ads.softupdt.com/adsbridge/tracker.html
79.110.52.4301 Moved Permanently 178 B URL HTTP/1.1 ads.softupdt.com/adsbridge/tracker.html
IP 79.110.52.4:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
Analyzer Verdict Alert fortinet Malware
GET /adsbridge/tracker.html HTTP/1.1
Host: ads.softupdt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 15 Sep 2022 15:47:39 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://ads.softupdt.com/adsbridge/tracker.html
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 15:10:26 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Og9GyNYMyuBreRDbMFIAK5Uf6wMvIaVUizXI9cPNVS2Y-eP66EVRdg==
Age: 2232
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6716f88f982aa553eaf5de31b2629224
97ab757b0a059027ffb04675114e5c55738fccaf
06af9ae9fc72a3aeb4be2b742128a0cb8ea4aff348afe2e4490d3639b3b377d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06AF9AE9FC72A3AEB4BE2B742128A0CB8EA4AFF348AFE2E4490D3639B3B377D9"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5963
Expires: Thu, 15 Sep 2022 17:27:02 GMT
Date: Thu, 15 Sep 2022 15:47:39 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rPJdTlN5eJXbAdu0GQLkJjWd9zhnWdSR64wM9oEBMiUzX7LDmogpTQ==
age: 40344
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b270d96fc092173e41868234f7a67548
6f6463dd45302b638fa067cbc8ff8226c809844e
86335784e297e587fc4ad28367117148cf972ffed4af40f42e09e1f542b203d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86335784E297E587FC4AD28367117148CF972FFED4AF40F42E09E1F542B203D3"
Last-Modified: Wed, 14 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6759
Expires: Thu, 15 Sep 2022 17:40:19 GMT
Date: Thu, 15 Sep 2022 15:47:40 GMT
Connection: keep-alive
ads.softupdt.com/adsbridge/tracker.html
79.110.52.4200 OK 93 B URL HTTP/1.1 ads.softupdt.com/adsbridge/tracker.html
IP 79.110.52.4:0
File type ASCII text, with no line terminators
Hash b34e5cfc8a14c6dd5b43008d637eaf07
4078ba1199f4f2ac2dcd4a503784abaeec5dad27
0f333e15066733284f575b16325ffa9b8c8b60258fb8ef1ba13a83bd8c8fb960
Analyzer Verdict Alert fortinet Malware
GET /adsbridge/tracker.html HTTP/1.1
Host: ads.softupdt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 15 Sep 2022 15:47:40 GMT
Content-Type: text/html
Last-Modified: Thu, 15 Sep 2022 15:46:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"632348b8-4b"
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 15:47:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 15:03:22 GMT
Expires: Thu, 15 Sep 2022 16:02:22 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: miyOAAeUD-DkreE_edmEEtdme837ZBy5T0akdHcBpkvxpe7MvHJAMw==
Age: 2658
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5442
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:40 GMT
Last-Modified: Thu, 15 Sep 2022 14:16:58 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.softschools.com/
184.154.53.10200 OK 10 kB IP 184.154.53.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (633), with CRLF, LF line terminators
Hash cb1da89d08fe9eef5f018da1eb43030c
1b21bb981bd7bdd4eb0629f8f85afef3dc045a58
b0fbb75cdd99e1f6ffd3eb9def8f1aa3ffb934144ca0c4745401299328e0eb02
GET / HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:40 GMT
Server: Apache
Cache-Control: private
Set-Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy; path=/
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10059
Keep-Alive: timeout=5
Connection: Keep-Alive
tagan.adlightning.com/math-aids/op.js
143.204.55.79200 OK 23 kB URL HTTP/2 tagan.adlightning.com/math-aids/op.js
IP 143.204.55.79:0
File type Unicode text, UTF-8 text, with very long lines (57152)
Hash fb613f589351958d48c5a413e27df16e
2f2896102ee90e4aac5059af7ce4c3798bf11f91
3da0b1a2f6130bf27d7718d991ee74adb5191ccd87fc218e837066e60a2dc837
GET /math-aids/op.js HTTP/1.1
Host: tagan.adlightning.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 22979
last-modified: Wed, 14 Sep 2022 23:02:02 GMT
x-amz-meta-git_commit: c5c1c29
content-encoding: gzip
x-amz-version-id: R9P35DnV0KkUsYadTgXZmAcsyKXbyIcB
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 15:02:27 GMT
cache-control: max-age=3600
etag: "fb613f589351958d48c5a413e27df16e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YRnykc8MktOrtNWVSYx8hPSfEITjiroCib-Ia0_VBvC-BCTUeJ1q7w==
age: 2720
X-Firefox-Spdy: h2
www.softschools.com/css2/rd/bootstrap.css
184.154.53.10200 OK 21 kB URL HTTP/1.1 www.softschools.com/css2/rd/bootstrap.css
IP 184.154.53.10:0
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash 27154abfb3979a46b1e0b74785db1c33
