go.techgeek.digital/21xmDpI
172.67.138.135301 Moved Permanently 0 B URL HTTP/1.1 go.techgeek.digital/21xmDpI
IP 172.67.138.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /21xmDpI HTTP/1.1
Host: go.techgeek.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 22 Nov 2022 19:51:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 22 Nov 2022 20:51:14 GMT
Location: https://go.techgeek.digital/21xmDpI
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WhLtCEf0RzSJQVdj0%2FzYHhYgPeHos6bHZV0GhE7N1nILreoczcP5T7TLCM%2B8qQqzAHYSnxCZfNj2E5%2F6FcYFnzI7jIovvSI1%2FbTaaUcKaZocCeNBis0QfGTc1Ce9KjBPx5yHr60Q"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e432d99e5bb506-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7991
Expires: Tue, 22 Nov 2022 22:04:25 GMT
Date: Tue, 22 Nov 2022 19:51:14 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b59d95402dfb464c176610284ba13f65
1a6c62fb0d48654dd204b66161bb03fefe60f71a
40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6329
Cache-Control: max-age=145530
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:14 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:16:44 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 19:09:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2515
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7793
Expires: Tue, 22 Nov 2022 22:01:07 GMT
Date: Tue, 22 Nov 2022 19:51:14 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac9153aeb91eaef6c844361fb05fb68f
b77fe1437a67c1b91a9fbe887e8dc01f2b3f670b
6bdcef7d75e94d0da3909ce26aa2f80cbd628e8855b544385149d3e05cb51846
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6BDCEF7D75E94D0DA3909CE26AA2F80CBD628E8855B544385149D3E05CB51846"
Last-Modified: Mon, 21 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3657
Expires: Tue, 22 Nov 2022 20:52:11 GMT
Date: Tue, 22 Nov 2022 19:51:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DUAojd9uXuOLE6knWGyls6YagHYLjHYwxXHr6iV1uxzjCOJE7jp7Tv1TZwzZ1gzySQlSmOF5bPM=
x-amz-request-id: FXBQSC3MJZGDWDQY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 19:42:42 GMT
age: 512
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 19:08:53 GMT
cache-control: public,max-age=3600
age: 2541
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac9153aeb91eaef6c844361fb05fb68f
b77fe1437a67c1b91a9fbe887e8dc01f2b3f670b
6bdcef7d75e94d0da3909ce26aa2f80cbd628e8855b544385149d3e05cb51846
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6BDCEF7D75E94D0DA3909CE26AA2F80CBD628E8855B544385149D3E05CB51846"
Last-Modified: Mon, 21 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3656
Expires: Tue, 22 Nov 2022 20:52:11 GMT
Date: Tue, 22 Nov 2022 19:51:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8a181d95550cfdf3b1fc4deb71631e40
37866f7293c41fbfb817e321754cae5c5bf59f93
6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 353
Cache-Control: max-age=134493
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 09:12:48 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 31 kB IP 93.184.220.29:0
Hash d5282df8850c747970ec18bccd90df4f
55484c905ba0630dfffa4c03e50f467067e41f3f
8870cc0efdf4cdd16623c166e8c63564eb8d6172419030661ef865324f2e8e90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4739
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637c6862-117"
Last-Modified: Tue, 22 Nov 2022 18:32:16 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 3.7 kB IP 93.184.220.29:0
Hash 5d9ddeb41330e2565cb2f6353fac8beb
7aaad4f778890a50f6bf5da84a2951086375a4e0
2a6496234b40c3ae98d398f9538617e17186b834719286fcacf6414d9d4426fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3480
Cache-Control: max-age=127175
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637c6862-117"
Expires: Thu, 24 Nov 2022 07:10:50 GMT
Last-Modified: Tue, 22 Nov 2022 06:12:50 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 5.3 kB IP 93.184.220.29:0
Hash 68aaea99aa50b37ce6c001e04454f797
8cc6a4d8c39863fedcafd7957e6e375c9cd3ddbb
060862f9880aea6336bf4c80d2b6182e233b46cf59ae0331c9a9050d7d04c8a9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5318
Cache-Control: max-age=99116
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637bf399-116"
Expires: Wed, 23 Nov 2022 23:23:11 GMT
Last-Modified: Mon, 21 Nov 2022 21:54:33 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
static.adshort.co/logo.png
172.67.194.197200 OK 11 kB URL HTTP/2 static.adshort.co/logo.png
IP 172.67.194.197:0
File type PNG image data, 215 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d281a30173f72f20199c2f8ff716193
fbd1ea9c362478e37834b808958fea22ceaec1b3
4edeb7cd021290261f7f7dc72cd26cd53ece78918bd11a23b4af3484f3a6abfa
GET /logo.png HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: image/png
content-length: 10737
last-modified: Mon, 24 Feb 2020 16:53:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6660
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2jm8eBvqFiFN4PIXdqV5JMhcnNVVbzi%2FaN6YelnZZPSN48spbGKhK6ueWWMX7qcKt1ntRsG%2FO%2F3p4bLAwqQauVdDxJoYMnpHKeA7yjW8RsHoFlasvE2EabUjIgUB8W2hDEQXjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e432e0085a0b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bf968391020fb8a504c017a1f2acab4
7ae11b0849c10653abaa85cddd67e6a1d8276629
3f93ca695f1a4fe5a8db680c0c5cec460c4c8914d723d31dbb95e12321ffdac8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F93CA695F1A4FE5A8DB680C0C5CEC460C4C8914D723D31DBB95E12321FFDAC8"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17703
Expires: Wed, 23 Nov 2022 00:46:18 GMT
Date: Tue, 22 Nov 2022 19:51:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bf968391020fb8a504c017a1f2acab4
7ae11b0849c10653abaa85cddd67e6a1d8276629
3f93ca695f1a4fe5a8db680c0c5cec460c4c8914d723d31dbb95e12321ffdac8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F93CA695F1A4FE5A8DB680C0C5CEC460C4C8914D723D31DBB95E12321FFDAC8"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17672
Expires: Wed, 23 Nov 2022 00:45:47 GMT
Date: Tue, 22 Nov 2022 19:51:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9ad7702adcfc86ba44ff8e8471b01879
873756ac7b99c89c5ac3730566545ceffd608414
3947740d502c896634d970f238170c74d8978bc76e9881aa89eac50744a2dfd7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3480
Cache-Control: max-age=127175
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637c6862-117"
Expires: Thu, 24 Nov 2022 07:10:50 GMT
Last-Modified: Tue, 22 Nov 2022 06:12:50 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 389 B IP 93.184.220.29:0
Hash 758a9b704521b1155448cc9ec17fc408
6350fcd52f3ba929cc2038d4c385bc3962b62a36
0c5cf70f8f8460c919f9a1a03e7803775da883b017c28c1b566636cb97bbc29d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=123695
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637c6862-117"
Expires: Thu, 24 Nov 2022 06:12:50 GMT
Last-Modified: Tue, 22 Nov 2022 06:12:50 GMT
Server: nginx
Content-Length: 279
push.services.mozilla.com/
54.148.84.125101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.84.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: V4wNe3JCEwsz7VToIgwhKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l2vfT60CyvI8IMyq/ZPMw4FVsDg=
www.googletagmanager.com/gtag/js?id=UA-40605702-4
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-40605702-4
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 0540980f0ba059a52bb7ebdfd123f0d5
95a0c32f68f5513205218d03ec948310acb6be66
0974563318cffd07a32ccc6b55096315235c5ecb9ea261c0cff68c9d892e16e5
GET /gtag/js?id=UA-40605702-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:51:15 GMT
expires: Tue, 22 Nov 2022 19:51:15 GMT
cache-control: private, max-age=900
last-modified: Tue, 22 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43722
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6c510f9410fb7948a69ae3656f03f9e1
849736ba7263a7e3017826dfd7d8dcd6ab34148c
f0c203a2f1948f1df2f47a082ac134902b1ca4f0263a8a7f921eacd4c928576e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5318
Cache-Control: max-age=99116
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637bf399-116"
Expires: Wed, 23 Nov 2022 23:23:11 GMT
Last-Modified: Mon, 21 Nov 2022 21:54:33 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 05f72ed7b070d5dc34309bad75469551
7f15d285e86cae6b401b98e1262a847367698ad4
3bbfb7fbca6e9ba55df456bd57e5d0abbf22b56d1e0719775c3857382ab925ff
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3BBFB7FBCA6E9BA55DF456BD57E5D0ABBF22B56D1E0719775C3857382AB925FF"
Last-Modified: Tue, 22 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3428
Expires: Tue, 22 Nov 2022 20:48:23 GMT
Date: Tue, 22 Nov 2022 19:51:15 GMT
Connection: keep-alive
zunsoach.com/tag.min.js
139.45.197.248200 OK 23 kB IP 139.45.197.248:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 483fb08fa557ad3a7492747317d671e8
9725ce3026e401791197c820e5d5f8ffc12a2b19
04babc61396cef68973dc4af7411cee903e362268b3bfed29f642453d21ce3b4
GET /tag.min.js HTTP/1.1
Host: zunsoach.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: text/javascript; charset=utf-8
content-length: 23259
content-encoding: br
x-trace-id: 45e5a0654228e986afaeb0481e4a044b
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Tue, 22 Nov 2022 13:24:33 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
216.58.207.195200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19292, version 1.0\012- data
Hash 19007b17e56daa60133bce9e9b352a95
bac1384caeae5762e7a1d8c18037f69c8cd21bc4
fd88a03358ba14440b78c6329717bdf6ed1a9fe97c3ad4e0a0a39d31fb1ac546
GET /s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 20:03:37 GMT
expires: Tue, 21 Nov 2023 20:03:37 GMT
cache-control: public, max-age=31536000
age: 85658
last-modified: Wed, 27 Apr 2022 16:12:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 84159ac7a7050bc533a07bef865cf134
57b3eb1a0badd4bc6510f2b83c938130a5ae6f52
a161ac91485f4e01aacf23df472a49a11928c241d2d0a06e8989f5859f612f6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4092
Cache-Control: max-age=135352
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637c85ef-117"
Expires: Thu, 24 Nov 2022 09:27:07 GMT
Last-Modified: Tue, 22 Nov 2022 08:18:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 006d898fc6a45451962eef49b429ab58
e4c7bbabd6a595403d5c87b99d18878114ada793
93b3b102ee96c6ec2027924bc9e330883d3d8d91f4ecf976d8d19c73d3509008
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "93B3B102EE96C6EC2027924BC9E330883D3D8D91F4ECF976D8D19C73D3509008"
Last-Modified: Tue, 22 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10975
Expires: Tue, 22 Nov 2022 22:54:10 GMT
