE263A4%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC004FBCC-10FD-4942-BB1D-3C004FE263A4%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache/2.2.15 (CentOS)
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=73162
expires: Mon, 19 Dec 2022 03:43:31 GMT
date: Sun, 18 Dec 2022 07:24:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
p.rfihub.com/cm?pub=44007&in=1
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=44007&in=1
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=44007&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 07:24:09 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: eud=H4sIAAAAAAAA_zslzmtoZm5obGJhZGJpYmkBAKgn6r0QAAAA; Path=/; Domain=.rfihub.com; Expires=Fri, 12 Jan 2024 07:24:09 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0Mja0NDMxMjE2MzMwMTQ1MhXiM9Q1LymurEyp8vXT9TEEAMt8BIMlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0Mja0NDMxMjE2MzMwMTQ1MhXiM9Q1LymurEyp8vXT9TEEAMt8BIMlAAAA; Path=/; Domain=.rfihub.com; Expires=Fri, 12 Jan 2024 07:24:09 GMT; Secure; SameSite=None
Location: https://ads.servenobid.com/sync?pid=324&uid=5123196424366041525
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash f3edcc19db31e86d7265a70d996c4cff
26a9fed482c34223f534e1e657902ca0d0343de6
bf449a457c541b54ba954b19cb4a0b34d4839412bb9e5bf92e18eaf1822c5f54
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 17 Dec 2022 20:55:47 GMT
Expires: Sun, 18 Dec 2022 20:55:47 GMT
ETag: "26a9fed482c34223f534e1e657902ca0d0343de6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
185.86.137.107200 OK 630 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
IP 185.86.137.107:0
ASN #201081 SmartAdServer SAS
File type HTML document text\012- HTML document, ASCII text
Hash 1bcfad0daed95fea4481b71c3e12efec
6daa95317fff62a39aa088afc9dea853cbafc567
e27a9dab7219be5e626388a34feaa292e2aedccb2f165955d31cbaba1ec95bcc
GET /api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 630
content-type: text/html
date: Sun, 18 Dec 2022 07:24:09 GMT
set-cookie: pid=1597854467326737574; expires=Thu, 18 Jan 2024 07:23:09 GMT; domain=smartadserver.com; path=/; secure; samesite=none
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC004FBCC-10FD-4942-BB1D-3C004FE263A4%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC004FBCC-10FD-4942-BB1D-3C004FE263A4%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC004FBCC-10FD-4942-BB1D-3C004FE263A4%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache/2.2.15 (CentOS)
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=73162
expires: Mon, 19 Dec 2022 03:43:31 GMT
date: Sun, 18 Dec 2022 07:24:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash f3edcc19db31e86d7265a70d996c4cff
26a9fed482c34223f534e1e657902ca0d0343de6
bf449a457c541b54ba954b19cb4a0b34d4839412bb9e5bf92e18eaf1822c5f54
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 17 Dec 2022 20:55:47 GMT
Expires: Sun, 18 Dec 2022 20:55:47 GMT
ETag: "26a9fed482c34223f534e1e657902ca0d0343de6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ads.servenobid.com/sync?pid=316&uid=C004FBCC-10FD-4942-BB1D-3C004FE263A4
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=316&uid=C004FBCC-10FD-4942-BB1D-3C004FE263A4
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=316&uid=C004FBCC-10FD-4942-BB1D-3C004FE263A4 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Cookie: pid_333=0; pid_327=bd280ebf-6d6d-410d-9917-cc0c52de5b08
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html;charset=ISO-8859-1
content-length: 0
set-cookie: pid_316=C004FBCC-10FD-4942-BB1D-3C004FE263A4; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
104.18.33.19200 OK 101 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
IP 104.18.33.19:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 972203580e20c4793ef943dd20341589
bfd7af05ce5a986f97369b7c88bc6b03387cbf70
14f706e5c53d3418781c60274ddff1349ff65825c01553a9479a6c4a5a449d2a
GET /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js-sec.indexww.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html
cf-ray: 77b6283d5952b4f9-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F7EgjZVCRcXl5OW8DrhP5LvPMjzldKmn8rG986UB4cDF%2F5YR2D4QB1v1DrK8HlsLGgte%2B6u4iPB9K%2B4S2KtE5OB69bcY670uB0TeYnavMSVuGff2yBftpkrXqeLdDN%2FbqGqHDHii%2FE%2BMRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 94a3b5e7ac632fcb960904a960477d0d
399812a040820b9ae3bd4f5ad1a152282735814c
a5fa1a9668c1ad2ac317cae3843f9055f7bd3a97db50ad5417c6bdd3ed5117e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 13:55:57 GMT
Expires: Sat, 24 Dec 2022 13:55:56 GMT
Etag: "399812a040820b9ae3bd4f5ad1a152282735814c"
Cache-Control: max-age=541306,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b6283eb875b505-OSL
ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
72.251.249.14204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
IP 72.251.249.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Sun, 18 Dec 2022 07:24:09 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap1ams1
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 4b00d37b4bbf163c9142ca21309fc771
0ce6c3cfd057b07b85f770aba0116c122b221fbc
e5c8a0abbecbb2b2df63f3e8881434cd5603c37508f6db728b3da2d95e1f64df
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 17 Dec 2022 19:26:51 GMT
Expires: Sun, 18 Dec 2022 19:26:51 GMT
ETag: "0ce6c3cfd057b07b85f770aba0116c122b221fbc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ads.servenobid.com/sync?pid=309&uid=e_48e1d8cc-ff06-4879-aed2-b54ad9024154
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=309&uid=e_48e1d8cc-ff06-4879-aed2-b54ad9024154
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=309&uid=e_48e1d8cc-ff06-4879-aed2-b54ad9024154 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Cookie: pid_333=0; pid_327=bd280ebf-6d6d-410d-9917-cc0c52de5b08; pid_316=C004FBCC-10FD-4942-BB1D-3C004FE263A4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_309=e_48e1d8cc-ff06-4879-aed2-b54ad9024154; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ce33ffa01d44d527298fa2c86f920b5d
ca596bf460efa68d3d8931eee2033f97fd33a21b
b7e4872c7c722c4352c7c6ec3802ecefb114e11a7291f2331a6034eb8c8e0c5e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=104419
Date: Sun, 18 Dec 2022 07:24:09 GMT
Etag: "639daf91-1d7"
Expires: Mon, 19 Dec 2022 12:24:28 GMT
Last-Modified: Sat, 17 Dec 2022 12:01:21 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 861kDFUnN5uPIZQvUIzcoEBSgm-4f6CgeGCYgQqdGC4a-WfzRC0Ijw==
Age: 1387
ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=152982
expires: Tue, 20 Dec 2022 01:53:51 GMT