396278e2774ce1dc229c99089375aceba96f82f2
7483dee5330515df1349810db731122f90a895343aebd705df3b758217bb71e4
GET /css2/rd/bootstrap.css HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:40 GMT
Server: Apache
Last-Modified: Wed, 25 Oct 2017 12:19:56 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 15:47:40 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20941
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
52.39.126.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.126.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JvF3pSA62nwT1/HOCpPQdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bfXMELYeKyyKnP3QvEsMEcDuI+Q=
www.softschools.com/css2/rd/ssdefaultfull.css
184.154.53.10200 OK 2.5 kB URL HTTP/1.1 www.softschools.com/css2/rd/ssdefaultfull.css
IP 184.154.53.10:0
File type ASCII text, with CRLF line terminators
Hash 04031afcd256dff42a0455a419d5a08a
293b5adf7fdec891c70fa8628d3454a2e3370545
68b40d0af38c2f4c40761a5934488422741e8ccabe36b727620248a4c7f6d476
GET /css2/rd/ssdefaultfull.css HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 10:42:43 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 15:47:41 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2467
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.softschools.com/css2/rd/responsivefull.css
184.154.53.10200 OK 688 B URL HTTP/1.1 www.softschools.com/css2/rd/responsivefull.css
IP 184.154.53.10:0
File type ASCII text, with very long lines (2070), with no line terminators
Hash 6a5144b9d8393c4827dc35efe7be0f45
fb2ad668db17bd9161f3bb15c26153868cc14306
9da0c82328618e5c727d7f39094543d5d98370be7ca549db371390e721b2a9b4
GET /css2/rd/responsivefull.css HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Wed, 25 Oct 2017 12:19:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 15:47:41 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 688
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.softschools.com/css/table.css
184.154.53.10200 OK 2.6 kB URL HTTP/1.1 www.softschools.com/css/table.css
IP 184.154.53.10:0
File type ASCII text, with CRLF line terminators
Hash 83271822365d98ac4b89bc12a8e00cba
1ecf72a9501cf2e825d5c95ea60afee838f25f52
9fb7d5da9f901bf9866ad5d95df0ef24f23f019811132f10a4b3acb47b2478dd
GET /css/table.css HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 11:18:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 15:47:41 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2583
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.softschools.com/js2/rd/rdbootstrap.min.js
184.154.53.10200 OK 9.4 kB URL HTTP/1.1 www.softschools.com/js2/rd/rdbootstrap.min.js
IP 184.154.53.10:0
File type ASCII text, with very long lines (32087), with CRLF line terminators
Hash a25d8ca22b2ba7afb6dc747601850315
78342183e74e37c63d7eb5201788a3cecfd8c4b9
84fca1939504f5c6cb73d51cd3c7f7a717c5b163b7fca2d1faa4dfbb6bfa8227
GET /js2/rd/rdbootstrap.min.js HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Mon, 01 Jun 2015 12:36:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9447
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.softschools.com/js2/rd/jquery-1.11.1.min.js
184.154.53.10200 OK 33 kB URL HTTP/1.1 www.softschools.com/js2/rd/jquery-1.11.1.min.js
IP 184.154.53.10:0
File type ASCII text, with very long lines (32086)
Hash 97b54f6e4ee5dfcb8336e6f883be31f5
7a7e1263801f79acdc30e65d131b9f765143b62f
60d6893496ed6ae9f124dc50de5343bbdd1a5a4d7d86214e7cb3316f4bd08559
GET /js2/rd/jquery-1.11.1.min.js HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2015 12:28:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33224
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.softschools.com/images/logo.png
184.154.53.10200 OK 14 kB URL HTTP/1.1 www.softschools.com/images/logo.png
IP 184.154.53.10:0
File type PNG image data, 257 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 6257c7fdba8d565d42038f60847646e8
6e79e9904ddd99ed26722445ef11f621fa41837b
f7ba9eba871ca4bd3159636cb7141359ef6aafb92349d7208e383073b48336d6
GET /images/logo.png HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Sat, 09 Feb 2013 19:03:28 GMT
Accept-Ranges: bytes
Content-Length: 13731
Cache-Control: max-age=2592000
Expires: Sat, 15 Oct 2022 15:47:41 GMT
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
ssl.google-analytics.com/ga.js
142.250.74.72200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.72:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Thu, 15 Sep 2022 14:29:20 GMT
expires: Thu, 15 Sep 2022 16:29:20 GMT