Date: Tue, 22 Nov 2022 19:51:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 84159ac7a7050bc533a07bef865cf134
57b3eb1a0badd4bc6510f2b83c938130a5ae6f52
a161ac91485f4e01aacf23df472a49a11928c241d2d0a06e8989f5859f612f6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4092
Cache-Control: max-age=135352
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637c85ef-117"
Expires: Thu, 24 Nov 2022 09:27:07 GMT
Last-Modified: Tue, 22 Nov 2022 08:18:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 12 kB IP 142.250.74.35:0
Hash 67b1508778f641b3a88b295485c06378
f173eff3f21a88d4d12aa123a2786e5387b12ce3
c49dcce8e9ec3524e74e8b6d3962bb838fc4a58981a1fe93abb11335fa858e87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zunsoach.com/5/4503973/?oo=1&aab=1
139.45.197.248200 OK 1.9 kB URL HTTP/2 zunsoach.com/5/4503973/?oo=1&aab=1
IP 139.45.197.248:0
Hash c1c2f27416851447301ef36b0f3b377a
c5769c136a40bc3922927f1481a7cfd6c413311b
1861a78395724a958a28c0ff91259497fe1b8edd98b0044c3f1236cc63416d27
GET /5/4503973/?oo=1&aab=1 HTTP/1.1
Host: zunsoach.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/json
x-trace-id: e20f4aca08ec3c249cd1c6194ad8ee65
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=05ad6bf95f6d460d94680be541001f74; expires=Wed, 22 Nov 2023 19:51:15 GMT; path=/; secure; SameSite=None
oaidts=1669146675; expires=Wed, 22 Nov 2023 19:51:15 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d9fc305a152b948877a19e64f07e9904
0a6f467107ca0284e5d9c7a89e2431b3709b41ae
b0ffff086e960ab6a18ec015d70ccb6d1259aee22ceadda17ad465e1253756aa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 19:51:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 06:25:22 GMT
Expires: Mon, 28 Nov 2022 06:25:21 GMT
Etag: "0a6f467107ca0284e5d9c7a89e2431b3709b41ae"
Cache-Control: max-age=469445,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76e432e29b51b509-OSL
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 05f72ed7b070d5dc34309bad75469551
7f15d285e86cae6b401b98e1262a847367698ad4
3bbfb7fbca6e9ba55df456bd57e5d0abbf22b56d1e0719775c3857382ab925ff
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3BBFB7FBCA6E9BA55DF456BD57E5D0ABBF22B56D1E0719775C3857382AB925FF"
Last-Modified: Tue, 22 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3428
Expires: Tue, 22 Nov 2022 20:48:23 GMT
Date: Tue, 22 Nov 2022 19:51:15 GMT
Connection: keep-alive
ads.adshort.media/adx/fixed_adxv2t_606.js
104.21.88.127200 OK 355 B URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_606.js
IP 104.21.88.127:0
Hash 0d7c5947c047f4ed500982171c21a0ba
fdb3debddeb18dc9eb0cee1294550d0bd26665d5
68d78092acab49d98d07ac87a4a5d01d52cb343dabf15801155866745c507d6d
GET /adx/fixed_adxv2t_606.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Wed, 09 Feb 2022 09:47:17 GMT
cache-control: max-age=2592000
expires: Wed, 07 Dec 2022 21:13:50 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1291045
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jt7VCy5Oau2fmOgnoZcnoRZAsn3j3id4VkUaNh3VQ0BQWVQqE8d5W%2F3gMD7QwoCm7v%2FsTJYMcAXir7MHld1afW5KtwKa26ztwYd9YrHBklHnm4d4qXJ9AJ9iqzxnU3jh3OkT6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e432e02981b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 95d1f09d73a96797144f049c800e7ecb
686472c54a2799a4ee4460f9cbf29df9af7e0109
2eaced1f86a67d66c6d0f0ba3e2b1716a5be4c1bea4c37cdcbc5d3e147fc6036
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=85497
Date: Tue, 22 Nov 2022 19:51:15 GMT
Etag: "637bc0fc-1d7"
Expires: Wed, 23 Nov 2022 19:36:12 GMT
Last-Modified: Mon, 21 Nov 2022 18:18:36 GMT
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FvAxp0PVvZlEeXyCw3OkU7-fvkCWnBy6fsM54gp0MT1ctwvFdTClvA==
Age: 4656
static.adshort.co/link/css/bootstrap.css
172.67.194.197200 OK 80 kB URL HTTP/2 static.adshort.co/link/css/bootstrap.css
IP 172.67.194.197:0
File type ASCII text, with very long lines (65452)
Hash b1f8bfa760df86d297006dbf476b8d19
2d8d33e0773553c71e4f5f7867f84207a51ae628
6eaa18a4e32523b37b78f7e26fca66ca1e235bc9e91572b6a4b4f367101e4769
GET /link/css/bootstrap.css HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: text/css
cf-bgj: minify
last-modified: Mon, 24 Feb 2020 16:45:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 652
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gPLh46YQVpJbSF3uwZylGFDwOPW6CZLVrEBdkw32EwAPjDfDP3M0a3CQGhKBcHSTJc9rg5PJb3kliO6XN3kl2hoDl%2BPfRjfXmu4Toleq05BlOMMYvqeXnshXGIV75aLACtCH0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e432dff8520b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
track1.aniview.com/track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1669146675123&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1669146675123&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1669146675123&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ba98650cceb17a47ac0f34de3c3c2574
78e21c7a408c8ef34065defa22dbcb926f562d9b
8a311b1ba0b977b6b27fd02043471f29e6608bbe3c2cabe904b09f5f04510d98
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 19:51:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 01:33:16 GMT
Expires: Tue, 29 Nov 2022 01:33:15 GMT
Etag: "78e21c7a408c8ef34065defa22dbcb926f562d9b"
Cache-Control: max-age=538319,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76e432e3ad46b509-OSL
betotodilea.com/400/4986248
139.45.197.237200 OK 31 kB URL HTTP/2 betotodilea.com/400/4986248
IP 139.45.197.237:0
Hash 51ed250793e5e03ad2878b9ee85fa02d
0bf4d8f1870e04b4739381f9b7f04374d657541d
4b1cfb81e601fb10783663ee6cb6dd3fc19f4ad8f81a19f5201be7ec773e2a92
GET /400/4986248 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
x-trace-id: 19a750a092ee702545744772040e515c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=587aa466bbe94aa3837e708997220b3c; expires=Wed, 22 Nov 2023 19:51:15 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d1b89a8fbda0bc1a6adcd4a2401dc00f
6f7659b172bea90a8392ecaeacbddecb86e1b1a2
bd50fd9cc070e069fc733c5b5f88f317eac63616531cef96f4da8800262dfd5c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 22 Nov 2022 18:41:08 GMT
expires: Tue, 22 Nov 2022 20:41:08 GMT
cache-control: public, max-age=7200
age: 4207
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
142.250.74.131200 OK 583 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP 142.250.74.131:0
File type ASCII text, with very long lines (921), with no line terminators
Hash 6c064532ae9b3b8278a9d00701c75021
65cd4fbe613e8805d867dffa12cb29569419254d
ee4a48e1244ff8836f0b808d40bab0dc14b4702a3195920c6c600dcae3302bfa
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 22 Nov 2022 19:51:15 GMT
date: Tue, 22 Nov 2022 19:51:15 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Questrial
142.250.74.10200 OK 7.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Questrial
IP 142.250.74.10:0
Hash a89490d8799b900db9e3bfa4b56a8695
b25490a18a8e49e77c2c79838b24fef7ce758293
29c47d2338187e0b3000fab3996ad4f97461a0131df054ca931d606fdf26ea67
GET /css?family=Questrial HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 19:51:15 GMT
date: Tue, 22 Nov 2022 19:51:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
216.58.207.194200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (40310)
Hash 3097863d148e6cdfee35da37197a4199
af9c3a80ff613a6a0410ab252f5e2cb06343c85d
59466fd91db19a9c60aa70b5a2b48e21638d0dc554bff4d96a34bf678e174692
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27210
date: Tue, 22 Nov 2022 19:51:16 GMT
expires: Tue, 22 Nov 2022 19:51:16 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1400 / 491 of 1000 / last-modified: 1669118838"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d1b89a8fbda0bc1a6adcd4a2401dc00f
6f7659b172bea90a8392ecaeacbddecb86e1b1a2
bd50fd9cc070e069fc733c5b5f88f317eac63616531cef96f4da8800262dfd5c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=05ad6bf95f6d460d94680be541001f74
139.45.197.242204 No Content 0 B URL HTTP/2 nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=05ad6bf95f6d460d94680be541001f74
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=05ad6bf95f6d460d94680be541001f74 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://go.techgeek.digital/
Origin: https://go.techgeek.digital
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37
23.38.201.105200 OK 115 kB URL HTTP/2 player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37
IP 23.38.201.105:0
File type Unicode text, UTF-8 text, with very long lines (46445), with LF, NEL line terminators
Size 115 kB (114664 bytes)
Hash 32434793d6da84e4666c6230c82b97a7
41fb68da44d6d6c16c6329d11a464731c8e3faa6
7f5c705dda548416a7d28b355f1733519e51ce176bef46afb547d726e90913cd
GET /script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37 HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvejb0MN1mq4wVmNePj7k3X-i9J3V-NcrVKYukHBodr3A3t4_TRplP7eoVKUK9VYl4ftPfNUVHqc6e9P3mtIv9_Hg
last-modified: Sun, 13 Nov 2022 08:40:25 GMT
etag: "32434793d6da84e4666c6230c82b97a7"
x-goog-generation: 1668328825650866
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 114664
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=Ru+38Q==, md5=MkNHk9bahORmbGIwyCuXpw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 114664
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=600
expires: Tue, 22 Nov 2022 20:01:16 GMT
date: Tue, 22 Nov 2022 19:51:16 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nanouwho.com/11?rnd=1229259955&z=4986256&b=15768993&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=We5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q==&ruid=9c5ce3ef-1a4c-4ff6-afdb-279000201325&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=219
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/11?rnd=1229259955&z=4986256&b=15768993&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=We5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q==&ruid=9c5ce3ef-1a4c-4ff6-afdb-279000201325&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=219
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=1229259955&z=4986256&b=15768993&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=We5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q==&ruid=9c5ce3ef-1a4c-4ff6-afdb-279000201325&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=219 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=05ad6bf95f6d460d94680be541001f74; oaidts=1669146675
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 3f466eff89f29769fe3f029c6d10c006
access-control-expose-headers: X-Sc
set-cookie: OAID=05ad6bf95f6d460d94680be541001f74; expires=Wed, 22 Nov 2023 19:51:16 GMT; secure; SameSite=None