date: Sun, 18 Dec 2022 07:24:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58632/occ?verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ?verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:09 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBnAnmMCEFpmILNb7NWdSTzvJuzSgQAFEgEBAQERoGOoYwAAAAAA_eMAAA&S=AQAAArkx9Md4xgVaa3YDQa1fyl4; Expires=Mon, 18 Dec 2023 13:24:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58559/occ?verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ?verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:09 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBnAnmMCEOWbJCbNQ_sFrR_NWjBiy08FEgEBAQERoGOoYwAAAAAA_eMAAA&S=AQAAAm5qSuW7_lc3JMoSo0oLFeo; Expires=Mon, 18 Dec 2023 13:24:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
2.21.206.244301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
IP 2.21.206.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=gumgum HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=gumgum
date: Sun, 18 Dec 2022 07:24:09 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=312&uid=0
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=312&uid=0
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=312&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_333=0; pid_327=bd280ebf-6d6d-410d-9917-cc0c52de5b08; pid_316=C004FBCC-10FD-4942-BB1D-3C004FE263A4; pid_309=e_48e1d8cc-ff06-4879-aed2-b54ad9024154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_312=0; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=324&uid=5123196424366041525
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=324&uid=5123196424366041525
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=324&uid=5123196424366041525 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_333=0; pid_327=bd280ebf-6d6d-410d-9917-cc0c52de5b08; pid_316=C004FBCC-10FD-4942-BB1D-3C004FE263A4; pid_309=e_48e1d8cc-ff06-4879-aed2-b54ad9024154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_324=5123196424366041525; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
69.166.1.12302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
IP 69.166.1.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-38
X-Xss-Protection: 0
Location: https://ads.servenobid.com/sync?pid=332&uid=1078fc1c-ca43-45b0-b1bc-a238c6bfaa14
Server: sonobi-go
Set-Cookie: __uis=1078fc1c-ca43-45b0-b1bc-a238c6bfaa14; expires=Tue, 17 Jan 2023 07:24:09 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s8538|Y57AH; path=/; domain=.go.sonobi.com; SameSite=None; secure
eus.rubiconproject.com/usync.html?p=gumgum
2.23.134.137200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=gumgum
IP 2.23.134.137:0
ASN #1299 Telia Company AB
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=gumgum HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sun, 18 Dec 2022 07:24:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
185.86.137.107302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
IP 185.86.137.107:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Sun, 18 Dec 2022 07:24:09 GMT
location: https://usersync.gumgum.com/usersync?b=sad&i=4965853059323788539
set-cookie: pid=4965853059323788539; expires=Thu, 18 Jan 2024 07:23:09 GMT; domain=smartadserver.com; path=/; secure; samesite=none
ads.servenobid.com/sync?pid=317&uid=1597854467326737574&gdpr=0&gdpr_consent=
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=317&uid=1597854467326737574&gdpr=0&gdpr_consent=
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=317&uid=1597854467326737574&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Cookie: pid_333=0; pid_327=bd280ebf-6d6d-410d-9917-cc0c52de5b08; pid_316=C004FBCC-10FD-4942-BB1D-3C004FE263A4; pid_309=e_48e1d8cc-ff06-4879-aed2-b54ad9024154; pid_312=0; pid_324=5123196424366041525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_317=1597854467326737574; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37e1188def49ee1314a271a0d8b2be59
37463b1ad107b25dcdf8229a6ea0d18effa349cd
f0ec8335ff33b4a1e981fb5e1528ee2f17036dc1db0df97ce753c86da39c75ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6366
Cache-Control: max-age=160517
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:09 GMT
Etag: "639e7740-1d7"
Expires: Tue, 20 Dec 2022 03:59:26 GMT
Last-Modified: Sun, 18 Dec 2022 02:13:20 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
216.52.2.39204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
IP 216.52.2.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Sun, 18 Dec 2022 07:24:09 GMT
Set-Cookie: ljt_reader=F1d8vRZH7WzwXgCBS0KxZo_S; Path=/; Domain=.lijit.com; Expires=Mon, 18-Dec-2023 07:24:09 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap7ams1
ads.servenobid.com/sync?pid=332&uid=1078fc1c-ca43-45b0-b1bc-a238c6bfaa14
52.31.214.146200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=332&uid=1078fc1c-ca43-45b0-b1bc-a238c6bfaa14
IP 52.31.214.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=332&uid=1078fc1c-ca43-45b0-b1bc-a238c6bfaa14 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_333=0; pid_327=bd280ebf-6d6d-410d-9917-cc0c52de5b08; pid_316=C004FBCC-10FD-4942-BB1D-3C004FE263A4; pid_309=e_48e1d8cc-ff06-4879-aed2-b54ad9024154; pid_312=0; pid_324=5123196424366041525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_332=1078fc1c-ca43-45b0-b1bc-a238c6bfaa14; domain=servenobid.com; SameSite=None; Expires=Sun, 25 Dec 2022 07:24:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 711012e7cc18e0a2fc7fe895c8b803b5
c7ca42939d3f3d79c3c8ef01b9e308f3f8b5b758
b9404c00b286caa694634a0971f529b7171ad7fa8bea43e45dcd302fb5cb296f
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 22 Dec 2022 04:49:46 GMT
ETag: "c7ca42939d3f3d79c3c8ef01b9e308f3f8b5b758"
Last-Modified: Sun, 18 Dec 2022 04:49:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 248
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77b62841fe2c0afe-OSL
sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
IP 213.19.147.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-e0c8f485-7770-4fe0-9fd2-fbe173f971c8-003%22%2C%22zdxidn%22%3A%221506%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D%22%7D; path=/; expires=Mon, 18 Dec 2023 07:24:09 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1671348249706
etag: RXe0c8f48577704fe09fd2fbe173f971c8003
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9c2ed79ad56d842b6135bbed2f385f15
547e349ab49d43eaf5da56fe13afda6fb62c3c9d
b195d6d8803571c441a380e804f135718728dcfc09e27813f353f87126669ddc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6467
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:09 GMT