cache-control: public, max-age=7200
age: 4701
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 56b4a90e8be043082aa30d490fe93e47
6c94d4b9610ec757d7e7851ac2e478edff1309f8
c59724a0ece262f497d3f09f4e90ae49a11a3a150134183cc10ef2c47f5fe9b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.softschools.com/images/arrow_yellow.png
184.154.53.10200 OK 233 B URL HTTP/1.1 www.softschools.com/images/arrow_yellow.png
IP 184.154.53.10:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f6e6ce87b04019771754c0cfa6e8b98
e2a9b848919cc1b706c6cf5a938de4a9855ba16c
8a0ffd3220d119e18ed0b66a4915dcee02bf2e4576ad61cd56a3670f811c1ece
GET /images/arrow_yellow.png HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/css2/rd/ssdefaultfull.css
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Sat, 09 Feb 2013 00:29:06 GMT
Accept-Ranges: bytes
Content-Length: 233
Cache-Control: max-age=2592000
Expires: Sat, 15 Oct 2022 15:47:41 GMT
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
tagan.adlightning.com/math-aids/b-c5c1c29-93c03008.js
143.204.55.79200 OK 31 kB URL HTTP/2 tagan.adlightning.com/math-aids/b-c5c1c29-93c03008.js
IP 143.204.55.79:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 58d4f8d846656e7f6061d17e761aaef5
9ea1f09efabda98fec3ace6d1e5456afd4bdc3da
e170730d984aee00c3d72200bd8cc6f75b10252cd3410a6a587a5b88696b98e9
GET /math-aids/b-c5c1c29-93c03008.js HTTP/1.1
Host: tagan.adlightning.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 30806
date: Sat, 10 Sep 2022 18:30:39 GMT
last-modified: Wed, 27 Apr 2022 19:19:31 GMT
etag: "58d4f8d846656e7f6061d17e761aaef5"
cache-control: max-age=31536000
x-amz-meta-git_commit: c5c1c29
content-encoding: gzip
x-amz-version-id: aB7BMJcLNpMOCDCViayZ09V2d1rMAyps
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KVftU03l1EsOxauZuXkjBgFxdmC0zAA3iSEXN-zIRt8C8FRrRzEghw==
age: 422223
X-Firefox-Spdy: h2
tagan.adlightning.com/math-aids/bl-6399065-932eb337.js
143.204.55.79200 OK 20 kB URL HTTP/2 tagan.adlightning.com/math-aids/bl-6399065-932eb337.js
IP 143.204.55.79:0
File type ASCII text, with very long lines (48959)
Hash 4937a4cf4bf9765c92d3f82a3d0018d9
0f19295ca8dd4bc05b1304dbed7cd9634b0f4456
ef03dc2b005d6cbe60fbd5992018640cc6f6d863a0e2626dbbba1c4480c09fbc
GET /math-aids/bl-6399065-932eb337.js HTTP/1.1
Host: tagan.adlightning.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 20402
date: Wed, 14 Sep 2022 23:02:08 GMT
last-modified: Wed, 14 Sep 2022 23:01:35 GMT
etag: "4937a4cf4bf9765c92d3f82a3d0018d9"
cache-control: max-age=31536000
x-amz-meta-git_commit: 6399065
content-encoding: gzip
x-amz-version-id: igee2wpAkVJ1_I6og_y.3wLp76McuTln
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dzlgw3ALMxkbUCXf2fCnriInFUpH1RjPrGMYQgnn5AYsWqn5ZmCt-A==
age: 60334
X-Firefox-Spdy: h2
www.softschools.com/css2/rd/fonts/Vag-Bold.ttf
184.154.53.10200 OK 35 kB URL HTTP/1.1 www.softschools.com/css2/rd/fonts/Vag-Bold.ttf
IP 184.154.53.10:0
File type TrueType Font data, 15 tables, 1st "OS/2", 21 names, Unicode\012- data
Hash bc2550a587f49d2eb7b074a390f1174b
d8fb556275970632ff13918aea1bea7155c3478c
dc4b65cba6daf86814a47080658c20acd35c055e9a02122ae940c01840f12837
GET /css2/rd/fonts/Vag-Bold.ttf HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/css2/rd/ssdefaultfull.css
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 12:33:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 35378
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/ttf
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e10590dbe47018a5349ece6538ac4dcb
4ca096506e293cdf1249583db768b64d884145bf
7e0d62a1efa128866a190603dc28c28d3f99b354ff693843f86484f690537453
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "7E0D62A1EFA128866A190603DC28C28D3F99B354FF693843F86484F690537453"
Last-Modified: Tue, 13 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6904
Expires: Thu, 15 Sep 2022 17:42:45 GMT
Date: Thu, 15 Sep 2022 15:47:41 GMT
Connection: keep-alive
www.softschools.com/css2/rd/fonts/Montserrat/Montserrat-Regular.ttf
184.154.53.10200 OK 113 kB URL HTTP/1.1 www.softschools.com/css2/rd/fonts/Montserrat/Montserrat-Regular.ttf
IP 184.154.53.10:0
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr\012- data
Size 113 kB (112835 bytes)
Hash 4da3aff66317963f9b13f47a22cb8405
546d51093a07021ca0acac52ece5648d478683c9
d027e66e7a1e2e1a4c2f27319846c2fb32b90eb456dc994fff813451000bd7f2
GET /css2/rd/fonts/Montserrat/Montserrat-Regular.ttf HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/css2/rd/ssdefaultfull.css