oaidts=1669146675; expires=Wed, 22 Nov 2023 19:51:16 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
betotodilea.com/500/4986248?excludes=&oaid=05ad6bf95f6d460d94680be541001f74&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/500/4986248?excludes=&oaid=05ad6bf95f6d460d94680be541001f74&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/4986248?excludes=&oaid=05ad6bf95f6d460d94680be541001f74&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://go.techgeek.digital/
Origin: https://go.techgeek.digital
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
track1.aniview.com/track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.62&apppkg=&fv=3&proto=https&clsid=d85fefe7-19dd-4574-b626-020cd83c9cf0&rando=5&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1669146675941
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.62&apppkg=&fv=3&proto=https&clsid=d85fefe7-19dd-4574-b626-020cd83c9cf0&rando=5&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1669146675941
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.62&apppkg=&fv=3&proto=https&clsid=d85fefe7-19dd-4574-b626-020cd83c9cf0&rando=5&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1669146675941 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:16 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b25200fea1fc5f73b82be92b813c8899
64c1daa0db29521981a41057af95828e869296cc
46622ef260890bfd457e36f6ce8778ef38962856fb71e40449f46c9b271b7291
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46622EF260890BFD457E36F6CE8778EF38962856FB71E40449F46C9B271B7291"
Last-Modified: Tue, 22 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13050
Expires: Tue, 22 Nov 2022 23:28:46 GMT
Date: Tue, 22 Nov 2022 19:51:16 GMT
Connection: keep-alive
track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1669146675658
52.44.35.90200 OK 0 B URL HTTP/2 track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1669146675658
IP 52.44.35.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1669146675658 HTTP/1.1
Host: track1.avplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:16 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ac268a6f47c2c221b9eaf707cefbb691
e6a83275933786f0e6568faeed6509dad6bda006
0398649f02741a3a6a2de27ffb077372435367a7603f139b57fbb97d6bbce3b6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6287
Cache-Control: max-age=111624
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:16 GMT
Etag: "637c20ad-117"
Expires: Thu, 24 Nov 2022 02:51:40 GMT
Last-Modified: Tue, 22 Nov 2022 01:06:53 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
interstitial-07.com/contents/s/b5/f7/3c/e42127f4d8c5bfab96f57ecde2/0412117113180.jpeg
139.45.197.155200 OK 9.4 kB URL HTTP/2 interstitial-07.com/contents/s/b5/f7/3c/e42127f4d8c5bfab96f57ecde2/0412117113180.jpeg
IP 139.45.197.155:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash b5f73ce42127f4d8c5bfab96f57ecde2
686013156c0356f659f2f36284ecff5356a0e097
554f56616073200065c6c4690f8edfadf16c2e67450e625eaaa4386452afecfd
GET /contents/s/b5/f7/3c/e42127f4d8c5bfab96f57ecde2/0412117113180.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=UWw3ZdRlaZbA8Ly&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D498237716%26z%3D4986256%26b%3D15768993%26c%3D6334387%26var%3D%26d%3Dhttp%253A%252F%252Fbelievemefly.com%252Fbase.php%253Fc%253D3647%2526key%253D432671afcbaec0691a80da097806f6fe%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DWe5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D9c5ce3ef-1a4c-4ff6-afdb-279000201325%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F21xmDpI%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: image/jpeg
content-length: 9380
last-modified: Sat, 22 Oct 2022 09:57:53 GMT
vary: Accept-Encoding
etag: "6353bea1-24a4"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
offerimage.com/www/images/2fed87d8d9131d075b72354b838c2d77.jpeg
104.22.33.172200 OK 11 kB URL HTTP/2 offerimage.com/www/images/2fed87d8d9131d075b72354b838c2d77.jpeg
IP 104.22.33.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 192x192, components 3\012- data
Hash 2fed87d8d9131d075b72354b838c2d77
69624c46c1556c35c67e85724451cce20ad405ec
8adac582983620ad0421a1be7648f58c731feaf3de0bf027ebefe412505b01ed
GET /www/images/2fed87d8d9131d075b72354b838c2d77.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: image/jpeg
content-length: 10853
cache-control: max-age=86400
cf-bgj: h2pri
etag: "62b2c84c-2a65"
expires: Wed, 23 Nov 2022 08:21:00 GMT
last-modified: Wed, 22 Jun 2022 07:44:12 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 41416
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e432e80dd60a35-ARN
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b5035e5acaeb97c6d633c4a71eac75d1
a9f6e3f1143c4d7099e9c7b5f200fdde469892ba
8276ca7c5f806e4eb29e15cad093a69219cb7f813e7e3aa9cd176487140cd070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8276CA7C5F806E4EB29E15CAD093A69219CB7F813E7E3AA9CD176487140CD070"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13061
Expires: Tue, 22 Nov 2022 23:28:57 GMT
Date: Tue, 22 Nov 2022 19:51:16 GMT
Connection: keep-alive
interstitial-07.com/contents/s/48/9d/aa/767e850f7adee87656c9c618d6/0805769566320.jpeg
139.45.197.155200 OK 33 kB URL HTTP/2 interstitial-07.com/contents/s/48/9d/aa/767e850f7adee87656c9c618d6/0805769566320.jpeg
IP 139.45.197.155:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash 489daa767e850f7adee87656c9c618d6
f33d685ca860065daa3d42786e875c4f72c47376
420d07a28fd9eb7996feb6e3bc78a230b321be622551a6427d9eb7d4e43d7585
GET /contents/s/48/9d/aa/767e850f7adee87656c9c618d6/0805769566320.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=UWw3ZdRlaZbA8Ly&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D498237716%26z%3D4986256%26b%3D15768993%26c%3D6334387%26var%3D%26d%3Dhttp%253A%252F%252Fbelievemefly.com%252Fbase.php%253Fc%253D3647%2526key%253D432671afcbaec0691a80da097806f6fe%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DWe5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D9c5ce3ef-1a4c-4ff6-afdb-279000201325%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F21xmDpI%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: image/jpeg
content-length: 33145
last-modified: Thu, 20 Oct 2022 03:21:11 GMT
vary: Accept-Encoding
etag: "6350bea7-8179"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 05:54:54 GMT
expires: Wed, 22 Nov 2023 05:54:54 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 50182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6975
Expires: Tue, 22 Nov 2022 21:47:31 GMT
Date: Tue, 22 Nov 2022 19:51:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6975
Expires: Tue, 22 Nov 2022 21:47:31 GMT
Date: Tue, 22 Nov 2022 19:51:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f3fad7453f45dfa617243c8beac64e1
56414a905340e1b1478a0a40a52b25365a724524
7befcfbedac5652eb04bc675b67f7b642631d4e918f7aaee17b0b594e26854d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6031
x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3cV0GC-oAMF5hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VabInML1mfcQLIp29OWRNsixwfSWt0Wv9l7I-Ak7TdUHlNt2ZEVtPg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 15:21:36 GMT
age: 16180
etag: "56414a905340e1b1478a0a40a52b25365a724524"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dafd9e17dc0023e71ae513c6025e4b80
12e2654db1f384bb04f5c5042848b25dda86b710
e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bmrDryUp_4bvIikGkppa36e9isEfvK0gjunV6xmU5ApJtxlLR_GYkA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:05:18 GMT
age: 78358
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 472ceca597feefba355fbd65998977b7
f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a
e201f706ba38f04ef07d74a67eec187ad8b882027b96b0e4e700162f96da422f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7751
x-amzn-requestid: 577947ab-4fbe-4b07-944a-2b65cf5ed6d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b4UE9GJ9IAMFVtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63799a1f-1a26961e20c88cd54a613ddb;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 03:08:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: QB2RJo7NR7FMDRC7fC9eLMW99KR7andopIeu4qi0yp_tihE0vtpkXw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 04:49:03 GMT
age: 54133
etag: "f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ab62c5a7c3296600de924eb0b283bc1
bc4a2dc43898e3fb78ba7301d8b09b280991d221
f2a4c0829a4fb9a585113ed358832d16470ec391035a302a8f3c4666172f02bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10556
x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-Iq0GPVoAMF9bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: sBNLrVAl4G6pJ-OBZ6aJZC64MrkkGQdsuZKITQwcqgYgP6-GJiblfA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:59:20 GMT
age: 78716
etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed6b76d15fc8d6295acdb6fb47461d3
b8c928f93a8d82b48491448d811a95ad99dc6aef
de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 78767
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9FO1gkdftjvJFDvAlxwLD63BP-liwnS2MImVhVdjg83wi4xJdM73Kg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:35:40 GMT
age: 80136
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/157742/7600
23.38.200.201301 Moved Permanently 261 B URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/157742/7600
IP 23.38.200.201:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 062136e3a621e033fe962c1b279eec4c
d38b6ab78d6b6ccf1cc926379e426c9780c90eb2
c0ab28cf312ba7e04fdeabf8173ca9e1809281aa9fde276981842e71020c2c41
GET /AdServer/js/pwt/157742/7600 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: Apache
location: https://ads.pubmatic.com/AdServer/js/pwt/157742/7600/
content-length: 261
content-type: text/html; charset=iso-8859-1
cache-control: max-age=85209
expires: Wed, 23 Nov 2022 19:31:25 GMT
date: Tue, 22 Nov 2022 19:51:16 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash dc18476a17e787dc0700f3ee8dc99bcf
4db3ef7edb2683d8141280b9dd780ce4375e3c0f
4082538731e62eb96bd62690e973875ef9e3048432a3a849d7bedd37872b79ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146676596&asid=61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=1%2C1%2C1
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146676596&asid=61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=1%2C1%2C1
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146676596&asid=61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=1%2C1%2C1 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:16 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146676596&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri=1