Last-Modified: Sun, 18 Dec 2022 05:36:22 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
simage4.pubmatic.com/AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=C004FBCC-10FD-4942-BB1D-3C004FE263A4&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY
198.47.127.20200 OK 375 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=C004FBCC-10FD-4942-BB1D-3C004FE263A4&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY
IP 198.47.127.20:0
File type ASCII text, with very long lines (468)
Hash 564ed0971c10a204670d7797c6feff96
0ab4d86a92c2f5cf6c4869244f37241546339494
5686ca388ccd983624dab31591d1a11421b23548fe532139db2c9a905fed0847
GET /AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=C004FBCC-10FD-4942-BB1D-3C004FE263A4&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 07:24:08 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b7e2361e243fed0676bfe8a3aad21909
fdcc1e2d2f7af64ec1a764e5472d6211c95a048d
2ea8e0c2bdb0cba98d9562550c577f9beee375c2c476359fe6f3a49b71109a66
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3731
Cache-Control: max-age=93030
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:09 GMT
Etag: "639d79ec-1d7"
Expires: Mon, 19 Dec 2022 09:14:39 GMT
Last-Modified: Sat, 17 Dec 2022 08:12:28 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
34.192.31.54302 Found 0 B URL HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP 34.192.31.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-length: 0
location: https://sync.go.sonobi.com/us?gdpr=&gdpr_consent=&us_privacy=&loc=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D18%26buyeruid%3D%5BUID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE=
vary: origin
cache-control: no-store
pragma: no-cache
expires: 0
set-cookie: zeta-ssp-user-id=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a; Max-Age=31536000; Expires=Mon, 18 Dec 2023 07:24:09 GMT; Path=/; Domain=disqus.com; Secure; SameSite=None
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
185.89.210.212307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
IP 185.89.210.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
AN-X-Request-Uuid: 6e24e378-d0ba-457a-abfa-f2d8476e20b5
Set-Cookie: uuid2=153670204722756194; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 18-Mar-2023 07:24:09 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
creativecdn.com/cm-notify?pi=gumgum&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=gumgum&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6956c1f13c1b9bb9eab56431b7ff8685
43a5c448ce13f1ff2a1a0b9ab3e27bb4231acd50
d827797e27c46cc35f1e053033f3216a7c81786f2fd5b50a8972d493fcb54d7c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4089
Cache-Control: max-age=121838
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:10 GMT
Etag: "639de90f-1d7"
Expires: Mon, 19 Dec 2022 17:14:48 GMT
Last-Modified: Sat, 17 Dec 2022 16:06:39 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
185.29.134.244302 Moved Temporarily 0 B URL HTTP/1.1 sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
IP 185.29.134.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d HTTP/1.1
Host: sync.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Access-Control-Allow-Origin: *
Server: MT3 254 34fcae8 master cdg-pixel-x7 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: uuid=f5ef639e-c019-4a00-95bb-12f871690413; domain=.mathtag.com; path=/; expires=Mon, 15-Jan-2024 07:24:09 GMT; SameSite=None; Secure
location: https://usersync.gumgum.com/usersync?b=mmh&i=f5ef639e-c019-4a00-95bb-12f871690413&gdpr=0&gdpr_consent=
Expires: Sun, 18 Dec 2022 07:24:09 GMT
ib.adnxs.com/async_usersync?cbfn=queuePixels
185.89.211.12307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 9e23ac56-b51d-45bf-9aaa-f458e66015b2
Set-Cookie: uuid2=9098290934948719341; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 18-Mar-2023 07:24:10 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash b0d057f282d159ded15112772916b1bb
958b5d92b159a8d028382e95c4813cb4abe6fb89
8dfd0e7efa72b99134678b3739de44db3df7d01a5554634692da71f0c4fc7a8c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 18 Dec 2022 07:24:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 17 Dec 2022 20:44:59 GMT
Expires: Sun, 18 Dec 2022 20:44:59 GMT
ETag: "958b5d92b159a8d028382e95c4813cb4abe6fb89"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
3.33.220.150200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
IP 3.33.220.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
52.215.125.239200 OK 43 B URL HTTP/2 pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
IP 52.215.125.239:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 13e1c7a2184e36d7ae519e99b1aa226f
355ccad4eac39838e1cc76fd0b670fd2ea1e5aa3
48a33ca9f42b91902d57ad8ac52e1ce32b92c8c10c732f2dbb6fe960ebfd9438
GET /sync/gumgum?gdpr=0&gdpr_consent= HTTP/1.1
Host: pr-bh.ybp.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: image/gif
content-length: 43
age: 0
strict-transport-security: max-age=31536000
server: ATS
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 3678c5342a3531674497fcd352df920f
09b27f9ff55b24fcfeec5b40eda7f7241bed4744
ab7010b756af09494729823f35fdcc785a969ef991fa7a98b4b35db4bb11cb31
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 18 Dec 2022 07:24:10 GMT
Last-Modified: Sun, 18 Dec 2022 06:53:53 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qKwRgQhOlFcBm1WMUzR13cMLSrdUtZ8s_3BkjxqgNrAsS-U4Hx9OOQ==
Age: 1817
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
185.89.210.212302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
IP 185.89.210.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://usersync.gumgum.com/usersync?b=apn&i=0
AN-X-Request-Uuid: f0056a24-1b42-469d-b7b1-5a00bb634019
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.211.12200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: e4d97687-b277-4eca-8fd9-41540e267139
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b49960e5553708c26edd4e0fb002dc28
b623c90a0b716bba93a8dc3e97a70d24541097f7
edd197ade4633805cdc41f90b3fffb873e86de73777ab98dbfdc28b85017d675
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5842
Cache-Control: max-age=141982
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:10 GMT
Etag: "639e30e6-1d7"
Expires: Mon, 19 Dec 2022 22:50:32 GMT
Last-Modified: Sat, 17 Dec 2022 21:13:10 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
18.158.8.202302 Found 0 B URL HTTP/2 cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
IP 18.158.8.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent= HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html