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 12:33:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: font/ttf
pioeg.admetricspro.workers.dev/
172.67.138.63200 OK 184 B URL HTTP/2 pioeg.admetricspro.workers.dev/
IP 172.67.138.63:0
File type ASCII text, with no line terminators
Hash 2d32d517fde312c1c8bdc67ed0ae35b9
368a361cc71b48431d339f49061b8bc8ef4e9709
df99d747323e5c909cdc581ee84abff59a3f7d692d67297939fababb32abd3d1
GET / HTTP/1.1
Host: pioeg.admetricspro.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:41 GMT
content-type: application/text;charset=UTF-8
content-length: 184
access-control-allow-origin: *
vary: Origin, Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EEJ8mjBpy8EJ%2Bs4CshVpEDlx3in0KGxDNFk3FEbzxXSXNKdW5AQopnEJrCBVjV1C%2Bz8QVpOEoLesc47%2B9uhrZx97Ex9eDaccUK7uWd5fyV%2F344wmWpkjqRR2QRhHAImFUqp%2BqUHFOb3ZVXC8viXisaY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74b2809a5a07b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e10590dbe47018a5349ece6538ac4dcb
4ca096506e293cdf1249583db768b64d884145bf
7e0d62a1efa128866a190603dc28c28d3f99b354ff693843f86484f690537453
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "7E0D62A1EFA128866A190603DC28C28D3F99B354FF693843F86484F690537453"
Last-Modified: Tue, 13 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6904
Expires: Thu, 15 Sep 2022 17:42:45 GMT
Date: Thu, 15 Sep 2022 15:47:41 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
216.58.207.194200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (45449)
Hash f9659609c46b660ef317e6b69da34ed7
30b35697bd5a73064de73cac7e206f92899dea6f
292af2b26a9573e2d1877b0048f08ab8bb4ab6013bcddc72e7851809fd1ef9ef
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27687
date: Thu, 15 Sep 2022 15:47:41 GMT
expires: Thu, 15 Sep 2022 15:47:41 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1334 / 283 of 1000 / last-modified: 1663240024"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fwww.softschools.com&pubid=cb8cfc89-e83e-44aa-a3a2-ff78eda781ef
143.204.46.73200 OK 662 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fwww.softschools.com&pubid=cb8cfc89-e83e-44aa-a3a2-ff78eda781ef
IP 143.204.46.73:0
File type JSON data\012- , ASCII text, with very long lines (662), with no line terminators
Hash f12d64bf88721de9f5a3888bf38f601f
d7260c3cc28ac0268f8f556e7fbe28dd82bd677e
6493fe707262fb8d9bc0e4d487e319fc9ebe7de26ebe7e3b4f58a5d17f03a9ea
GET /cdn/prod/config?src=600&u=https%3A%2F%2Fwww.softschools.com&pubid=cb8cfc89-e83e-44aa-a3a2-ff78eda781ef HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 662
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Thu, 15 Sep 2022 10:48:51 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ht8j_m_YzwU2V9hRs_wEqBjs9zKbQoqrtTW0-FX3YqiSNttlodhpCw==
age: 17929
X-Firefox-Spdy: h2
cd.connatix.com/connatix.player.js
151.101.86.137302 Found 0 B URL HTTP/2 cd.connatix.com/connatix.player.js
IP 151.101.86.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connatix.player.js HTTP/1.1
Host: cd.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://cds.connatix.com/p/182743/connatix.player.dc.js
accept-ranges: bytes
access-control-max-age: 86400
date: Thu, 15 Sep 2022 15:47:41 GMT
content-length: 0
X-Firefox-Spdy: h2
www.softschools.com/favicon.ico
184.154.53.10200 OK 96 B URL HTTP/1.1 www.softschools.com/favicon.ico
IP 184.154.53.10:0
File type MS Windows icon resource - 1 icon, 16x16\012- data
Hash 4d698b94ec423f03670c9b3bbbf94aba
85e51969778a10255930f78386d14464eecd0d5d
3d1b24c645e8ca798b673651dea6a47ae5c933e52ad96858ebfddcfc7144f605
GET /favicon.ico HTTP/1.1
Host: www.softschools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: JSESSIONID=aaaP2DhQTkuFNa99TvEmy; __utma=166518076.1706618444.1663256846.1663256846.1663256846.1; __utmb=166518076.1.10.1663256846; __utmc=166518076; __utmz=166518076.1663256846.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:41 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2013 23:10:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 15:47:41 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 96
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/x-icon
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-286169-1&cid=1706618444.1663256846&jid=725921262&_v=5.7.2&z=128673236
142.251.1.157200 OK 35 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-286169-1&cid=1706618444.1663256846&jid=725921262&_v=5.7.2&z=128673236