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146676596&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri=1
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146676596&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri=1 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:16 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 029a1647b7637970d9b57478ae3d4c61
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 9ef11a2d1e232b4b45e40ff0c29fa8b0
0966963f13e3b149e3e3c8c2c81e7986d1d8a07b
9ce8b9ab5f1dfdc0686d1660ed64c6eff5cc3d1492d82aa769ac58e3a159dd1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=go.techgeek.digital
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=go.techgeek.digital
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=go.techgeek.digital HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 19:51:17 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=go.techgeek.digital
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=go.techgeek.digital
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=go.techgeek.digital HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 19:51:17 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dm.hybrid.ai/match?id=407&vid=1669146676571-965570004196-006472-012-006527&gdpr=1&gdpr_consent=&burl=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1669146676571-965570004196-006472-012-006527%26biddername%3D166%26pid%3D5e7b9048180bd02ded4b0937%26key%3D%24%7BVID%7D
37.18.16.16204 No Content 0 B URL HTTP/2 dm.hybrid.ai/match?id=407&vid=1669146676571-965570004196-006472-012-006527&gdpr=1&gdpr_consent=&burl=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1669146676571-965570004196-006472-012-006527%26biddername%3D166%26pid%3D5e7b9048180bd02ded4b0937%26key%3D%24%7BVID%7D
IP 37.18.16.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /match?id=407&vid=1669146676571-965570004196-006472-012-006527&gdpr=1&gdpr_consent=&burl=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1669146676571-965570004196-006472-012-006527%26biddername%3D166%26pid%3D5e7b9048180bd02ded4b0937%26key%3D%24%7BVID%7D HTTP/1.1
Host: dm.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 22 Nov 2022 19:51:17 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 111
x-xss-protection: 1; mode=block
access-control-allow-origin: *
server: Hybrid Web Server
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash dc18476a17e787dc0700f3ee8dc99bcf
4db3ef7edb2683d8141280b9dd780ce4375e3c0f
4082538731e62eb96bd62690e973875ef9e3048432a3a849d7bedd37872b79ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 9ef11a2d1e232b4b45e40ff0c29fa8b0
0966963f13e3b149e3e3c8c2c81e7986d1d8a07b
9ce8b9ab5f1dfdc0686d1660ed64c6eff5cc3d1492d82aa769ac58e3a159dd1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=1911809311.1669146676&jid=2109573064&gjid=720871921&_gid=2018492454.1669146676&_u=YEBAAUAAAAAAACAAI~&z=256914917
142.250.150.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=1911809311.1669146676&jid=2109573064&gjid=720871921&_gid=2018492454.1669146676&_u=YEBAAUAAAAAAACAAI~&z=256914917
IP 142.250.150.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=1911809311.1669146676&jid=2109573064&gjid=720871921&_gid=2018492454.1669146676&_u=YEBAAUAAAAAAACAAI~&z=256914917 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://go.techgeek.digital
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 22 Nov 2022 19:51:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022111501&st=env
216.58.207.226200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022111501&st=env
IP 216.58.207.226:0
File type JSON data\012- , ASCII text, with very long lines (14529), with no line terminators
Hash 1542b2fdf64b08232b567b2b231a7a32
f31957eff53ca59e878ddf685a313585e14ab7c7
13f0043d234c3f45d3c4cb1a80ffa1a73c949848c72ad485b53246a8cadbe656
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022111501&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Tue, 22 Nov 2022 19:51:17 GMT
server: cafe
content-length: 10970
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.65200 OK 2.7 kB URL HTTP/2 801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Tue, 22 Nov 2022 19:51:17 GMT
expires: Wed, 22 Nov 2023 19:51:17 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash faddb6878caef803f5b8d595bcf80885
a13ffc7f56a0e022f277b17a276454ec151663b8
5a074b977b1d9ed89ad623b3caeb65d5b644beafd825c79cbdc33c5b4a0be6fc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 22 Nov 2022 19:51:17 GMT
expires: Tue, 22 Nov 2022 19:51:17 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:59:25 GMT
expires: Wed, 22 Nov 2023 17:59:25 GMT
cache-control: public, max-age=31536000
age: 6712
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fab2cb3bd48a955d89176110d75459e4
8e642591b32f0095b8302d23b2aa3d4849352c56
71e3ae0dd72335874bd1e42e216d72a6185fb21786e55efbf3012ee0094692a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 1066fcbb9fce60aca8fdae647c2fbab6
44edc9675cd556728e8761219d81ac16332a6cc8
82e02ee68847aa67c93401439cc169ab5ab37a916537266378b67cd8b212cef3
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 22 Nov 2022 19:51:17 GMT
date: Tue, 22 Nov 2022 19:51:17 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-re8t_kwAk6Bqc_sXuLLibQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/xbbe/pixel?d=CPjl5QIQs8-r8AEY48Tk1AEwAQ&v=APEucNVy2LhZJ_mNqpom5tiF6YUtFEQNhaR2XnD71PX7IABRfbTR4PO6DjqbhPHVz_nIXbb1Jdl6HtY-WIsEXA5qFyGyUEqbhiwTHDwRsrWHxirsJWzTsczuQJPe6xMKXeJwPxpTBE-5iU51jVHlkCPhBrY86iYGbdwpolWr066uwFHqeF90sd9uTMZpLMAp89O81MIfyrHf
142.250.74.162200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CPjl5QIQs8-r8AEY48Tk1AEwAQ&v=APEucNVy2LhZJ_mNqpom5tiF6YUtFEQNhaR2XnD71PX7IABRfbTR4PO6DjqbhPHVz_nIXbb1Jdl6HtY-WIsEXA5qFyGyUEqbhiwTHDwRsrWHxirsJWzTsczuQJPe6xMKXeJwPxpTBE-5iU51jVHlkCPhBrY86iYGbdwpolWr066uwFHqeF90sd9uTMZpLMAp89O81MIfyrHf
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CPjl5QIQs8-r8AEY48Tk1AEwAQ&v=APEucNVy2LhZJ_mNqpom5tiF6YUtFEQNhaR2XnD71PX7IABRfbTR4PO6DjqbhPHVz_nIXbb1Jdl6HtY-WIsEXA5qFyGyUEqbhiwTHDwRsrWHxirsJWzTsczuQJPe6xMKXeJwPxpTBE-5iU51jVHlkCPhBrY86iYGbdwpolWr066uwFHqeF90sd9uTMZpLMAp89O81MIfyrHf HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 19:51:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:18 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 22 Nov 2022 19:51:18 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-DXi5PzRpfAKeKmAGzqd5ZNwYCkk9l7IQgNwQzoPuscObyURTeCheDi7KjwGbFreGbxQda5FHP9CfKYnX7DDWId5ixH4w&cry=1&dbm_d=AKAmf-CLgkTZDP7j8_IulVw8eQdTlTTl2U9BrIpHKz4BkgquL0ch-wuDJvTiz43SRcPN6Cmlzp7UJOKmbX1M2u0GUrj8LP3ADweySo5cZZRizLtL6EdbOiFXq3ZuSdCpb8i5dknmNu-0rNw2-XHkUNsfYVq8mJDWDVvACQwL4gmSqlWAMqZLGohwKqE3raTUOivMCrhYnnXfIObsRJH3HR7R7taV8FEXd-1XqFtSYXzuJoTr31CfSyTQS4IKMHiv5sbMzodrWB3qLwBs5oSwPDCDE4o2AdqCtdRyUyrJ3g5a0FsiGeC2IJiUnKfllriAYC2AQ-pP7SOIPGTjZVHtX1yQ7xQIvxqHNlEmu5jiwn0dtlPbw--afU01QkvSc8okeD-FmIdg8DhG-gZlMbQPL2H-4W70hGcMOeSYwnZ8wi0N2weJxYAEOS1kAErrhbWnhgkUaJMpiRx2P9hCnvT9iWqec7TSOI5ybJ-j7Sgwc_p4wLEvpnfk27PeoNIEkjKU5Iy0I9MQ0SzdDJPxQWAP7N9yfscAI8Mcer_KPf4E-s6rr7GaEFhGgA3Q4R0QEHcEQOP2FgH_PdVsxdHUl4tAw8CknNaMXugmSuVQrDk0b6IXNuRsdiYnWlKG2cW-GH6uJJvdCSdt5SrqxXs3-coxZOVlg6mgaSAhsqD4E39rD9DaG--btwkLdIMA5RSgIC7Lmcc9ZAASDY93uVWaVf_kS_zcshF37YAAeWSUbt_SvHWfiMljDUlw1lo2Iej7TpvJasWaQFUMngPFAUDhWAYbMXEOXVDbk9CPmT9YsRCiymAol0bnB2RQ-Ko4kK1QgDC4yULImep0QpNznTpj2N5WgFEQJ_LBRN1DQCiKoUJitglhfCeqMWSq86hCLHe36GWOodAXc1jQUZVHhlfEp8z6yvt_4UJ7Sl4jWOFZzNSpRsCZkQ9EknuHurBHybh0tZF0kpy0ZS0r_uMR8sktvfxHuv6plFRKUyyXOKce8v3wJu4PjQkedJPR86BSKUoZSGoYUT3T2aLN7sWn79FBa7yS7O3GwOQ3lnnUrmQ-i7w9ZBz4e2b3zdnUxRY3-ni2zKX3pQuyoYRfSTPHJjSPJ4OTVyDB7HLGB7D4sbTuN2sI9W2VaLQBH86H3FBJSpILCj8VUGHDM__n2NWVxmxRsqSMd3dSryYKskyeckzRjPwZSa6KbEpijZBGy1SFPMZOmu5Jyd-9436UiH9urHVGdKL2W-o_LmE0N0wykjM6rmtes2GD7Ju58xc9sLKefI5ahn46L66zBHix0-EaYxU2Cu_BedNgKYGr2LWYhcX9w8AyymWFpSIfadinj0N5n4TvNzq6Q19FRNKTqu2eRn6nKBFsgL9gOncSCpbPZyxP7Zt2XbGqi-mkEY0AV2s9zXbC7TIn2jRgbGEY6otETtnv49U6nApOCSfJ5YhkozRMhJgbAUgLnM9FNpwRIB57DCK2BnYolH_k6n6eeLIhlSiPn2XFsTXKh0yxrNJhhS4hGIm5uY227c6-22dEKd546itlbb6EbmHGOW2OnCshFACqDQ06WlXq5fgweRjghHTR1K_SthI3fMSBKqOrLvprtZpfxjwYHQhx6rGm8CsZY_gRn-9_rKHQx4tXtusSi9dUBTOCd8EC6hgL4sEQqqW9lT5-d0kr87A-bA3hEy_syCjX3SYBA_I-v8aGQcQK6B0b_tpYqgLVoXe58TRbvCK4mmc649yrsxViXiUiwSpR8JEzmrEaCSz70-D4401kyLW28UMchovYubgLo61enrD-xX_GSoPEcfx_YElIpfyx1u8hI2mP6IaDhdSNOOjYORwgL0LBdt1qqX1v7hSnmKReviWtEF8SMQ7kfWxF1srlJ2lYjTARzA17glgwhi17lHDAOzgGNGxuET2Jfb5RhU0nTUvOb_hua-3AOUjyLWDzMyk6ecQvPnDp6m9UIFWVtgq_Lo7BYQnr7T86uG2cRuj7qBuN8pC7_nu0-dA8o4I8A7oeLZpeQYa2jTXxtXGMcEB4M2XDKWqfPWA3UFX07ZZgD9nb1ZhJbJ3zrPawAtkBS1qZ6hzY730jo68Riqy1hpZjkpqZlHFapr4Dbh1bOlmWAbNFSR4-K1D92f77jPFBE9FQ0XmiHXZgbl7HQ7PEVGMiGR-ZEETEiu404qHwCc0vORh-4H0v3pwOlEIgNuPjQh-orJZElrc5K4Jrfbsw08pkh-wuho1ktoZG5SU4OTxUhGsSN29twP6VDq6YVf1bvNZhum_oxu5kK92tBsTk1Btr6WIoV-6H6os4tbpaxAMYwrPRiAKNQALKgPALeLO3WV2qukv-vARywlHY6TKMK8yMvH-SzUUg65IhmA20D0FoAm9myR1Gf-y0vrhsH8-zRtDLtu75k3bKBYC2FQgYZz9cp_D8bGTIfwnTPG_Ce1bzjvallx1qvHHHxPgtJ6k0t7tWX13-vjfbBDKxFoP-aly5ZRp_b0ANrwEeieBl1y7x8LXo6vsTPT5jqPJc-aB2X3VhLWAs5GioPrkD2fi3SnAO7yJUzvqbeboO4BO1rF7LO_WoSHw7-5IGDXXGEYLMMf_ggPx77b0qbn4JmgRvLVzKaJK55pJmtewDeVkeRwwyMOoGdXtab9vd4aO_opaUbGJi2THd-NaU6YNa49ymXHvyUNvo5ZjOU7nER8FafLCY-n-GqcqX2XaYnZvn7Aq2Ie7tv2nqYWMPZ3c5LQCRY53V_NG7GeTeyFOWbdpu0FlcjjvUE84SkPD9ZSsKcjS8RWJC2diVZL1fxxPkY5CmAVdCop7u9mXy_nsXPe84903-uRcfFaeFllJPSO51-3Rw3w6dCQL2o_jgAO0Q8KFpwImBPmtOPjaAsAWbZQumoidZFkzU8exeqc0qiBW7pXpFFuj1LHwA3ZU8AIQepp8NLCif9eqLZ1azCfQ15sD6jjsLwvCUMLr7OUAq9jN3H5j38P0oimftONUft5XTkuSJygaZbX9PDs0GZ0ISNdQDOs_IkZM9C1uS4tIPTrxEImXAJsvMcUqeg_dpAsM08IYO0gOu3neDGA-7wEHpZfX6xFlAQ4TgSv9T8IUXZ5VcdEplM6tOAiKJf_9JSoBMbNUdwJg7WnZNrXW5UrlYDjcuJlR0xi684L3VF-H4i3MEO9lJnJMImgwJKNFROaBRPFcouuiHo4HjP5FKYR067ewaNEWzESEw-aPieiYVbDibzy8TcsAMFXpJ1pQ3blhxZSUhsAilynad7_ERcYQvp1db2SIbGa48VRlhVX4TZYJLvNlzhu9usPQiRzH95IFfaxbYyKD-dCTgR82WHYMRlwqnTfqqX_gFTd4LYP8U8mIv_s4syX7vNMUCiUUSpZqdIfBn6pSoZ9bPNWqbo3gjiiAC1qjunhRjS3ZqOHh_kPVkMDZmMP5jPYNxMxbP_Fn6hFcjmvOww9Hxbocw17dK_pOUUqtMPzUmgUz0Fj6e3WTJiQHW2Irt-igdTgOih_cwBfeQb62ANpNr4okqBeimr8jJ9R9r1D6x_4IdZvkLeU4pxuEf0uNcamZUxr2S6pxmcbCloQ&cid=CAQSSwDq26N9XpeliXeBiKvigsg-U8jAYApcSHysji3nok5WTvOOqf3U_wB5lbHa07BEpbnQ8aQ9_B2urwKp34cc7JtqUi8657poF_MIFhgBIBM&rfl=1%2Chttps%253A%252F%252Fgo.techgeek.digital%252F%240