date: Sun, 18 Dec 2022 07:24:09 GMT
location: https://ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
set-cookie: euid=51581671348250101646f1; Max-Age=2592000; Expires=Tue, 17 Jan 2023 07:24:09 GMT; Domain=.emxdgt.com; Path=/; HttpOnly
content-length: 0
X-Firefox-Spdy: h2
sync.go.sonobi.com/us?gdpr=&gdpr_consent=&us_privacy=&loc=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D18%26buyeruid%3D%5BUID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE=
69.166.1.12302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/us?gdpr=&gdpr_consent=&us_privacy=&loc=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D18%26buyeruid%3D%5BUID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE=
IP 69.166.1.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /us?gdpr=&gdpr_consent=&us_privacy=&loc=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D18%26buyeruid%3D%5BUID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE= HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-150
X-Xss-Protection: 0
Location: https://ssp.disqus.com/match?bidder=18&buyeruid=d3304993-d0b7-4676-9313-7f44e27c5665&r=Cid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE=
Server: sonobi-go
Set-Cookie: __uis=d3304993-d0b7-4676-9313-7f44e27c5665; expires=Tue, 17 Jan 2023 07:24:09 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s85150|Y57AH; path=/; domain=.go.sonobi.com; SameSite=None; secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1be58229bcd725dec0b9f1faf820b94
5aeaa969d1c61f75bd70fb51dc4ee52a14d3c794
e6155c7bbf0179c908c5e11333f601ea0536a4549487fcf9a6ebf97c58e75215
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4632
Cache-Control: max-age=159106
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 07:24:10 GMT
Etag: "639e7884-1d7"
Expires: Tue, 20 Dec 2022 03:35:56 GMT
Last-Modified: Sun, 18 Dec 2022 02:18:44 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
185.89.211.12307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA== HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
AN-X-Request-Uuid: 3ed91f3e-8b9f-4680-8e08-8a9727909132
Set-Cookie: uuid2=4068963198672024787; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 18-Mar-2023 07:24:10 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 2f1965ef132c600051b49839988fb7e3
eb9812095a3f1dea5c65af514b9ddaa4f527e7bb
b1377abb53ff7ce4a74f7f7daa9188a96d10c8c2036b64c280c00387b180b3fb
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 22 Dec 2022 03:48:47 GMT
ETag: "eb9812095a3f1dea5c65af514b9ddaa4f527e7bb"
Last-Modified: Sun, 18 Dec 2022 03:48:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3340
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77b628437c941c0a-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d50ce541bd1cc7b3893faa05203cb028
ba53896ba8a5e2f8a955188f7c8eee0a543661d7
a51f03ae95d50122699b92f1fdfbf00a277687c2ac616d6b6d9654df1a3e759c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148972
Date: Sun, 18 Dec 2022 07:24:10 GMT
Etag: "639e60c1-1d7"
Expires: Tue, 20 Dec 2022 00:47:02 GMT
Last-Modified: Sun, 18 Dec 2022 00:37:21 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JmaOW_IkDxHxjrqzT0mljIV7mKINxxTsYNpc2uYlUBY4cGHT072Lig==
Age: 582
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
185.89.211.12302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
AN-X-Request-Uuid: e10d444d-37d9-448e-8aa9-38f7bb834094
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
dsp.adfarm1.adition.com/cookie/?ssp=5&gdpr=0&gdpr_consent=
85.114.159.118302 Found 0 B URL HTTP/1.1 dsp.adfarm1.adition.com/cookie/?ssp=5&gdpr=0&gdpr_consent=
IP 85.114.159.118:0
ASN #24961 myLoc managed IT AG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie/?ssp=5&gdpr=0&gdpr_consent= HTTP/1.1
Host: dsp.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 18 Dec 2022 07:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
p3p: policyref="http://imagesrv.adition.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Set-Cookie: UserID1=7178386073981483163; Max-Age=7776000; domain=.adfarm1.adition.com; Path=/; SameSite=None; Secure
Location: https://rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7178386073981483163&gdpr=0&gdpr_consent=
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash e38e0c5074888499347a5d2b66324416
a4a6abaaaf6577230368be7c709df6f0c6db7571
4e30f614f87736866625aa09cf846408f1dc458ccfc57061d2154a48a04e798f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102156
Date: Sun, 18 Dec 2022 07:24:10 GMT
Etag: "639da58e-1d7"
Expires: Mon, 19 Dec 2022 11:46:46 GMT
Last-Modified: Sat, 17 Dec 2022 11:18:38 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kYSKOr4CcRjWVjqgiMOVv67JreRKPVxhvMgPumZG-DpzAt_3Qa3mrA==
Age: 1689
match.sharethrough.com/universal/v1?supply_id=v5hJK9Sl&gdpr=0&gdpr_consent=
52.28.99.48204 No Content 0 B URL HTTP/2 match.sharethrough.com/universal/v1?supply_id=v5hJK9Sl&gdpr=0&gdpr_consent=
IP 52.28.99.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /universal/v1?supply_id=v5hJK9Sl&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 07:24:10 GMT
X-Firefox-Spdy: h2
sync.inmobi.com/oRTB?gdpr_consent=&gdpr=0&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
20.127.253.7302 Found 332 B URL HTTP/2 sync.inmobi.com/oRTB?gdpr_consent=&gdpr=0&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
IP 20.127.253.7:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (332), with no line terminators
Hash 9b0879cc5d9cfcc64039207d554789f1
e8b69271be0206e9f7d6fdd438d3e2cb13fc6684
272e9cc0135ac34b40fc5db87e52026ff9ae90f611108490268cc1c9ab6fb4fd
GET /oRTB?gdpr_consent=&gdpr=0&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D HTTP/1.1
Host: sync.inmobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: text/html; charset=utf-8
content-length: 332
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
location: https://id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
vary: Accept
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=1&gdpr=0&gdpr_consent=
44.195.94.142302 Found 126 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=1&gdpr=0&gdpr_consent=
IP 44.195.94.142:0
File type HTML document, ASCII text
Hash 2b44247432ac5fd6b403591219803f3b
a4ebaa57ff2682aa2c17a0ca1547e4d5d5899fd2
7791f6ff30dea5eb0beb79e1a99835aaa5192399749168119c9f105a992c638d
GET /sync?nid=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 07:24:10 GMT
Location: https://usersync.gumgum.com/usersync?b=sta&i=0-74039539-90d3-4cfd-73aa-79887a3ebc9a$ip$91.90.42.154