IP 142.251.1.157:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-286169-1&cid=1706618444.1663256846&jid=725921262&_v=5.7.2&z=128673236 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.softschools.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 15 Sep 2022 15:47:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022091201.js
216.58.207.194200 OK 131 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022091201.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (65439)
Size 131 kB (131208 bytes)
Hash 74e4514f52abf92dc43966f700a6be22
1e001f63e5c0c0b70b436f37d2f423234d7aa721
e344fe1a3fc4b3cd3a6869c77c6b1adf1002224292e98cbe3240cb47a1a5f17c
GET /gpt/pubads_impl_2022091201.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 131208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 10:48:36 GMT
expires: Tue, 12 Sep 2023 10:48:36 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 12 Sep 2022 08:37:16 GMT
content-type: text/javascript
age: 277145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.softschools.com
216.58.207.194200 OK 111 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.softschools.com
IP 216.58.207.194:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a885f1386e51f1c5775e795089b8444f
d4d48e6d2339ba0cc2ebe3027364dc6cfa847aaf
6826afd343602ae46a4bcf5621f1838d426f44f28475e9caf63f3d6972117c7d
GET /pagead/ppub_config?ippd=www.softschools.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Thu, 15 Sep 2022 15:47:42 GMT
expires: Thu, 15 Sep 2022 15:47:42 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 111
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 15-Sep-2022 16:02:42 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0b4eed58b61d5b83ee76acc95859d7bf
e7b7cfeaa2c704cd6092846cbec314689d0504b3
f99e45e7102d04339cd5c11123d84714b27621e287633a4c18fa38ceb161eb59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F99E45E7102D04339CD5C11123D84714B27621E287633A4C18FA38CEB161EB59"
Last-Modified: Thu, 15 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3285
Expires: Thu, 15 Sep 2022 16:42:27 GMT
Date: Thu, 15 Sep 2022 15:47:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0b4eed58b61d5b83ee76acc95859d7bf
e7b7cfeaa2c704cd6092846cbec314689d0504b3
f99e45e7102d04339cd5c11123d84714b27621e287633a4c18fa38ceb161eb59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F99E45E7102D04339CD5C11123D84714B27621E287633A4C18FA38CEB161EB59"
Last-Modified: Thu, 15 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3285
Expires: Thu, 15 Sep 2022 16:42:27 GMT
Date: Thu, 15 Sep 2022 15:47:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0b4eed58b61d5b83ee76acc95859d7bf
e7b7cfeaa2c704cd6092846cbec314689d0504b3
f99e45e7102d04339cd5c11123d84714b27621e287633a4c18fa38ceb161eb59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F99E45E7102D04339CD5C11123D84714B27621E287633A4C18FA38CEB161EB59"
Last-Modified: Thu, 15 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3285
Expires: Thu, 15 Sep 2022 16:42:27 GMT
Date: Thu, 15 Sep 2022 15:47:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1633672fad0b564108cf81ad711dc881
d37ad0f40bc1f3f0022467dd0af2478980bd858a
cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:36:39 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
content-type: image/jpeg
age: 61863
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0b4eed58b61d5b83ee76acc95859d7bf
e7b7cfeaa2c704cd6092846cbec314689d0504b3
f99e45e7102d04339cd5c11123d84714b27621e287633a4c18fa38ceb161eb59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F99E45E7102D04339CD5C11123D84714B27621E287633A4C18FA38CEB161EB59"
Last-Modified: Thu, 15 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3285
Expires: Thu, 15 Sep 2022 16:42:27 GMT
Date: Thu, 15 Sep 2022 15:47:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef9865421a37eae9a4df04083d27485
c7cf1f6a259cece60a34261ec83ee00736e1d72b
723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MtgQUzYMa3mT0lxPhQ5ZCp9XVVyBH8T0dlx_0wSLMZlaFEiCikTXMw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:51 GMT
age: 62511
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f50c34bc30a732593e8fe465055a44ff
af100925cba1be716fd2200715d6136bd7f0c5bc
703049736ccc8815945d69634059c4cd39533417e0969107d460c36a6787c761
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5078
x-amzn-requestid: b6177371-a8ba-4541-a48d-21bd806e866e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erUHT-IAMFWKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab15-157ed5b700e0aad5481f5c0f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MYJf90B8rX8_nPUl4stpbZcQeQDaZ2Hgyu6GmsfdqUh-0Nx5OJJThw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:54 GMT