142.250.74.162200 OK 33 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-DXi5PzRpfAKeKmAGzqd5ZNwYCkk9l7IQgNwQzoPuscObyURTeCheDi7KjwGbFreGbxQda5FHP9CfKYnX7DDWId5ixH4w&cry=1&dbm_d=AKAmf-CLgkTZDP7j8_IulVw8eQdTlTTl2U9BrIpHKz4BkgquL0ch-wuDJvTiz43SRcPN6Cmlzp7UJOKmbX1M2u0GUrj8LP3ADweySo5cZZRizLtL6EdbOiFXq3ZuSdCpb8i5dknmNu-0rNw2-XHkUNsfYVq8mJDWDVvACQwL4gmSqlWAMqZLGohwKqE3raTUOivMCrhYnnXfIObsRJH3HR7R7taV8FEXd-1XqFtSYXzuJoTr31CfSyTQS4IKMHiv5sbMzodrWB3qLwBs5oSwPDCDE4o2AdqCtdRyUyrJ3g5a0FsiGeC2IJiUnKfllriAYC2AQ-pP7SOIPGTjZVHtX1yQ7xQIvxqHNlEmu5jiwn0dtlPbw--afU01QkvSc8okeD-FmIdg8DhG-gZlMbQPL2H-4W70hGcMOeSYwnZ8wi0N2weJxYAEOS1kAErrhbWnhgkUaJMpiRx2P9hCnvT9iWqec7TSOI5ybJ-j7Sgwc_p4wLEvpnfk27PeoNIEkjKU5Iy0I9MQ0SzdDJPxQWAP7N9yfscAI8Mcer_KPf4E-s6rr7GaEFhGgA3Q4R0QEHcEQOP2FgH_PdVsxdHUl4tAw8CknNaMXugmSuVQrDk0b6IXNuRsdiYnWlKG2cW-GH6uJJvdCSdt5SrqxXs3-coxZOVlg6mgaSAhsqD4E39rD9DaG--btwkLdIMA5RSgIC7Lmcc9ZAASDY93uVWaVf_kS_zcshF37YAAeWSUbt_SvHWfiMljDUlw1lo2Iej7TpvJasWaQFUMngPFAUDhWAYbMXEOXVDbk9CPmT9YsRCiymAol0bnB2RQ-Ko4kK1QgDC4yULImep0QpNznTpj2N5WgFEQJ_LBRN1DQCiKoUJitglhfCeqMWSq86hCLHe36GWOodAXc1jQUZVHhlfEp8z6yvt_4UJ7Sl4jWOFZzNSpRsCZkQ9EknuHurBHybh0tZF0kpy0ZS0r_uMR8sktvfxHuv6plFRKUyyXOKce8v3wJu4PjQkedJPR86BSKUoZSGoYUT3T2aLN7sWn79FBa7yS7O3GwOQ3lnnUrmQ-i7w9ZBz4e2b3zdnUxRY3-ni2zKX3pQuyoYRfSTPHJjSPJ4OTVyDB7HLGB7D4sbTuN2sI9W2VaLQBH86H3FBJSpILCj8VUGHDM__n2NWVxmxRsqSMd3dSryYKskyeckzRjPwZSa6KbEpijZBGy1SFPMZOmu5Jyd-9436UiH9urHVGdKL2W-o_LmE0N0wykjM6rmtes2GD7Ju58xc9sLKefI5ahn46L66zBHix0-EaYxU2Cu_BedNgKYGr2LWYhcX9w8AyymWFpSIfadinj0N5n4TvNzq6Q19FRNKTqu2eRn6nKBFsgL9gOncSCpbPZyxP7Zt2XbGqi-mkEY0AV2s9zXbC7TIn2jRgbGEY6otETtnv49U6nApOCSfJ5YhkozRMhJgbAUgLnM9FNpwRIB57DCK2BnYolH_k6n6eeLIhlSiPn2XFsTXKh0yxrNJhhS4hGIm5uY227c6-22dEKd546itlbb6EbmHGOW2OnCshFACqDQ06WlXq5fgweRjghHTR1K_SthI3fMSBKqOrLvprtZpfxjwYHQhx6rGm8CsZY_gRn-9_rKHQx4tXtusSi9dUBTOCd8EC6hgL4sEQqqW9lT5-d0kr87A-bA3hEy_syCjX3SYBA_I-v8aGQcQK6B0b_tpYqgLVoXe58TRbvCK4mmc649yrsxViXiUiwSpR8JEzmrEaCSz70-D4401kyLW28UMchovYubgLo61enrD-xX_GSoPEcfx_YElIpfyx1u8hI2mP6IaDhdSNOOjYORwgL0LBdt1qqX1v7hSnmKReviWtEF8SMQ7kfWxF1srlJ2lYjTARzA17glgwhi17lHDAOzgGNGxuET2Jfb5RhU0nTUvOb_hua-3AOUjyLWDzMyk6ecQvPnDp6m9UIFWVtgq_Lo7BYQnr7T86uG2cRuj7qBuN8pC7_nu0-dA8o4I8A7oeLZpeQYa2jTXxtXGMcEB4M2XDKWqfPWA3UFX07ZZgD9nb1ZhJbJ3zrPawAtkBS1qZ6hzY730jo68Riqy1hpZjkpqZlHFapr4Dbh1bOlmWAbNFSR4-K1D92f77jPFBE9FQ0XmiHXZgbl7HQ7PEVGMiGR-ZEETEiu404qHwCc0vORh-4H0v3pwOlEIgNuPjQh-orJZElrc5K4Jrfbsw08pkh-wuho1ktoZG5SU4OTxUhGsSN29twP6VDq6YVf1bvNZhum_oxu5kK92tBsTk1Btr6WIoV-6H6os4tbpaxAMYwrPRiAKNQALKgPALeLO3WV2qukv-vARywlHY6TKMK8yMvH-SzUUg65IhmA20D0FoAm9myR1Gf-y0vrhsH8-zRtDLtu75k3bKBYC2FQgYZz9cp_D8bGTIfwnTPG_Ce1bzjvallx1qvHHHxPgtJ6k0t7tWX13-vjfbBDKxFoP-aly5ZRp_b0ANrwEeieBl1y7x8LXo6vsTPT5jqPJc-aB2X3VhLWAs5GioPrkD2fi3SnAO7yJUzvqbeboO4BO1rF7LO_WoSHw7-5IGDXXGEYLMMf_ggPx77b0qbn4JmgRvLVzKaJK55pJmtewDeVkeRwwyMOoGdXtab9vd4aO_opaUbGJi2THd-NaU6YNa49ymXHvyUNvo5ZjOU7nER8FafLCY-n-GqcqX2XaYnZvn7Aq2Ie7tv2nqYWMPZ3c5LQCRY53V_NG7GeTeyFOWbdpu0FlcjjvUE84SkPD9ZSsKcjS8RWJC2diVZL1fxxPkY5CmAVdCop7u9mXy_nsXPe84903-uRcfFaeFllJPSO51-3Rw3w6dCQL2o_jgAO0Q8KFpwImBPmtOPjaAsAWbZQumoidZFkzU8exeqc0qiBW7pXpFFuj1LHwA3ZU8AIQepp8NLCif9eqLZ1azCfQ15sD6jjsLwvCUMLr7OUAq9jN3H5j38P0oimftONUft5XTkuSJygaZbX9PDs0GZ0ISNdQDOs_IkZM9C1uS4tIPTrxEImXAJsvMcUqeg_dpAsM08IYO0gOu3neDGA-7wEHpZfX6xFlAQ4TgSv9T8IUXZ5VcdEplM6tOAiKJf_9JSoBMbNUdwJg7WnZNrXW5UrlYDjcuJlR0xi684L3VF-H4i3MEO9lJnJMImgwJKNFROaBRPFcouuiHo4HjP5FKYR067ewaNEWzESEw-aPieiYVbDibzy8TcsAMFXpJ1pQ3blhxZSUhsAilynad7_ERcYQvp1db2SIbGa48VRlhVX4TZYJLvNlzhu9usPQiRzH95IFfaxbYyKD-dCTgR82WHYMRlwqnTfqqX_gFTd4LYP8U8mIv_s4syX7vNMUCiUUSpZqdIfBn6pSoZ9bPNWqbo3gjiiAC1qjunhRjS3ZqOHh_kPVkMDZmMP5jPYNxMxbP_Fn6hFcjmvOww9Hxbocw17dK_pOUUqtMPzUmgUz0Fj6e3WTJiQHW2Irt-igdTgOih_cwBfeQb62ANpNr4okqBeimr8jJ9R9r1D6x_4IdZvkLeU4pxuEf0uNcamZUxr2S6pxmcbCloQ&cid=CAQSSwDq26N9XpeliXeBiKvigsg-U8jAYApcSHysji3nok5WTvOOqf3U_wB5lbHa07BEpbnQ8aQ9_B2urwKp34cc7JtqUi8657poF_MIFhgBIBM&rfl=1%2Chttps%253A%252F%252Fgo.techgeek.digital%252F%240
IP 142.250.74.162:0
File type Unicode text, UTF-8 text, with very long lines (65523), with no line terminators
Hash 6bc8678023a0bf51c5296879292f9220
402de67b95d67e5333be7aad94aa390d83eaffd4
2322d5ac143ceb14dbe3de22e2d0537ff2290272fa1f8d455d7157c1e3c4dfa2
GET /dbm/ad?dbm_c=AKAmf-DXi5PzRpfAKeKmAGzqd5ZNwYCkk9l7IQgNwQzoPuscObyURTeCheDi7KjwGbFreGbxQda5FHP9CfKYnX7DDWId5ixH4w&cry=1&dbm_d=AKAmf-CLgkTZDP7j8_IulVw8eQdTlTTl2U9BrIpHKz4BkgquL0ch-wuDJvTiz43SRcPN6Cmlzp7UJOKmbX1M2u0GUrj8LP3ADweySo5cZZRizLtL6EdbOiFXq3ZuSdCpb8i5dknmNu-0rNw2-XHkUNsfYVq8mJDWDVvACQwL4gmSqlWAMqZLGohwKqE3raTUOivMCrhYnnXfIObsRJH3HR7R7taV8FEXd-1XqFtSYXzuJoTr31CfSyTQS4IKMHiv5sbMzodrWB3qLwBs5oSwPDCDE4o2AdqCtdRyUyrJ3g5a0FsiGeC2IJiUnKfllriAYC2AQ-pP7SOIPGTjZVHtX1yQ7xQIvxqHNlEmu5jiwn0dtlPbw--afU01QkvSc8okeD-FmIdg8DhG-gZlMbQPL2H-4W70hGcMOeSYwnZ8wi0N2weJxYAEOS1kAErrhbWnhgkUaJMpiRx2P9hCnvT9iWqec7TSOI5ybJ-j7Sgwc_p4wLEvpnfk27PeoNIEkjKU5Iy0I9MQ0SzdDJPxQWAP7N9yfscAI8Mcer_KPf4E-s6rr7GaEFhGgA3Q4R0QEHcEQOP2FgH_PdVsxdHUl4tAw8CknNaMXugmSuVQrDk0b6IXNuRsdiYnWlKG2cW-GH6uJJvdCSdt5SrqxXs3-coxZOVlg6mgaSAhsqD4E39rD9DaG--btwkLdIMA5RSgIC7Lmcc9ZAASDY93uVWaVf_kS_zcshF37YAAeWSUbt_SvHWfiMljDUlw1lo2Iej7TpvJasWaQFUMngPFAUDhWAYbMXEOXVDbk9CPmT9YsRCiymAol0bnB2RQ-Ko4kK1QgDC4yULImep0QpNznTpj2N5WgFEQJ_LBRN1DQCiKoUJitglhfCeqMWSq86hCLHe36GWOodAXc1jQUZVHhlfEp8z6yvt_4UJ7Sl4jWOFZzNSpRsCZkQ9EknuHurBHybh0tZF0kpy0ZS0r_uMR8sktvfxHuv6plFRKUyyXOKce8v3wJu4PjQkedJPR86BSKUoZSGoYUT3T2aLN7sWn79FBa7yS7O3GwOQ3lnnUrmQ-i7w9ZBz4e2b3zdnUxRY3-ni2zKX3pQuyoYRfSTPHJjSPJ4OTVyDB7HLGB7D4sbTuN2sI9W2VaLQBH86H3FBJSpILCj8VUGHDM__n2NWVxmxRsqSMd3dSryYKskyeckzRjPwZSa6KbEpijZBGy1SFPMZOmu5Jyd-9436UiH9urHVGdKL2W-o_LmE0N0wykjM6rmtes2GD7Ju58xc9sLKefI5ahn46L66zBHix0-EaYxU2Cu_BedNgKYGr2LWYhcX9w8AyymWFpSIfadinj0N5n4TvNzq6Q19FRNKTqu2eRn6nKBFsgL9gOncSCpbPZyxP7Zt2XbGqi-mkEY0AV2s9zXbC7TIn2jRgbGEY6otETtnv49U6nApOCSfJ5YhkozRMhJgbAUgLnM9FNpwRIB57DCK2BnYolH_k6n6eeLIhlSiPn2XFsTXKh0yxrNJhhS4hGIm5uY227c6-22dEKd546itlbb6EbmHGOW2OnCshFACqDQ06WlXq5fgweRjghHTR1K_SthI3fMSBKqOrLvprtZpfxjwYHQhx6rGm8CsZY_gRn-9_rKHQx4tXtusSi9dUBTOCd8EC6hgL4sEQqqW9lT5-d0kr87A-bA3hEy_syCjX3SYBA_I-v8aGQcQK6B0b_tpYqgLVoXe58TRbvCK4mmc649yrsxViXiUiwSpR8JEzmrEaCSz70-D4401kyLW28UMchovYubgLo61enrD-xX_GSoPEcfx_YElIpfyx1u8hI2mP6IaDhdSNOOjYORwgL0LBdt1qqX1v7hSnmKReviWtEF8SMQ7kfWxF1srlJ2lYjTARzA17glgwhi17lHDAOzgGNGxuET2Jfb5RhU0nTUvOb_hua-3AOUjyLWDzMyk6ecQvPnDp6m9UIFWVtgq_Lo7BYQnr7T86uG2cRuj7qBuN8pC7_nu0-dA8o4I8A7oeLZpeQYa2jTXxtXGMcEB4M2XDKWqfPWA3UFX07ZZgD9nb1ZhJbJ3zrPawAtkBS1qZ6hzY730jo68Riqy1hpZjkpqZlHFapr4Dbh1bOlmWAbNFSR4-K1D92f77jPFBE9FQ0XmiHXZgbl7HQ7PEVGMiGR-ZEETEiu404qHwCc0vORh-4H0v3pwOlEIgNuPjQh-orJZElrc5K4Jrfbsw08pkh-wuho1ktoZG5SU4OTxUhGsSN29twP6VDq6YVf1bvNZhum_oxu5kK92tBsTk1Btr6WIoV-6H6os4tbpaxAMYwrPRiAKNQALKgPALeLO3WV2qukv-vARywlHY6TKMK8yMvH-SzUUg65IhmA20D0FoAm9myR1Gf-y0vrhsH8-zRtDLtu75k3bKBYC2FQgYZz9cp_D8bGTIfwnTPG_Ce1bzjvallx1qvHHHxPgtJ6k0t7tWX13-vjfbBDKxFoP-aly5ZRp_b0ANrwEeieBl1y7x8LXo6vsTPT5jqPJc-aB2X3VhLWAs5GioPrkD2fi3SnAO7yJUzvqbeboO4BO1rF7LO_WoSHw7-5IGDXXGEYLMMf_ggPx77b0qbn4JmgRvLVzKaJK55pJmtewDeVkeRwwyMOoGdXtab9vd4aO_opaUbGJi2THd-NaU6YNa49ymXHvyUNvo5ZjOU7nER8FafLCY-n-GqcqX2XaYnZvn7Aq2Ie7tv2nqYWMPZ3c5LQCRY53V_NG7GeTeyFOWbdpu0FlcjjvUE84SkPD9ZSsKcjS8RWJC2diVZL1fxxPkY5CmAVdCop7u9mXy_nsXPe84903-uRcfFaeFllJPSO51-3Rw3w6dCQL2o_jgAO0Q8KFpwImBPmtOPjaAsAWbZQumoidZFkzU8exeqc0qiBW7pXpFFuj1LHwA3ZU8AIQepp8NLCif9eqLZ1azCfQ15sD6jjsLwvCUMLr7OUAq9jN3H5j38P0oimftONUft5XTkuSJygaZbX9PDs0GZ0ISNdQDOs_IkZM9C1uS4tIPTrxEImXAJsvMcUqeg_dpAsM08IYO0gOu3neDGA-7wEHpZfX6xFlAQ4TgSv9T8IUXZ5VcdEplM6tOAiKJf_9JSoBMbNUdwJg7WnZNrXW5UrlYDjcuJlR0xi684L3VF-H4i3MEO9lJnJMImgwJKNFROaBRPFcouuiHo4HjP5FKYR067ewaNEWzESEw-aPieiYVbDibzy8TcsAMFXpJ1pQ3blhxZSUhsAilynad7_ERcYQvp1db2SIbGa48VRlhVX4TZYJLvNlzhu9usPQiRzH95IFfaxbYyKD-dCTgR82WHYMRlwqnTfqqX_gFTd4LYP8U8mIv_s4syX7vNMUCiUUSpZqdIfBn6pSoZ9bPNWqbo3gjiiAC1qjunhRjS3ZqOHh_kPVkMDZmMP5jPYNxMxbP_Fn6hFcjmvOww9Hxbocw17dK_pOUUqtMPzUmgUz0Fj6e3WTJiQHW2Irt-igdTgOih_cwBfeQb62ANpNr4okqBeimr8jJ9R9r1D6x_4IdZvkLeU4pxuEf0uNcamZUxr2S6pxmcbCloQ&cid=CAQSSwDq26N9XpeliXeBiKvigsg-U8jAYApcSHysji3nok5WTvOOqf3U_wB5lbHa07BEpbnQ8aQ9_B2urwKp34cc7JtqUi8657poF_MIFhgBIBM&rfl=1%2Chttps%253A%252F%252Fgo.techgeek.digital%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 22 Nov 2022 19:51:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 33333
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0b3aa6ea955bd3f90d0edca3d7383ef1
82d3ad5ee1a5fb229ada3fc4a798863472206abb
82db94a0a4c41af665bf1d05c8edd7d87435abfc289e7c91f937404a18bf6c44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/simgad/12147863297448670022
142.250.74.70200 OK 38 kB URL HTTP/2 s0.2mdn.net/simgad/12147863297448670022
IP 142.250.74.70:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x250, components 3\012- data
Hash 9b635313c5a00b7ef3d69beaee4dae01
bb0c9c31a8545e726a15c31041e653b6873e10a8
8306c26e1bced2c071c18d8f79636554900c2d9e9d26155bd64cf5bdb77b65de
GET /simgad/12147863297448670022 HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37632
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 11:20:53 GMT
expires: Sat, 18 Nov 2023 11:20:53 GMT
cache-control: public, max-age=31536000
age: 376225
last-modified: Mon, 17 Oct 2022 17:04:31 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/157742/7600/
23.38.200.201403 Forbidden 199 B URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/157742/7600/
IP 23.38.200.201:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
GET /AdServer/js/pwt/157742/7600/ HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.techgeek.digital/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: Apache
content-length: 199
content-type: text/html; charset=iso-8859-1