Set-Cookie: sa-user-id=s%3A0-74039539-90d3-4cfd-73aa-79887a3ebc9a.tiZui09VrpscMmDnIjOeI8Mpao3e8vdO%2BN9Gvyu%2FTdA; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AdAOVOZDTTP1zqnmIej68mltaKpo.Ki6Yba71JoLz6X0b3j4vqZRFeSPZFKudrAFa8JrO0DE; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 126
Connection: keep-alive
ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
52.28.89.159302 Found 0 B URL HTTP/2 ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
IP 52.28.89.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
set-cookie: tuuid=085b863a-496d-4229-9eef-42cedd544a29; Expires=Sat, 18 Mar 2023 07:24:10 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1671348250; Expires=Sat, 18 Mar 2023 07:24:10 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
18.158.8.202200 OK 43 B URL HTTP/2 cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
IP 18.158.8.202:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA== HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
date: Sun, 18 Dec 2022 07:24:09 GMT
x-nosync: na;
content-length: 43
X-Firefox-Spdy: h2
sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
64.202.112.255302 Found 0 B URL HTTP/1.1 sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
IP 64.202.112.255:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Length: 0
Connection: close
set-cookie: obuid=439586a0-f098-484e-af09-9d512367ad1e; Max-Age=7776000; Expires=Sat, 18 Mar 2023 07:24:10 GMT; Path=/; Domain=.outbrain.com
location: https://usersync.gumgum.com/usersync?b=obn&i=ENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29
X-TraceId: 821b43d099d298af88e1ef5711f2378f
rtb-csync.smartadserver.com/redir/?issi=1&partnerid=134&partneruserid=OB_OK&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmart_adserver_eb%26google_hm%3DSMART_USER_ID_B64&gdpr=0&gdpr_consent=
185.86.139.57302 Found 0 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?issi=1&partnerid=134&partneruserid=OB_OK&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmart_adserver_eb%26google_hm%3DSMART_USER_ID_B64&gdpr=0&gdpr_consent=
IP 185.86.139.57:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redir/?issi=1&partnerid=134&partneruserid=OB_OK&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmart_adserver_eb%26google_hm%3DSMART_USER_ID_B64&gdpr=0&gdpr_consent= HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
content-length: 0
date: Sun, 18 Dec 2022 07:24:10 GMT
cache-control: no-cache,no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=smart_adserver_eb&google_hm=MTQwNzE0NzQ5OTc5MzY3NzQzNw==&gdpr=0&gdpr_consent=
pragma: no-cache
set-cookie: pid=1407147499793677437; expires=Thu, 18 Jan 2024 07:24:10 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Thu, 18 Jan 2024 07:24:10 GMT; domain=smartadserver.com; path=/
csync=134:OB_OK; expires=Mon, 18 Dec 2023 07:24:10 GMT; domain=smartadserver.com; path=/
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
162.19.138.120200 43 B URL HTTP/1.1 id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
IP 162.19.138.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Sun, 18-Dec-2022 07:29:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Sun, 18-Dec-2022 07:29:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Sun, 18-Dec-2022 07:29:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Sun, 18-Dec-2022 07:29:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Sun, 18-Dec-2022 07:29:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Sun, 18-Dec-2022 07:29:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Sun, 18 Dec 2022 07:24:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 489bcce06333557aa2640067ff717358
d9d95da5900d177b82c935d34667d32704916cf1
81ca347fe11a2476c5b3bcb593b2da563e3c2353cd96a71acac8afd4d8464834
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 01:56:51 GMT
Expires: Sat, 24 Dec 2022 01:56:50 GMT
Etag: "d9d95da5900d177b82c935d34667d32704916cf1"
Cache-Control: max-age=498159,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b628437996b4f3-OSL
sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
150.136.156.92204 No Content 0 B URL HTTP/2 sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
IP 150.136.156.92:0
ASN #31898 ORACLE-BMC-31898
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D HTTP/1.1
Host: sync.technoratimedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 18 Dec 2022 07:24:10 GMT
set-cookie: tads_uid=GDPR; Max-Age=157680000; Expires=Fri, 17 Dec 2027 07:24:10 GMT; Path=/; Domain=.technoratimedia.com; Secure; SameSite=None
access-control-allow-origin: https://g2.gumgum.com/
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,HEAD,OPTIONS
x-varnish: 381638451
age: 0
via: 1.1 varnish
X-Firefox-Spdy: h2
bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
198.148.27.139302 Found 471 B URL HTTP/2 bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
IP 198.148.27.139:0
Hash 4d5959a81763a0aa58509aee1814922f
4c34959f58422dd753bb605d82e8522dcaa32ecc
311cf02d84a893a38ef30a1a51f42008d87c3b2faf1103dc0f9994e3d78cbc1f
GET /bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25 HTTP/1.1
Host: bh.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
cw-server: bh-deployment-7b977cc7b4-4xfkm
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: V=VwXDGz5x7z1M;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 13-Dec-2023 07:24:10 GMT;Max-Age=31104000;SameSite=None
pb_rtb_ev=3-1huq|7bq.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Mon, 18-Dec-2023 07:24:10 GMT;Max-Age=31536000;SameSite=None
INGRESSCOOKIE=0d4f3fc1d2c47167; path=/; HttpOnly; Secure; SameSite=None
location: https://usersync.gumgum.com/usersync?b=pln&i=VwXDGz5x7z1M&ev=1&pid=558355
server: Jetty(9.4.14.v20181114)
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
52.28.89.159200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
IP 52.28.89.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
b1sync.zemanta.com/usersync/gumgum/?puid=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
50.31.142.223302 Found 366 B URL HTTP/1.1 b1sync.zemanta.com/usersync/gumgum/?puid=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
IP 50.31.142.223:0
File type HTML document, ASCII text, with very long lines (364)
Hash ad6f25ea8afe33ef5fc03e9b9b5a19b6
8a53d969d880abd5a04dccdc7dd4390c03a65188
5db2edec087048f525545e3ed9b11bccf5d982d1d3e73b0b7091699be16f2086
GET /usersync/gumgum/?puid=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 366
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://stags.bluekai.com/site/23178?id=I7l2yQmNozIqiBwj3QlC&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1---
P3p: CP="We do not support P3P header."