age: 69948
etag: "af100925cba1be716fd2200715d6136bd7f0c5bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e5f57ba37fac4e6047a9a321a8ec084
f6b742549ea35a4b1345cffb937a8bbcceee08ef
f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:45:05 GMT
age: 64957
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a6939786c9343412c9af87efd3f44e0
14131148fda4e8d85b582fd20e76bcc814341bf1
8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8447
x-amzn-requestid: 3237c2fa-bc17-4b8d-8afd-bacfaa90ca71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FypF7KIAMFd7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63145010-7052273b184685c83569c712;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wzi_WnjJW5XjIfj8kyVL4LcQEjcuw1_zwrDiJegEZ2r8GOZcQahPEw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:45 GMT
age: 64857
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZVnPAYUOBCRUYD3wEx79lIMjBJCKyVB9CmnTqMJIaFPbQGPoHwB73w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:37 GMT
age: 69965
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
23.32.89.171200 OK 17 kB URL HTTP/2 secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
IP 23.32.89.171:0
File type Unicode text, UTF-8 text, with very long lines (35324), with NEL line terminators
Hash fdc3fc20967173437b68cab77070cc29
6da78da23d72330c9ff802100231074d920f07ca
d5b35c8bc6825cd531cb4088b947e269e34ff1d8d219c1466b5d1a6b3f1fc2aa
GET /js/pubcid/latest/pubcid.min.js HTTP/1.1
Host: secure.cdn.fastclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Tue, 01 Jun 2021 17:06:57 GMT
etag: "d398-5c3b75e9ebb41-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17087
content-type: application/javascript
cache-control: max-age=900
expires: Thu, 15 Sep 2022 16:02:42 GMT
date: Thu, 15 Sep 2022 15:47:42 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b02052d3a419c5c7d3bfdea8b7ec6c0f
d5adb9da902c525b9e82c0e8f346147f1451a08f
9bd3aadb705661d550a515fa0a07e4045feae38f59a43e4570443c9981fc1693
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD3AADB705661D550A515FA0A07E4045FEAE38F59A43E4570443C9981FC1693"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3173
Expires: Thu, 15 Sep 2022 16:40:35 GMT
Date: Thu, 15 Sep 2022 15:47:42 GMT
Connection: keep-alive
lb.eu-1-id5-sync.com/lb/v1
162.19.138.119200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 278b17a6f894edadd3e30ac5031744ee
634a516f9bcc88ab7487b5d60c6a794b1342a1a9
eb1cff687b8d8390704eac2f322e9e2cea19d9eb99dfd81383dfa995037becda
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.softschools.com
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 15 Sep 2022 15:47:41 GMT
cds.connatix.com/p/182743/player.css
151.101.86.137200 OK 9.3 kB URL HTTP/2 cds.connatix.com/p/182743/player.css
IP 151.101.86.137:0
File type ASCII text, with very long lines (61119), with no line terminators
Hash b8a60d406710f20ee4d33e521f144886
e26fbbe89ceca84bb857a3723045f5284ff695ee
fc1982eb3aa3c9df31a12a0f4ae5d80cd2cfdf7375b41a6245445b58ae831f90
GET /p/182743/player.css HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 12:10:57 GMT
etag: "5cb34d3c2314ba1bafd1901328365082"
content-type: text/css
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
age: 12746
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 9269
X-Firefox-Spdy: h2
htlb.casalemedia.com/cygnus?s=667420&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22130aba7be0a5fcf8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.softschools.com%2F%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.softschools.com%2F%22%2C%22keywords%22%3A%22FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A3%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A3%2C%22ren%22%3Afalse%2C%22version%22%3A%226.22.0%22%2C%22userIds%22%3A%5B%5D%2C%22fpd%22%3Atrue%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22147fe4c6544e0568%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22667420%22%2C%22sid%22%3A%22728x90%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%7D%7D%2C%7B%22id%22%3A%22158546c3888101f8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22667415%22%2C%22sid%22%3A%22300x250%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%7D%7D%2C%7B%22id%22%3A%2216d078d83ea920a8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22667416%22%2C%22sid%22%3A%22300x250%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22admetricspro.com%22%2C%22sid%22%3A%22617%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D