date: Tue, 22 Nov 2022 19:51:18 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv0PxB1304THXwdirief7y855-oiBiC5-it55rJCh5mmMUyhv1UdNUW1ahLAuYHJh0swGIeZB6nc-blTxgJBZ82zAeiKosgie_N1lkrvxhm_Z7onZImYdhf3jLi7b-DoFyvLFaeWWYVjF8D3vy6D4jFNHSV8e3xTMeNBhPAfAvtCMkSdM3lxjPsimKW4xBb9g2OpPcFQdabyYVrkyuO1fvreUmQGJxtbtw7HXi8fQzGPBuIi2u9NwlCvW_b7g-WZ8CyAZ9P9Tt1Losq7NqrlfpWUFapXk6tVmdhyVsIx3JpfIcvXLeiKO2onrK5ylX71OU_6x3JexWWXW_CUV2g0e_Dw7fouMYClJpeFN_XTQ6l4Pc8wLznxzCjyGzOlQHcTA5ABBrHqeciZfkOA-IlkRibPhjoPvh3w3jcrhz3ti3buGaBANti4bSf-1VWARKxgIAswvhcpUc6QcU7Hgb6lqj8K_ffDhfUXNzYxd6OZ67cBHbFNlO2dEU_LlVAP3Ww-uBaRrNu9S_vuIJR-uHIJ2namgSm7s8NWH6aWVFiP49xo_37A1BnQ9OmpDt86ARQNv-24v4uFhMrwmUCkjaKfv0pnF7gvQIAVqtEwaa5TTs4hx37iaN4JAED9vyur6tehbRwarpPOJZ6Yy_IYIRW2bK1bSP6vdcQWXLIiJjMH8Tyl5JMgvVmvwJrC57-Qwe0W97pImRtc4kYCYBvC72jHfoyoChBwId1AMEPp4Dhk7w09sAzEpy7sOBu-gowOHgaTHD2lUQ23BM7I744C8IM17RJGN9DgbdFfjtPTyOtBzDa3LTpb_CYmfnkY28egEI7ToT-NcGQ2kSxW9A2uFMVShGgAbdZngM6m2E77DwNh1GDVc2m3HQnwsohlfgMOWR_aNirb1H2zpzLBBvfYkw7XgEQP-Yjv9LVfnzsMykjK3gSbmozmORyqrVHFZE_IYf4AdPD2uNpPQMb9GGMdljkUf24C35q_I3HPnKToYT0CmM3MD7kO-wxdGuw_wNob68vfMPGZ8rFEiAAHQWdciUj5Su1RXShj11KzdM4kf_OOP0eQF8XORlTkRSGm52z5cGYCJDsjg7ovHOf3VO1CNBJhC8ypcenYwNf9LdmuKFsUTtnEhmrT5vf4LzqdbLU7fFjmSVsVeitvpVQlmOQ3SmC_Jd9dJ8P16FZ-tJ63nFYc1XIZtOtUNwlUASTa96xi6fX378Azirb_Efkal-Dug&sai=AMfl-YQfYzBZnYuPmr_XDOpp9GDeQqc_siwXem1QGu3eEGLvADZ4vpCB11LWTXM00TUt0EnnOPB4bnMhIwTExF6AiEFsx0sEJ03op7ckSDCX3cfdUWI3mpUDMtCEwYTpAkAa7K8b8FlIvNmjxgQdVt11Ayv6Sw7bi2zZjeeOA2DF7O8Sq_wVl_j3I2YeB_ubX7qy-ZRWYZ5J1J9XpdpORLGq1vZk_o9H1EBIMQU151rJjWTY54wU4g7N9qGJy62juJpFZXAGXgqU4QMnJI5acfPqIHj-Tz9YCJ5Q5IBNDJ1SbLm7G9iP&sig=Cg0ArKJSzHEDI9vBtzmEEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=0&cbvp=1&cstd=0&cisv=r20221110.02579&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv0PxB1304THXwdirief7y855-oiBiC5-it55rJCh5mmMUyhv1UdNUW1ahLAuYHJh0swGIeZB6nc-blTxgJBZ82zAeiKosgie_N1lkrvxhm_Z7onZImYdhf3jLi7b-DoFyvLFaeWWYVjF8D3vy6D4jFNHSV8e3xTMeNBhPAfAvtCMkSdM3lxjPsimKW4xBb9g2OpPcFQdabyYVrkyuO1fvreUmQGJxtbtw7HXi8fQzGPBuIi2u9NwlCvW_b7g-WZ8CyAZ9P9Tt1Losq7NqrlfpWUFapXk6tVmdhyVsIx3JpfIcvXLeiKO2onrK5ylX71OU_6x3JexWWXW_CUV2g0e_Dw7fouMYClJpeFN_XTQ6l4Pc8wLznxzCjyGzOlQHcTA5ABBrHqeciZfkOA-IlkRibPhjoPvh3w3jcrhz3ti3buGaBANti4bSf-1VWARKxgIAswvhcpUc6QcU7Hgb6lqj8K_ffDhfUXNzYxd6OZ67cBHbFNlO2dEU_LlVAP3Ww-uBaRrNu9S_vuIJR-uHIJ2namgSm7s8NWH6aWVFiP49xo_37A1BnQ9OmpDt86ARQNv-24v4uFhMrwmUCkjaKfv0pnF7gvQIAVqtEwaa5TTs4hx37iaN4JAED9vyur6tehbRwarpPOJZ6Yy_IYIRW2bK1bSP6vdcQWXLIiJjMH8Tyl5JMgvVmvwJrC57-Qwe0W97pImRtc4kYCYBvC72jHfoyoChBwId1AMEPp4Dhk7w09sAzEpy7sOBu-gowOHgaTHD2lUQ23BM7I744C8IM17RJGN9DgbdFfjtPTyOtBzDa3LTpb_CYmfnkY28egEI7ToT-NcGQ2kSxW9A2uFMVShGgAbdZngM6m2E77DwNh1GDVc2m3HQnwsohlfgMOWR_aNirb1H2zpzLBBvfYkw7XgEQP-Yjv9LVfnzsMykjK3gSbmozmORyqrVHFZE_IYf4AdPD2uNpPQMb9GGMdljkUf24C35q_I3HPnKToYT0CmM3MD7kO-wxdGuw_wNob68vfMPGZ8rFEiAAHQWdciUj5Su1RXShj11KzdM4kf_OOP0eQF8XORlTkRSGm52z5cGYCJDsjg7ovHOf3VO1CNBJhC8ypcenYwNf9LdmuKFsUTtnEhmrT5vf4LzqdbLU7fFjmSVsVeitvpVQlmOQ3SmC_Jd9dJ8P16FZ-tJ63nFYc1XIZtOtUNwlUASTa96xi6fX378Azirb_Efkal-Dug&sai=AMfl-YQfYzBZnYuPmr_XDOpp9GDeQqc_siwXem1QGu3eEGLvADZ4vpCB11LWTXM00TUt0EnnOPB4bnMhIwTExF6AiEFsx0sEJ03op7ckSDCX3cfdUWI3mpUDMtCEwYTpAkAa7K8b8FlIvNmjxgQdVt11Ayv6Sw7bi2zZjeeOA2DF7O8Sq_wVl_j3I2YeB_ubX7qy-ZRWYZ5J1J9XpdpORLGq1vZk_o9H1EBIMQU151rJjWTY54wU4g7N9qGJy62juJpFZXAGXgqU4QMnJI5acfPqIHj-Tz9YCJ5Q5IBNDJ1SbLm7G9iP&sig=Cg0ArKJSzHEDI9vBtzmEEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=0&cbvp=1&cstd=0&cisv=r20221110.02579&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsv0PxB1304THXwdirief7y855-oiBiC5-it55rJCh5mmMUyhv1UdNUW1ahLAuYHJh0swGIeZB6nc-blTxgJBZ82zAeiKosgie_N1lkrvxhm_Z7onZImYdhf3jLi7b-DoFyvLFaeWWYVjF8D3vy6D4jFNHSV8e3xTMeNBhPAfAvtCMkSdM3lxjPsimKW4xBb9g2OpPcFQdabyYVrkyuO1fvreUmQGJxtbtw7HXi8fQzGPBuIi2u9NwlCvW_b7g-WZ8CyAZ9P9Tt1Losq7NqrlfpWUFapXk6tVmdhyVsIx3JpfIcvXLeiKO2onrK5ylX71OU_6x3JexWWXW_CUV2g0e_Dw7fouMYClJpeFN_XTQ6l4Pc8wLznxzCjyGzOlQHcTA5ABBrHqeciZfkOA-IlkRibPhjoPvh3w3jcrhz3ti3buGaBANti4bSf-1VWARKxgIAswvhcpUc6QcU7Hgb6lqj8K_ffDhfUXNzYxd6OZ67cBHbFNlO2dEU_LlVAP3Ww-uBaRrNu9S_vuIJR-uHIJ2namgSm7s8NWH6aWVFiP49xo_37A1BnQ9OmpDt86ARQNv-24v4uFhMrwmUCkjaKfv0pnF7gvQIAVqtEwaa5TTs4hx37iaN4JAED9vyur6tehbRwarpPOJZ6Yy_IYIRW2bK1bSP6vdcQWXLIiJjMH8Tyl5JMgvVmvwJrC57-Qwe0W97pImRtc4kYCYBvC72jHfoyoChBwId1AMEPp4Dhk7w09sAzEpy7sOBu-gowOHgaTHD2lUQ23BM7I744C8IM17RJGN9DgbdFfjtPTyOtBzDa3LTpb_CYmfnkY28egEI7ToT-NcGQ2kSxW9A2uFMVShGgAbdZngM6m2E77DwNh1GDVc2m3HQnwsohlfgMOWR_aNirb1H2zpzLBBvfYkw7XgEQP-Yjv9LVfnzsMykjK3gSbmozmORyqrVHFZE_IYf4AdPD2uNpPQMb9GGMdljkUf24C35q_I3HPnKToYT0CmM3MD7kO-wxdGuw_wNob68vfMPGZ8rFEiAAHQWdciUj5Su1RXShj11KzdM4kf_OOP0eQF8XORlTkRSGm52z5cGYCJDsjg7ovHOf3VO1CNBJhC8ypcenYwNf9LdmuKFsUTtnEhmrT5vf4LzqdbLU7fFjmSVsVeitvpVQlmOQ3SmC_Jd9dJ8P16FZ-tJ63nFYc1XIZtOtUNwlUASTa96xi6fX378Azirb_Efkal-Dug&sai=AMfl-YQfYzBZnYuPmr_XDOpp9GDeQqc_siwXem1QGu3eEGLvADZ4vpCB11LWTXM00TUt0EnnOPB4bnMhIwTExF6AiEFsx0sEJ03op7ckSDCX3cfdUWI3mpUDMtCEwYTpAkAa7K8b8FlIvNmjxgQdVt11Ayv6Sw7bi2zZjeeOA2DF7O8Sq_wVl_j3I2YeB_ubX7qy-ZRWYZ5J1J9XpdpORLGq1vZk_o9H1EBIMQU151rJjWTY54wU4g7N9qGJy62juJpFZXAGXgqU4QMnJI5acfPqIHj-Tz9YCJ5Q5IBNDJ1SbLm7G9iP&sig=Cg0ArKJSzHEDI9vBtzmEEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=0&cbvp=1&cstd=0&cisv=r20221110.02579&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 19:51:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 22 Nov 2022 19:51:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0b3aa6ea955bd3f90d0edca3d7383ef1
82d3ad5ee1a5fb229ada3fc4a798863472206abb
82db94a0a4c41af665bf1d05c8edd7d87435abfc289e7c91f937404a18bf6c44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv0PxB1304THXwdirief7y855-oiBiC5-it55rJCh5mmMUyhv1UdNUW1ahLAuYHJh0swGIeZB6nc-blTxgJBZ82zAeiKosgie_N1lkrvxhm_Z7onZImYdhf3jLi7b-DoFyvLFaeWWYVjF8D3vy6D4jFNHSV8e3xTMeNBhPAfAvtCMkSdM3lxjPsimKW4xBb9g2OpPcFQdabyYVrkyuO1fvreUmQGJxtbtw7HXi8fQzGPBuIi2u9NwlCvW_b7g-WZ8CyAZ9P9Tt1Losq7NqrlfpWUFapXk6tVmdhyVsIx3JpfIcvXLeiKO2onrK5ylX71OU_6x3JexWWXW_CUV2g0e_Dw7fouMYClJpeFN_XTQ6l4Pc8wLznxzCjyGzOlQHcTA5ABBrHqeciZfkOA-IlkRibPhjoPvh3w3jcrhz3ti3buGaBANti4bSf-1VWARKxgIAswvhcpUc6QcU7Hgb6lqj8K_ffDhfUXNzYxd6OZ67cBHbFNlO2dEU_LlVAP3Ww-uBaRrNu9S_vuIJR-uHIJ2namgSm7s8NWH6aWVFiP49xo_37A1BnQ9OmpDt86ARQNv-24v4uFhMrwmUCkjaKfv0pnF7gvQIAVqtEwaa5TTs4hx37iaN4JAED9vyur6tehbRwarpPOJZ6Yy_IYIRW2bK1bSP6vdcQWXLIiJjMH8Tyl5JMgvVmvwJrC57-Qwe0W97pImRtc4kYCYBvC72jHfoyoChBwId1AMEPp4Dhk7w09sAzEpy7sOBu-gowOHgaTHD2lUQ23BM7I744C8IM17RJGN9DgbdFfjtPTyOtBzDa3LTpb_CYmfnkY28egEI7ToT-NcGQ2kSxW9A2uFMVShGgAbdZngM6m2E77DwNh1GDVc2m3HQnwsohlfgMOWR_aNirb1H2zpzLBBvfYkw7XgEQP-Yjv9LVfnzsMykjK3gSbmozmORyqrVHFZE_IYf4AdPD2uNpPQMb9GGMdljkUf24C35q_I3HPnKToYT0CmM3MD7kO-wxdGuw_wNob68vfMPGZ8rFEiAAHQWdciUj5Su1RXShj11KzdM4kf_OOP0eQF8XORlTkRSGm52z5cGYCJDsjg7ovHOf3VO1CNBJhC8ypcenYwNf9LdmuKFsUTtnEhmrT5vf4LzqdbLU7fFjmSVsVeitvpVQlmOQ3SmC_Jd9dJ8P16FZ-tJ63nFYc1XIZtOtUNwlUASTa96xi6fX378Azirb_Efkal-Dug&sai=AMfl-YQfYzBZnYuPmr_XDOpp9GDeQqc_siwXem1QGu3eEGLvADZ4vpCB11LWTXM00TUt0EnnOPB4bnMhIwTExF6AiEFsx0sEJ03op7ckSDCX3cfdUWI3mpUDMtCEwYTpAkAa7K8b8FlIvNmjxgQdVt11Ayv6Sw7bi2zZjeeOA2DF7O8Sq_wVl_j3I2YeB_ubX7qy-ZRWYZ5J1J9XpdpORLGq1vZk_o9H1EBIMQU151rJjWTY54wU4g7N9qGJy62juJpFZXAGXgqU4QMnJI5acfPqIHj-Tz9YCJ5Q5IBNDJ1SbLm7G9iP&sig=Cg0ArKJSzHEDI9vBtzmEEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=281&vt=11&dtpt=281&dett=2&cstd=0&cisv=r20221110.02579&arae=0&ftch=1&adurl=
142.250.74.98200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsv0PxB1304THXwdirief7y855-oiBiC5-it55rJCh5mmMUyhv1UdNUW1ahLAuYHJh0swGIeZB6nc-blTxgJBZ82zAeiKosgie_N1lkrvxhm_Z7onZImYdhf3jLi7b-DoFyvLFaeWWYVjF8D3vy6D4jFNHSV8e3xTMeNBhPAfAvtCMkSdM3lxjPsimKW4xBb9g2OpPcFQdabyYVrkyuO1fvreUmQGJxtbtw7HXi8fQzGPBuIi2u9NwlCvW_b7g-WZ8CyAZ9P9Tt1Losq7NqrlfpWUFapXk6tVmdhyVsIx3JpfIcvXLeiKO2onrK5ylX71OU_6x3JexWWXW_CUV2g0e_Dw7fouMYClJpeFN_XTQ6l4Pc8wLznxzCjyGzOlQHcTA5ABBrHqeciZfkOA-IlkRibPhjoPvh3w3jcrhz3ti3buGaBANti4bSf-1VWARKxgIAswvhcpUc6QcU7Hgb6lqj8K_ffDhfUXNzYxd6OZ67cBHbFNlO2dEU_LlVAP3Ww-uBaRrNu9S_vuIJR-uHIJ2namgSm7s8NWH6aWVFiP49xo_37A1BnQ9OmpDt86ARQNv-24v4uFhMrwmUCkjaKfv0pnF7gvQIAVqtEwaa5TTs4hx37iaN4JAED9vyur6tehbRwarpPOJZ6Yy_IYIRW2bK1bSP6vdcQWXLIiJjMH8Tyl5JMgvVmvwJrC57-Qwe0W97pImRtc4kYCYBvC72jHfoyoChBwId1AMEPp4Dhk7w09sAzEpy7sOBu-gowOHgaTHD2lUQ23BM7I744C8IM17RJGN9DgbdFfjtPTyOtBzDa3LTpb_CYmfnkY28egEI7ToT-NcGQ2kSxW9A2uFMVShGgAbdZngM6m2E77DwNh1GDVc2m3HQnwsohlfgMOWR_aNirb1H2zpzLBBvfYkw7XgEQP-Yjv9LVfnzsMykjK3gSbmozmORyqrVHFZE_IYf4AdPD2uNpPQMb9GGMdljkUf24C35q_I3HPnKToYT0CmM3MD7kO-wxdGuw_wNob68vfMPGZ8rFEiAAHQWdciUj5Su1RXShj11KzdM4kf_OOP0eQF8XORlTkRSGm52z5cGYCJDsjg7ovHOf3VO1CNBJhC8ypcenYwNf9LdmuKFsUTtnEhmrT5vf4LzqdbLU7fFjmSVsVeitvpVQlmOQ3SmC_Jd9dJ8P16FZ-tJ63nFYc1XIZtOtUNwlUASTa96xi6fX378Azirb_Efkal-Dug&sai=AMfl-YQfYzBZnYuPmr_XDOpp9GDeQqc_siwXem1QGu3eEGLvADZ4vpCB11LWTXM00TUt0EnnOPB4bnMhIwTExF6AiEFsx0sEJ03op7ckSDCX3cfdUWI3mpUDMtCEwYTpAkAa7K8b8FlIvNmjxgQdVt11Ayv6Sw7bi2zZjeeOA2DF7O8Sq_wVl_j3I2YeB_ubX7qy-ZRWYZ5J1J9XpdpORLGq1vZk_o9H1EBIMQU151rJjWTY54wU4g7N9qGJy62juJpFZXAGXgqU4QMnJI5acfPqIHj-Tz9YCJ5Q5IBNDJ1SbLm7G9iP&sig=Cg0ArKJSzHEDI9vBtzmEEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=281&vt=11&dtpt=281&dett=2&cstd=0&cisv=r20221110.02579&arae=0&ftch=1&adurl=
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsv0PxB1304THXwdirief7y855-oiBiC5-it55rJCh5mmMUyhv1UdNUW1ahLAuYHJh0swGIeZB6nc-blTxgJBZ82zAeiKosgie_N1lkrvxhm_Z7onZImYdhf3jLi7b-DoFyvLFaeWWYVjF8D3vy6D4jFNHSV8e3xTMeNBhPAfAvtCMkSdM3lxjPsimKW4xBb9g2OpPcFQdabyYVrkyuO1fvreUmQGJxtbtw7HXi8fQzGPBuIi2u9NwlCvW_b7g-WZ8CyAZ9P9Tt1Losq7NqrlfpWUFapXk6tVmdhyVsIx3JpfIcvXLeiKO2onrK5ylX71OU_6x3JexWWXW_CUV2g0e_Dw7fouMYClJpeFN_XTQ6l4Pc8wLznxzCjyGzOlQHcTA5ABBrHqeciZfkOA-IlkRibPhjoPvh3w3jcrhz3ti3buGaBANti4bSf-1VWARKxgIAswvhcpUc6QcU7Hgb6lqj8K_ffDhfUXNzYxd6OZ67cBHbFNlO2dEU_LlVAP3Ww-uBaRrNu9S_vuIJR-uHIJ2namgSm7s8NWH6aWVFiP49xo_37A1BnQ9OmpDt86ARQNv-24v4uFhMrwmUCkjaKfv0pnF7gvQIAVqtEwaa5TTs4hx37iaN4JAED9vyur6tehbRwarpPOJZ6Yy_IYIRW2bK1bSP6vdcQWXLIiJjMH8Tyl5JMgvVmvwJrC57-Qwe0W97pImRtc4kYCYBvC72jHfoyoChBwId1AMEPp4Dhk7w09sAzEpy7sOBu-gowOHgaTHD2lUQ23BM7I744C8IM17RJGN9DgbdFfjtPTyOtBzDa3LTpb_CYmfnkY28egEI7ToT-NcGQ2kSxW9A2uFMVShGgAbdZngM6m2E77DwNh1GDVc2m3HQnwsohlfgMOWR_aNirb1H2zpzLBBvfYkw7XgEQP-Yjv9LVfnzsMykjK3gSbmozmORyqrVHFZE_IYf4AdPD2uNpPQMb9GGMdljkUf24C35q_I3HPnKToYT0CmM3MD7kO-wxdGuw_wNob68vfMPGZ8rFEiAAHQWdciUj5Su1RXShj11KzdM4kf_OOP0eQF8XORlTkRSGm52z5cGYCJDsjg7ovHOf3VO1CNBJhC8ypcenYwNf9LdmuKFsUTtnEhmrT5vf4LzqdbLU7fFjmSVsVeitvpVQlmOQ3SmC_Jd9dJ8P16FZ-tJ63nFYc1XIZtOtUNwlUASTa96xi6fX378Azirb_Efkal-Dug&sai=AMfl-YQfYzBZnYuPmr_XDOpp9GDeQqc_siwXem1QGu3eEGLvADZ4vpCB11LWTXM00TUt0EnnOPB4bnMhIwTExF6AiEFsx0sEJ03op7ckSDCX3cfdUWI3mpUDMtCEwYTpAkAa7K8b8FlIvNmjxgQdVt11Ayv6Sw7bi2zZjeeOA2DF7O8Sq_wVl_j3I2YeB_ubX7qy-ZRWYZ5J1J9XpdpORLGq1vZk_o9H1EBIMQU151rJjWTY54wU4g7N9qGJy62juJpFZXAGXgqU4QMnJI5acfPqIHj-Tz9YCJ5Q5IBNDJ1SbLm7G9iP&sig=Cg0ArKJSzHEDI9vBtzmEEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=281&vt=11&dtpt=281&dett=2&cstd=0&cisv=r20221110.02579&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://801ca4c9af762773ef565bf3752e858b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 19:51:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 22 Nov 2022 19:51:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 39d0ccb7ef2eb2aa9e86ea646111e8e5
33c53f80803bdf9464cd1c6ad19969474053fe8c
9945655cb4ccab363ab8fae301ccd84003d864ec0b70cc0c2a531afc81d5a004
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 39d0ccb7ef2eb2aa9e86ea646111e8e5
33c53f80803bdf9464cd1c6ad19969474053fe8c
9945655cb4ccab363ab8fae301ccd84003d864ec0b70cc0c2a531afc81d5a004
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 39d0ccb7ef2eb2aa9e86ea646111e8e5
33c53f80803bdf9464cd1c6ad19969474053fe8c
9945655cb4ccab363ab8fae301ccd84003d864ec0b70cc0c2a531afc81d5a004
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 39d0ccb7ef2eb2aa9e86ea646111e8e5
33c53f80803bdf9464cd1c6ad19969474053fe8c