Pragma: no-cache
Set-Cookie: zuid=I7l2yQmNozIqiBwj3QlC; Path=/; Domain=zemanta.com; Expires=Mon, 18 Dec 2023 07:24:10 GMT; Max-Age=31536000; Secure; SameSite=None
Date: Sun, 18 Dec 2022 07:24:10 GMT
rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7178386073981483163&gdpr=0&gdpr_consent=
185.86.139.57200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7178386073981483163&gdpr=0&gdpr_consent=
IP 185.86.139.57:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=49&partneruserid=7178386073981483163&gdpr=0&gdpr_consent= HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Sun, 18 Dec 2022 07:24:10 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=886312110186298579; expires=Wed, 17 Jan 2024 07:24:10 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Wed, 17 Jan 2024 07:24:10 GMT; domain=smartadserver.com; path=/
csync=49:7178386073981483163; expires=Mon, 18 Dec 2023 07:24:10 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
x.bidswitch.net/sync?ssp=smartadserver&gdpr=0&gdpr_consent=
52.57.192.79302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=smartadserver&gdpr=0&gdpr_consent=
IP 52.57.192.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=smartadserver&gdpr=0&gdpr_consent= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:10 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=smartadserver&gdpr=0&gdpr_consent=
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=d80cdebd-4991-47b6-b668-f5da61bb50b7; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671348250; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1671348250; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671348250; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 63c136416c341281ce47067f925def14
18c73b077a9ae190fad599d0e33da794da73c388
72152e04eba59a283298c9ed68c984a31e71294feb0103e1dbb218c2009130b1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 17 Dec 2022 20:44:28 GMT
Expires: Sun, 18 Dec 2022 20:44:28 GMT
ETag: "18c73b077a9ae190fad599d0e33da794da73c388"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 4d5959a81763a0aa58509aee1814922f
4c34959f58422dd753bb605d82e8522dcaa32ecc
311cf02d84a893a38ef30a1a51f42008d87c3b2faf1103dc0f9994e3d78cbc1f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99211
Date: Sun, 18 Dec 2022 07:24:10 GMT
Etag: "639d9bc9-1d7"
Expires: Mon, 19 Dec 2022 10:57:41 GMT
Last-Modified: Sat, 17 Dec 2022 10:36:57 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nZjUS1X5y4L4iH_vRJSAqBnL8apjx8F25oEa8j9SqDMxUvFs4O4I_A==
Age: 1244
sync.ipredictive.com/d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D
3.89.198.119302 Found 108 B URL HTTP/1.1 sync.ipredictive.com/d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D
IP 3.89.198.119:0
File type HTML document, ASCII text
Hash 271d5086c3af6a0d50238a8aba70d371
1b41b63ec4bb38287e192cb289fb03b06b835ee2
aac80f5b7c8e610a3a123b8fdfa27dcc7acae0425a08ed9246a204b78dfe95e7
GET /d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D HTTP/1.1
Host: sync.ipredictive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 07:24:10 GMT
Location: https://usersync.gumgum.com/usersync?b=vnt&i=82429feb-dc6a-4d2d-b4de-1117ad5abbea
Set-Cookie: cu=82429feb-dc6a-4d2d-b4de-1117ad5abbea|1671348250256; Path=/; Domain=ipredictive.com; Expires=Mon, 18 Dec 2023 07:24:10 GMT; Max-Age=31536000; SameSite=None; Secure
X-CI-RTID: bb4d469b-4c14-4e5b-94ed-4d9d896a459c
Content-Length: 108
Connection: keep-alive
usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=rhy&i=OPTOUT HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=opx&i=71388695-fa78-4735-9039-46e5f01bc4c3
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=opx&i=71388695-fa78-4735-9039-46e5f01bc4c3
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=opx&i=71388695-fa78-4735-9039-46e5f01bc4c3 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
x.bidswitch.net/ul_cb/sync?ssp=smartadserver&gdpr=0&gdpr_consent=
52.57.192.79200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=smartadserver&gdpr=0&gdpr_consent=
IP 52.57.192.79:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=smartadserver&gdpr=0&gdpr_consent= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
usersync.gumgum.com/usersync?b=mmh&i=f5ef639e-c019-4a00-95bb-12f871690413&gdpr=0&gdpr_consent=
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=mmh&i=f5ef639e-c019-4a00-95bb-12f871690413&gdpr=0&gdpr_consent=
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=mmh&i=f5ef639e-c019-4a00-95bb-12f871690413&gdpr=0&gdpr_consent= HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=apn&i=0
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=apn&i=0
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=apn&i=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=iex&i=0
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=iex&i=0
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=iex&i=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 4d5959a81763a0aa58509aee1814922f
4c34959f58422dd753bb605d82e8522dcaa32ecc
311cf02d84a893a38ef30a1a51f42008d87c3b2faf1103dc0f9994e3d78cbc1f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99182
Date: Sun, 18 Dec 2022 07:24:10 GMT
Etag: "639d9bc9-1d7"
Expires: Mon, 19 Dec 2022 10:57:12 GMT
Last-Modified: Sat, 17 Dec 2022 10:36:57 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PXApLJLTk-3fu3xNpONRY6yyFN26Dc_TPYqQadeaL4BB-vLYz7NEtQ==
Age: 1215
usersync.gumgum.com/usersync?b=pln&i=VwXDGz5x7z1M&ev=1&pid=558355
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=pln&i=VwXDGz5x7z1M&ev=1&pid=558355
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=pln&i=VwXDGz5x7z1M&ev=1&pid=558355 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
ssbsync.smartadserver.com/api/sync?callerId=3&gdpr=0&gdpr_consent=&google_error=3
185.86.137.107302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=3&gdpr=0&gdpr_consent=&google_error=3
IP 185.86.137.107:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=3&gdpr=0&gdpr_consent=&google_error=3 HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Sun, 18 Dec 2022 07:24:09 GMT
location: https://cm.g.doubleclick.net/pixel?google_nid=smart_adserver_eb&google_push=&google_hm=ODMyNTUxMTg0NzAzNDIyMzc1OQ%3D%3D
set-cookie: pid=8325511847034223759; expires=Thu, 18 Jan 2024 07:23:10 GMT; domain=smartadserver.com; path=/; secure; samesite=none
usersync.gumgum.com/usersync?b=obn&i=ENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=obn&i=ENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=obn&i=ENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%28YnJa16IDW1D6m9b4dAz2bODXF5GgKY8f4s2BhiK_D0llBc1YZnpoUJ_qR3HBfESc%29 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=sta&i=0-74039539-90d3-4cfd-73aa-79887a3ebc9a$ip$91.90.42.154
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=sta&i=0-74039539-90d3-4cfd-73aa-79887a3ebc9a$ip$91.90.42.154
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=sta&i=0-74039539-90d3-4cfd-73aa-79887a3ebc9a$ip$91.90.42.154 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=vnt&i=82429feb-dc6a-4d2d-b4de-1117ad5abbea
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=vnt&i=82429feb-dc6a-4d2d-b4de-1117ad5abbea