104.18.19.126200 OK 38 B URL HTTP/2 htlb.casalemedia.com/cygnus?s=667420&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22130aba7be0a5fcf8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.softschools.com%2F%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.softschools.com%2F%22%2C%22keywords%22%3A%22FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A3%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A3%2C%22ren%22%3Afalse%2C%22version%22%3A%226.22.0%22%2C%22userIds%22%3A%5B%5D%2C%22fpd%22%3Atrue%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22147fe4c6544e0568%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22667420%22%2C%22sid%22%3A%22728x90%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%7D%7D%2C%7B%22id%22%3A%22158546c3888101f8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22667415%22%2C%22sid%22%3A%22300x250%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%7D%7D%2C%7B%22id%22%3A%2216d078d83ea920a8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22667416%22%2C%22sid%22%3A%22300x250%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22admetricspro.com%22%2C%22sid%22%3A%22617%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D
IP 104.18.19.126:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cc9ee2e0874362604dc26c56bd19e4c7
ac17a84beed7d8f3395cbdd4e6dd169756e75f80
bd2a87ab0db44009eaa4687b991ad3efa2765926c97c2558ee4c7919642949b3
GET /cygnus?s=667420&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22130aba7be0a5fcf8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.softschools.com%2F%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.softschools.com%2F%22%2C%22keywords%22%3A%22FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A3%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A3%2C%22ren%22%3Afalse%2C%22version%22%3A%226.22.0%22%2C%22userIds%22%3A%5B%5D%2C%22fpd%22%3Atrue%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22147fe4c6544e0568%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22667420%22%2C%22sid%22%3A%22728x90%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%7D%7D%2C%7B%22id%22%3A%22158546c3888101f8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22667415%22%2C%22sid%22%3A%22300x250%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%7D%7D%2C%7B%22id%22%3A%2216d078d83ea920a8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22667416%22%2C%22sid%22%3A%22300x250%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%2C%22gpid%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22admetricspro.com%22%2C%22sid%22%3A%22617%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22regs%22%3A%7B%22ext%22%3A%7B%22gdpr%22%3A0%7D%7D%2C%22user%22%3A%7B%22ext%22%3A%7B%22consent%22%3A%22%22%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: application/json
content-length: 38
cf-ray: 74b2809ccfb10afa-OSL
access-control-allow-origin: https://www.softschools.com
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FFgXdCeWa3ByyUAIhN8p3ke%2BTveR%2F78UchzdwlxBsWDOu0W5Un7TtfDJzEYRM4IzAvJJnS2hcriyXaXGiXfCF6JBB8UnjxqIWVtv7h0VApFomLhnNBS3ceDZRoJYAEQ9dfvIPUAA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
104.26.9.169200 OK 772 B URL HTTP/2 script.4dex.io/localstore.js
IP 104.26.9.169:0
File type ASCII text, with very long lines (482)
Hash 61f9f428a980f97be65b5aa4053ceaca
5579c1a31347858cc785ae0e0b2b5483d5890259
d074182290d6ee71e8becd6f938c00238cf3bcc2df5fe7496e028c67e736dd9d
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: application/javascript
x-amz-id-2: txaf6e2c1c2f9f41df87375-00631b6357
last-modified: Fri, 09 Sep 2022 16:00:45 GMT
etag: W/"922cffdd75f7192f75231d92684885aa"
cache-control: public, max-age=1800
x-amz-version-id: 1662739245697142
x-amz-request-id: txaf6e2c1c2f9f41df87375-00631b6357
cf-cache-status: HIT
age: 517575
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SBTJtRgZk%2Fd97opLMRBUVklM%2BB3Sc291AE7z5q2WdIAJjyn%2FXV4oQT1YOcRUR7y47q4IetvfA7ohwZq%2FRc7Oo1YE%2BZAqOvqAJJqs4WBCHdfIUxdt8CjlnTksSwA3AkL0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b2809caaf9b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 37811e9a96dfe3b29103af5ed614ec2e
53d9e242a420177bfc7cb202cf4e093121a2a5f1
2daac21bd9f882a8d6ab58d49ad1a5aa36cc7261931a8dd0ffbe43180155667a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 01:55:53 GMT
Expires: Wed, 21 Sep 2022 01:55:52 GMT
Etag: "53d9e242a420177bfc7cb202cf4e093121a2a5f1"