9945655cb4ccab363ab8fae301ccd84003d864ec0b70cc0c2a531afc81d5a004
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 39d0ccb7ef2eb2aa9e86ea646111e8e5
33c53f80803bdf9464cd1c6ad19969474053fe8c
9945655cb4ccab363ab8fae301ccd84003d864ec0b70cc0c2a531afc81d5a004
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
216.58.211.1200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
IP 216.58.211.1:0
File type ASCII text, with very long lines (65534)
Hash c88b4e73b12307e42222d337bdd646a2
621233bf4e777b2d44b1bc143187111aca2fe718
ef6935537cd5a603b79bc98d4274b70ee5608955792523fc58e818c8ddbb7b48
GET /rtv/012211060024000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.techgeek.digital/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28809
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:08:54 GMT
expires: Tue, 21 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 92544
etag: "dd6615029de85e23"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
216.58.211.1200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
IP 216.58.211.1:0
File type ASCII text, with very long lines (14697)
Hash ae1a9f090984c448deb0629cc2304ee3
e601825ccec746695f370ed68fa33325152e0d9f
6a947bfcdeea64faa6c795caea11ee09dbe00f5d4003b7b9d47e4945c05ac1e4
GET /rtv/012211060024000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.techgeek.digital/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:08:54 GMT
expires: Tue, 21 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 92544
etag: "abd4378f71571d78"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
216.58.211.1200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
IP 216.58.211.1:0
File type ASCII text, with very long lines (5046)
Hash 669c8592ef8f63e7404e45dd6ca56b71
3f6753966361bb86594193009c9097612c361064
d174ae2c0722ab8d4bf736f0200dc5b15d288f9500a706bb161b64f5a3b74f01
GET /rtv/012211060024000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.techgeek.digital/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1913
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:08:54 GMT
expires: Tue, 21 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 92544
etag: "403438c4d550ee88"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
216.58.211.1200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash 2f873064835eed23708bde2a16830216
7559437b82b9b761e02549d8d51f9e3571e5ed2c
0f5d00ac674cc34652997f2e0dd7fb6eb1a5b22010989c35a81cd7a388c84fdd
GET /rtv/012211060024000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.techgeek.digital/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12946
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:08:54 GMT
expires: Tue, 21 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 92544
etag: "0bacd3f1ce38a7db"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
216.58.211.1200 OK 2.7 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
IP 216.58.211.1:0
Hash 2b18c436d459c9ba7ca15b306bd3e520
727b62707b2f9ce453225786f2e77a4c80f39747
f86391f8f5e12c3838b2bb51d1910da2a1a2aa975e44bfc3e189dc8bccdc0549
GET /rtv/012211060024000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61592
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:08:54 GMT
expires: Tue, 21 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 92544
etag: "a2fca7132416d151"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 39d0ccb7ef2eb2aa9e86ea646111e8e5
33c53f80803bdf9464cd1c6ad19969474053fe8c
9945655cb4ccab363ab8fae301ccd84003d864ec0b70cc0c2a531afc81d5a004
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:51:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 127 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2791)
Size 127 kB (126568 bytes)
Hash d298ebea71faa19cd8237ddf8c37d550
628f6436cdc4db74ecda4fad134b4499f41ad4cb
f02e9221a17b677d0aa0b76876bd82931f57bf5dd1ff9aa24a1ab945838b0e64
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126568
date: Tue, 22 Nov 2022 19:51:19 GMT
expires: Tue, 22 Nov 2022 19:51:19 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.7_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4447828478302708&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=4175440719&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680623&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=1981184545849106&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.7_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4447828478302708&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=4175440719&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680623&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=1981184545849106&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.7_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4447828478302708&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=4175440719&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680623&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=1981184545849106&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Tue, 22 Nov 2022 19:51:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:21 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.6_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=3149862397303979&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3399317543&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680654&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=3813758660433605&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.6_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=3149862397303979&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3399317543&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680654&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=3813758660433605&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.6_10.01.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=3149862397303979&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3399317543&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680654&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=3813758660433605&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Tue, 22 Nov 2022 19:51:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:21 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.5_23.02.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2161636848153822&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2787857945&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680827&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=1931180388377800&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.5_23.02.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2161636848153822&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2787857945&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680827&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=1931180388377800&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F157165500%2C22668010951%2FMCM_Adsolut_noweconomy.live_GZ%2FMCM_Adsolut_noweconomy.live_GZ_0.5_23.02.2022&description_url=http%3A%2F%2Fnoweconomy.live&tfcd=0&npa=0&sz=640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2161636848153822&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2787857945&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680827&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=1931180388377800&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Tue, 22 Nov 2022 19:51:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:21 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2242
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:21 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_MCM_0.6_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2691661715073465&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=1775827797&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680852&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=200945819991436&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_MCM_0.6_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2691661715073465&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=1775827797&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680852&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=200945819991436&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_MCM_0.6_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2691661715073465&sdkv=h.3.546.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=1775827797&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.546.0&sid=3A497B06-7E96-49F9-9E8D-7D88E04CC2B1&nel=0&eid=44748969%2C44750822%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&dt=1669146680852&cookie=ID%3D4362539e5156be82%3AT%3D1669146677%3AS%3DALNI_MYlbbMWpmRptoRbwhbW8oVi8sOdsQ&gpic=UID%3D00000b8611b765e1%3AT%3D1669146677%3ART%3D1669146677%3AS%3DALNI_MYjGHYN6wWRFDFiTuqL9Xjxe7xZMg&scor=200945819991436&ged=ve4_td1_tt1_pd1_la1000_er1046.314.1203.614_vi0.0.939.1268_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Tue, 22 Nov 2022 19:51:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 20:06:21 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146681087&asid=61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146681087&asid=61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146681087&asid=61dd704e41d86f5d5f7a0f44%2C61dd6f1d8590325cc5677477%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:21 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146681088&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri=
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146681088&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri=
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146681088&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri= HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:21 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146682238&asid=61dd6f1d8590325cc5677477%2C61dd704e41d86f5d5f7a0f44%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146682238&asid=61dd6f1d8590325cc5677477%2C61dd704e41d86f5d5f7a0f44%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1669146682238&asid=61dd6f1d8590325cc5677477%2C61dd704e41d86f5d5f7a0f44%2C61d829ec9153372ff344f254&ofpr=%2C%2C&fpo=%2C%2C&ri=%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:22 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3437
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:22 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146682239&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri=