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=vnt&i=82429feb-dc6a-4d2d-b4de-1117ad5abbea HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 62e1381055721b337741a808faee58dc
68ea8422158ae45489f79a4efc8dcabaafe116a4
b05e9e6138e494254be47f293cfe833ef2792840dfd40aa4b909412625da6b2f
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 22 Dec 2022 03:53:22 GMT
ETag: "68ea8422158ae45489f79a4efc8dcabaafe116a4"
Last-Modified: Sun, 18 Dec 2022 03:53:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 576
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77b62844ff980afe-OSL
usersync.gumgum.com/usersync?b=sad&i=4965853059323788539
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=sad&i=4965853059323788539
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=sad&i=4965853059323788539 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1671348249706
213.19.147.44302 Found 269 B URL HTTP/2 sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1671348249706
IP 213.19.147.44:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4e447b6162df6e442736463ef1463f43
5c8dc44e1de0558dcca9eac8d99dd3724d8b2728
784fcb835a3dac13a88f5ac0f2cd294bdcb6de218ad556ff896d79abc3286427
GET /usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1671348249706 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
match.deepintent.com/usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D
169.197.150.8200 OK 0 B URL HTTP/2 match.deepintent.com/usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D
IP 169.197.150.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 18 Dec 2022 07:24:10 GMT
server: c
X-Firefox-Spdy: h2
ssbsync.smartadserver.com/api/sync?callerId=3&google_error=5
185.86.137.107302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=3&google_error=5
IP 185.86.137.107:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=3&google_error=5 HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Sun, 18 Dec 2022 07:24:10 GMT
location: https://cm.g.doubleclick.net/pixel?google_nid=smart_adserver_eb&google_push=&google_hm=NjYwNTE2ODY2MjMzMDk5NzkzNw%3D%3D
set-cookie: pid=6605168662330997937; expires=Thu, 18 Jan 2024 07:23:10 GMT; domain=smartadserver.com; path=/; secure; samesite=none
stags.bluekai.com/site/23178?id=I7l2yQmNozIqiBwj3QlC&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1---
23.38.201.22302 Found 0 B URL HTTP/2 stags.bluekai.com/site/23178?id=I7l2yQmNozIqiBwj3QlC&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1---
IP 23.38.201.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/23178?id=I7l2yQmNozIqiBwj3QlC&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1--- HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://b1sync.zemanta.com/usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Sun, 18 Dec 2022 07:24:10 GMT
set-cookie: bku=ikG99Og97ZwbNOQw; Path=/; Domain=.bluekai.com; Expires=Sun, 18 Jun 2023 07:24:10 GMT; Secure; SameSite=None
bkpa=KJhz0X+03M9R9mY7iEFNIYBTBApcY0sAuH9JO+k6RZeSPn0DReFT2JNrrrMbZtd3qB21yjL+dMdjmAyVnxpjVPy40R554qNfVqLK5DN+rdY+ftXmKDLWs9WIp+hy1jBcz2SUUAd12Ry9lNlErKaiWmOMKt2mtin9Hg4+DjFEpdByMq0BV9aJ8C+JAM/w4Yq8FiJhyanm0pMNZK9IvsO0/lpNhhz3tMnQK8UpiCtTvmvNJyAF9FUf3YHX50eHkZjHPDM/SuZ0irxaWfx300J7mTaUJ/V541R3i37zotJqnrKuokVZTGebzSH0R17G+q8NTqdHlqlzmFropHemhrwh2yemHNbC; Path=/; Domain=.bluekai.com; Expires=Sun, 18 Jun 2023 07:24:10 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
ssp.disqus.com/match?bidder=18&buyeruid=d3304993-d0b7-4676-9313-7f44e27c5665&r=Cid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE=
34.192.31.54302 Found 0 B URL HTTP/2 ssp.disqus.com/match?bidder=18&buyeruid=d3304993-d0b7-4676-9313-7f44e27c5665&r=Cid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE=
IP 34.192.31.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder=18&buyeruid=d3304993-d0b7-4676-9313-7f44e27c5665&r=Cid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAE= HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:10 GMT
content-length: 0
location: https://prebid.a-mo.net/cchain/0?gdpr=&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D6%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAI=%26buyeruid%3D
vary: origin
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D6%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAI=%26buyeruid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D6%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAI=%26buyeruid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D6%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAI=%26buyeruid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Sun, 18 Dec 2022 07:24:09 GMT
location: https://ssp.disqus.com/match?bidder=6&r=Cid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhIGOAI=&buyeruid=c551c8eb-1be0-40b3-902b-f12f61646d50&gdpr=&gdpr_consent=&us_privacy=
server: envoy
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1671348249646
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1671348249646
IP 213.19.147.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1671348249646 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://ads.servenobid.com/sync?pid=321&uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
ssbsync.smartadserver.com/api/sync?callerId=3&google_error=5
185.86.137.107302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=3&google_error=5
IP 185.86.137.107:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=3&google_error=5 HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Sun, 18 Dec 2022 07:24:10 GMT
location: https://cm.g.doubleclick.net/pixel?google_nid=smart_adserver_eb&google_push=&google_hm=MTg5OTE3MDEzMTM2MDYxMTQxNA%3D%3D
set-cookie: pid=1899170131360611414; expires=Thu, 18 Jan 2024 07:23:10 GMT; domain=smartadserver.com; path=/; secure; samesite=none
b1sync.zemanta.com/usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI
50.31.142.223200 OK 26 B URL HTTP/1.1 b1sync.zemanta.com/usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI
IP 50.31.142.223:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6a43099d5c8fe991a7aa7ebaca53069d
5bce2f0d57305c58c7b05bfce29ebb39a18f5570
3b7b8a4b411ddf8db9bacc2f3aabf406f8e4c0c087829b336ca331c40adfdff1
GET /usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SJXNQZHSULNJZXXUSLRNFBHO2RTKFWEGJTVONPXA4TJOZQWG6J5GEWS2LI HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 26
Date: Sun, 18 Dec 2022 07:24:10 GMT
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 489bcce06333557aa2640067ff717358
d9d95da5900d177b82c935d34667d32704916cf1
81ca347fe11a2476c5b3bcb593b2da563e3c2353cd96a71acac8afd4d8464834
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 07:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 01:56:51 GMT
Expires: Sat, 24 Dec 2022 01:56:50 GMT
Etag: "d9d95da5900d177b82c935d34667d32704916cf1"
Cache-Control: max-age=498159,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b62841ca95b505-OSL
ssbsync.smartadserver.com/api/sync?callerId=3&google_error=5
185.86.137.107302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=3&google_error=5
IP 185.86.137.107:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=3&google_error=5 HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Sun, 18 Dec 2022 07:24:09 GMT
location: https://cm.g.doubleclick.net/pixel?google_nid=smart_adserver_eb&google_push=&google_hm=MjIyMTk3MTg3MTA5OTc3MTI5
set-cookie: pid=222197187109977129; expires=Thu, 18 Jan 2024 07:23:10 GMT; domain=smartadserver.com; path=/; secure; samesite=none
x.bidswitch.net/sync?ssp=gumgum2&user_id=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---
52.57.192.79302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=gumgum2&user_id=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---
IP 52.57.192.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=gumgum2&user_id=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:10 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=c87fb691-e255-4cc4-ad9a-2e948f685042; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671348250; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1671348250; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671348250; path=/; expires=Mon, 18-Dec-2023 07:24:10 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---
52.57.192.79200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1---
IP 52.57.192.79:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=gumgum2&user_id=e_48e1d8cc-ff06-4879-aed2-b54ad9024154&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242&fp_id=f9exputrmo4dmeb8m8z3qftuqjb3a1671348242&fp_cr_tm=1671348242537&fp_acc_tm=1671348242537&fp_emm_tm=1671348242537&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,2&crs=&lat=&lon=&c29=plid,16713482425352642&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1671348246&rnd=888554
34.248.105.76200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242&fp_id=f9exputrmo4dmeb8m8z3qftuqjb3a1671348242&fp_cr_tm=1671348242537&fp_acc_tm=1671348242537&fp_emm_tm=1671348242537&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,2&crs=&lat=&lon=&c29=plid,16713482425352642&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1671348246&rnd=888554
IP 34.248.105.76:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=tfnxayvx5ypk1dhjvfra5ubrzotrn1671348242&fp_id=f9exputrmo4dmeb8m8z3qftuqjb3a1671348242&fp_cr_tm=1671348242537&fp_acc_tm=1671348242537&fp_emm_tm=1671348242537&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,2&crs=&lat=&lon=&c29=plid,16713482425352642&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1671348246&rnd=888554 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:10 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=f747d650-7ea4-11ed-818a-698a86a2510b; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Fri, 12-Jan-2024 07:24:10 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
104.22.52.86200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 104.22.52.86:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: NzzDMQRIzsXNjVR7/B6e4yrrDcazBk60q2/S2QH7YxwqiaX7/iQchWRPdgPY0BswypKEPiqaJg8=
x-amz-request-id: EK159HTWSS7GNBQ8
last-modified: Thu, 24 Nov 2022 12:48:29 GMT
etag: W/"9ee82d693d1e83b3a37ee20226716f78"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 130
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 77b62828bde5b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 18 Dec 2022 06:49:03 GMT
last-modified: Thu, 15 Dec 2022 17:02:43 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 a49c26e403f2dac09629dceb6dac5740.cloudfront.net (CloudFront), 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
etag: W/"1453894bd42bb648e199d9d7d63e6cba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: BpDlLONzA9iiyqbJs5Sp45m-2uT7Hw9tbGVeZaDK_Wi9tElvu1ZjHw==
age: 2101
X-Firefox-Spdy: h2
g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
63.33.230.145200 OK 0 B URL HTTP/2 g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
IP 63.33.230.145:0
GET /usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html;charset=UTF-8
server: nginx
set-cookie: vst=e_48e1d8cc-ff06-4879-aed2-b54ad9024154; Domain=.gumgum.com; Expires=Mon, 18-Dec-2023 07:24:09 GMT; Path=/; Secure; SameSite=None
etag: W/"09581ef7878c4214fbec5a05aeb6a0205"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
public.servenobid.com/sync.html?usp_consent=1YNY
54.230.111.4200 OK 0 B URL HTTP/2 public.servenobid.com/sync.html?usp_consent=1YNY
IP 54.230.111.4:0
GET /sync.html?usp_consent=1YNY HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 01 Dec 2022 19:37:41 GMT
x-amz-meta-codebuild-content-sha256: 7a0197b444a3c5a5c4f92ccd56438fcf44932f5518b7cae8f7a5ec6b1a094ad5
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:5838c8c3-64c9-4519-918a-548b86a0fef3
x-amz-meta-codebuild-content-md5: 86c7b5baa8ca6b64006191aa90b9f19a
server: AmazonS3
content-encoding: br
date: Sat, 17 Dec 2022 19:38:08 GMT
cache-control: max-age=86400
etag: W/"500c31eb3dcfb8f2a7dc0893b86a487a"
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uBkGPJLS_k8YEeyFWtjt0EhMKA-TFgzCmcSwR8WC0FzrttybNPJMyA==
age: 42362
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:700,regular
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,regular
IP 142.250.74.106:0
GET /css?family=Open+Sans:700,regular HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Dec 2022 07:24:07 GMT
date: Sun, 18 Dec 2022 07:24:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
IP 213.19.147.44:0
GET /usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 07:24:09 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-397f7f4e-0aaa-4ce3-9e52-b0b8c75a3b77-003%22%2C%22zdxidn%22%3A%222069.26%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D%22%7D; path=/; expires=Mon, 18 Dec 2023 07:24:09 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1671348249646
etag: RX397f7f4e0aaa4ce39e52b0b8c75a3b77003
X-Firefox-Spdy: h2
prebid.media.net/rtb/prebid?cid=8CUYEJ1S6
34.107.148.139200 OK 0 B URL HTTP/2 prebid.media.net/rtb/prebid?cid=8CUYEJ1S6
IP 34.107.148.139:0
POST /rtb/prebid?cid=8CUYEJ1S6 HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3149
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 07:24:05 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
accept-ch: Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model
expires: Sun, 18 Dec 2022 07:24:05 GMT
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/conf/config250.js
54.230.111.127200 OK 0 B URL HTTP/2 cdn-gl.imrworldwide.com/conf/config250.js
IP 54.230.111.127:0
GET /conf/config250.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sun, 18 Dec 2022 05:21:40 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: OXuD9TnJa.rphuIJ4wvBnwJvSuQ8nFgZ
server: AmazonS3
content-encoding: gzip
date: Sun, 18 Dec 2022 06:36:07 GMT
cache-control: max-age=86400,s-maxage=86400
etag: W/"3e087b1380d8f9ed1bf8d82ac404c69d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kxBKHol3cp3X6AWzva2QXywqZm-qAX8ga9EcpLWH-m1K5GBl_ERKPw==
age: 2910
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 0 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "521FC3A306D898D23568436FD367C797EBFAFD754AE805BCD23FABF1F1C362AD"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8937
Expires: Sun, 18 Dec 2022 09:53:02 GMT
Date: Sun, 18 Dec 2022 07:24:05 GMT
Connection: keep-alive