54.156.53.188200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146682239&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri=
IP 54.156.53.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=go.techgeek.digital&rs=go.techgeek.digital&sid=13901&t=1669146676&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1669146676571-965570004196-006472-012-006527&cha=0.05&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.62&cb=42843907735&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1669146682239&asid=621608fa964cdd04dc3e2f6b&ofpr=&fpo=&ri= HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:22 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
go.techgeek.digital/21xmDpI
104.21.54.123200 OK 0 B URL HTTP/2 go.techgeek.digital/21xmDpI
IP 104.21.54.123:0
GET /21xmDpI HTTP/1.1
Host: go.techgeek.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:14 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
set-cookie: AppSession=67dae537ab645a0eb47767df679e2ad0; path=/; HttpOnly
ref21xmDpI=YWVmODE1NWZjYWYyNmJkNzk1NWY4NjMyM2ZlODkxOGEyNDFmOTFlOTRmM2QyMTIyOGE4Y2M3OWU0MDJhZmNiYnUDkMlIts2TO48En1QTkEWjVHXBtsnIH31UWottcfYn; expires=Tue, 22-Nov-2022 19:56:14 GMT; Max-Age=300; path=/; HttpOnly
csrfToken=9d028fbcae2d0d17642ad0bd87111bd0188a65089f1e3eabb14428d603540da8b73d8e544160bccfa512a721f951ab55e787c7516555c74bd2d946ccede5903f; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uKeeXv%2BcBV5tV0e3BllFE0nj%2B9QEYGpsDxcn1jMWtgVgSH1mHpBC8Yo8NyOuVf6HJT20xWJ11UHsr4b839ZOerEAxUP3Of5aY7XEWOi57iMgwiCYeO%2BVvm%2Bx8x%2FCCKrPVixiwhSI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e432db59aab527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
interstitial-07.com/?l=UWw3ZdRlaZbA8Ly&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D498237716%26z%3D4986256%26b%3D15768993%26c%3D6334387%26var%3D%26d%3Dhttp%253A%252F%252Fbelievemefly.com%252Fbase.php%253Fc%253D3647%2526key%253D432671afcbaec0691a80da097806f6fe%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DWe5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D9c5ce3ef-1a4c-4ff6-afdb-279000201325%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F21xmDpI%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.155200 OK 0 B URL HTTP/2 interstitial-07.com/?l=UWw3ZdRlaZbA8Ly&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D498237716%26z%3D4986256%26b%3D15768993%26c%3D6334387%26var%3D%26d%3Dhttp%253A%252F%252Fbelievemefly.com%252Fbase.php%253Fc%253D3647%2526key%253D432671afcbaec0691a80da097806f6fe%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DWe5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D9c5ce3ef-1a4c-4ff6-afdb-279000201325%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F21xmDpI%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.155:0
GET /?l=UWw3ZdRlaZbA8Ly&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D498237716%26z%3D4986256%26b%3D15768993%26c%3D6334387%26var%3D%26d%3Dhttp%253A%252F%252Fbelievemefly.com%252Fbase.php%253Fc%253D3647%2526key%253D432671afcbaec0691a80da097806f6fe%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DWe5o8o_BZQ-8BKQ_nDXw8ZqlHXyYUGCa0ZEI5R-ABwdOMnElbaNfvW4Q2UgfYYTD5dX8DOX-YIN5uhwCS90SpfU8nl7-ngM1vMbtlZfDUjeQLjriJbw9elRfc543Ax_lm4gthTmwBcQfwIYwZ5nkYiQeS0uRz7GtO7wXOO8kCS7jDTBg9YPwnNNbo1t998ydqJb_JGxtX7g-BOnWZTfY3bZ41FpqvFljA17FufwlcKVQMcPakYVIBfMeTsN3NgoLvvGlLz2DMYQiYNp6bx_yqVza8pZWUXNyzpYzeE5_I1qOkajH4cIYuoXNky2ANhxHxMHghjjfG_7Mek1KJbfP9kf3ku6buCpdlnrh1b7a5DYOErfeRuD8lC_Z9CnCR04eZjuF1enPhR9NL3MxRuSEqR5jbweaHbZoqip62ttGv2zIQCkpogH8Qs7xgE6nLGTX3kwr0Fxr58NczDtr5UJO2RrFGNcd0EZSCNV21aLTA_NNU8YGsbPALYv1rhoHndpj6ZihcErAgoXPhH5k05aU9cpWxtRs76u6GESQkiWf_edsFU95LP5bPAdj4jXnQLTObj2kfejTUcK1hiGfWHY2uMc9rPGrKOdri-Lb3SNLNaJOXp87j-OKeLYE_ztBZDDcgB3XL0U1Ka50wcpz2ZAA8Q%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D9c5ce3ef-1a4c-4ff6-afdb-279000201325%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F21xmDpI%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
set-cookie: reverse=HIaKoAArgq1yq5n3m7XtWjxmlH8WMKblQJF-01mOEHg; expires=Tue, 22-Nov-2022 20:51:16 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2
ads.adshort.media/adx/fixed_adxv2t_607.js
104.21.88.127200 OK 0 B URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_607.js
IP 104.21.88.127:0
GET /adx/fixed_adxv2t_607.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Wed, 09 Feb 2022 09:40:28 GMT
cache-control: max-age=2592000
expires: Sat, 03 Dec 2022 23:46:30 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1627485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NL2ydYMq0UjTjixBYc5zGUkgaXdZ06InUuIg2beIm9dXplBSpOYRJSrdnH1uxiH5M4QeUUIGQBGCGfuAtCdCedtTE5SWwItKucJvfNERizxBmXGmlon98Xf1VLemrbFOPvlZig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e432e0398bb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adshort.space/script_ad.js
172.67.131.51200 OK 0 B URL HTTP/2 adshort.space/script_ad.js
IP 172.67.131.51:0
GET /script_ad.js HTTP/1.1
Host: adshort.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
last-modified: Mon, 25 Jan 2021 10:26:17 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BHasCzBahWnG7M5jzhow3qXxw25rL9AluE0qWgWCk6bMVszNkbroFDkkRPOpQcwQZ4frebAl%2FpCVKLATPU%2B7%2FLKSSphD7MPgnFWLfhSPTtFV%2BPhl8BiQQieSDk0hMHYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e432e108affac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.84.149200 OK 0 B IP 104.21.84.149:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 14:05:58 GMT
etag: W/"634eb2c6-32d9"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5RHJehuwekU4YX0bIOCYewnRsIyTrXGoLm14YzynjgvHYJxBKt1iKxsvNbiQ1QBmQfcPQEsVnbkktSwrkB8bCspwKQWubFS7xCeiOctaR7t3%2BiWd%2B%2FDU4l5B5bBpWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e432e22f22b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=05ad6bf95f6d460d94680be541001f74
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=05ad6bf95f6d460d94680be541001f74
IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
POST /9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=05ad6bf95f6d460d94680be541001f74 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 43
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=a964fb211b3342919710a0c411085476; oaidts=1669146675
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 8a48d3df60bf188f71aafb90d4e2c376
access-control-expose-headers: X-Sc
set-cookie: OAID=05ad6bf95f6d460d94680be541001f74; expires=Wed, 22 Nov 2023 19:51:16 GMT; secure; SameSite=None
oaidts=1669146675; expires=Wed, 22 Nov 2023 19:51:16 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adshort.media/adx/video_adx_f096.js
104.21.88.127200 OK 0 B URL HTTP/2 ads.adshort.media/adx/video_adx_f096.js
IP 104.21.88.127:0
GET /adx/video_adx_f096.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Mon, 10 Jan 2022 15:53:00 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 19:18:25 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1384370
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7iIoOFIZC3CHJIC%2FAvfVIpSd3uGYjnxY7x%2F3Ln1LMxUVAkRmwKdbVYz4a0yNOadUFxqEj10G4q5ZYf%2FO5VToDb4Zhrn5j3M8vR%2FpAmN4zYsghfkTz0oJl6d8vu7ibcmyS8TYhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e432e00942b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
betotodilea.com/500/4986248?excludes=&oaid=05ad6bf95f6d460d94680be541001f74&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/500/4986248?excludes=&oaid=05ad6bf95f6d460d94680be541001f74&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
GET /500/4986248?excludes=&oaid=05ad6bf95f6d460d94680be541001f74&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: OAID=587aa466bbe94aa3837e708997220b3c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: application/javascript
x-trace-id: 3f7e1fd5f86363c35aa1dcb0945d3ae3
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://go.techgeek.digital
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=05ad6bf95f6d460d94680be541001f74; expires=Wed, 22 Nov 2023 19:51:16 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adshort.media/adx/fixed_adxv2t_605.js
104.21.88.127200 OK 0 B URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_605.js
IP 104.21.88.127:0
GET /adx/fixed_adxv2t_605.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Mon, 07 Feb 2022 17:48:17 GMT
cache-control: max-age=2592000
expires: Sat, 03 Dec 2022 23:46:30 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1627485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OFyjqbUjb75QGC1mgldub8dNbW1yZH0qTUxsMrpkgZo1u96ssvrNeKLnlN3phQv4d%2FXhmTjoBtHmla8kRfDkvgE17Y5XkRacdzACulOuePAEW6cxmM94hDSyqksasAZ57vCCnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e432e0297eb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nanouwho.com/27/41ab89fd46dee73b88e90458e19140c8
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/27/41ab89fd46dee73b88e90458e19140c8
IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
GET /27/41ab89fd46dee73b88e90458e19140c8 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=a964fb211b3342919710a0c411085476; oaidts=1669146675
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:51:15 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Tue, 22 Nov 2022 04:37:20 GMT
expires: Tue, 22 Dec 2082 04:37:20 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
go1.aniview.com/api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.62&responsive=1&sver=3&avtoken=675939&omv=1.0.1&clsid=d85fefe7-19dd-4574-b626-020cd83c9cf0&rando=5&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1669146675942&wfc=1
52.45.236.73200 OK 0 B URL HTTP/2 go1.aniview.com/api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.62&responsive=1&sver=3&avtoken=675939&omv=1.0.1&clsid=d85fefe7-19dd-4574-b626-020cd83c9cf0&rando=5&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1669146675942&wfc=1
IP 52.45.236.73:0
GET /api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2F21xmDpI&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.62&responsive=1&sver=3&avtoken=675939&omv=1.0.1&clsid=d85fefe7-19dd-4574-b626-020cd83c9cf0&rando=5&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1669146675942&wfc=1 HTTP/1.1
Host: go1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:51:16 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1669146676571-965570004196-006472-012-006527; Expires=Mon, 12-Dec-22 19:51:16 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
aniC=; Expires=Mon, 12-Dec-22 19:51:16 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
expires: Fri, 11 Nov 2022 06:04:36 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2