Cache-Control: max-age=467889,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74b2809d8d750b65-OSL
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1606
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
cache-control: max-age=0, private, must-revalidate
date: Thu, 15 Sep 2022 15:47:41 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6ce4f13fdb952851182aa37a39f126d5
b2de27c47232c1e369b3a2f27e271ec6ddf08bee
97f1c64587bda43d49602f58e37b521045c3eade20704c47941c85b15c91bdb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1517
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 15:22:25 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6ce4f13fdb952851182aa37a39f126d5
b2de27c47232c1e369b3a2f27e271ec6ddf08bee
97f1c64587bda43d49602f58e37b521045c3eade20704c47941c85b15c91bdb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1517
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 15:22:25 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
tag.1rx.io/rmp/233759/0/mvo?z=1r&hbv=6.22,2.1
213.19.147.42204 No Content 0 B URL HTTP/2 tag.1rx.io/rmp/233759/0/mvo?z=1r&hbv=6.22,2.1
IP 213.19.147.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rmp/233759/0/mvo?z=1r&hbv=6.22,2.1 HTTP/1.1
Host: tag.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 940
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:42 GMT
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2a708e8ad87852a3275397766b4f910a
10921226dd11703ba1d059163d3bf753012c4681
b3a8e126acdfb501f920f2ff52f2f81f5c630afc49fbc059df250b959fe92d10
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3447
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:50:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 13ea6cc5da379a3449efbb23082e144e
9faa09038dd5303c44ed80f713394987e356ddda
b5874cd672d6d913132d8a58c4c64203f6705ce5df11c0c70be139acf5366193
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 15:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 14 Sep 2022 22:19:00 GMT
Expires: Thu, 15 Sep 2022 22:19:00 GMT
ETag: "9faa09038dd5303c44ed80f713394987e356ddda"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash c66cb5b984a9bcd07a7921bb18e388a3
002fc5be7b8d9b8d9c56061287c96612c74a206f
6c5f55024e1a6aca3264c37bcdd5cdb701a8c151017191b82b448d9e1c9ae583
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 15:36:00 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q_u4bfMyyz0Rf-PvgZJUdl713vKD0fMoqTANXD1YC_ADtKWUoJbOgA==
Age: 702
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 9fdf65d730be726184adf2dcd301f3e5
c8b8d3ad150f89ba2b28c43cdd02dbc199f031df
491de0aec170dfa19520111bf0631a14ebddd84b6da07b8df7874759d8ece00e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 19 Sep 2022 13:11:28 GMT
ETag: "c8b8d3ad150f89ba2b28c43cdd02dbc199f031df"
Last-Modified: Thu, 15 Sep 2022 13:11:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1334
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b2809e5c9fb4e8-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 69da4fbe2f7fb9d4b316c34aa6e2c94d
9cc87f86843545afefe43e09ee036d51ab63ffc0
0b3b35a1a75ef1b36080f32017fc058e3d4dbce28ed1f0e23a8adc572eb23601
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:16:54 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -_0W23VDeohE15XygNtkKAV_ILuZb0TWXHmLVttS4jguON8tUYiP-Q==
Age: 5448
teachingaids-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.softschools.com%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=866d63ec-f738-42a2-a916-5d13e0abdb25%2Cb4837e16-490f-4139-ba58-5f6d4d95a47e%2C8dd99f0b-c933-4cf2-b905-769ff8b00e26&nocache=1663256846958&gdpr=0&x_gdpr_f=1&schain=1.0%2C1!admetricspro.com%2C617%2C1%2C%2C%2C&aus=728x90%7C300x250%7C300x250&divids=div-gpt-ad-1628911412164-0%2Cdiv-gpt-ad-1628911477455-0%2Cdiv-gpt-ad-1628911535838-0&aucs=%252F22404337467%252C58869406%252Fsoftschool-728x90-ATF%2C%252F22404337467%252C58869406%252Fsoftschools-300x250-ATF%2C%252F22404337467%252C58869406%252Fsoftschools-300x250-ATF2&auid=545665430%2C545665466%2C545665489
35.244.159.8200 OK 165 B URL HTTP/2 teachingaids-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.softschools.com%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=866d63ec-f738-42a2-a916-5d13e0abdb25%2Cb4837e16-490f-4139-ba58-5f6d4d95a47e%2C8dd99f0b-c933-4cf2-b905-769ff8b00e26&nocache=1663256846958&gdpr=0&x_gdpr_f=1&schain=1.0%2C1!admetricspro.com%2C617%2C1%2C%2C%2C&aus=728x90%7C300x250%7C300x250&divids=div-gpt-ad-1628911412164-0%2Cdiv-gpt-ad-1628911477455-0%2Cdiv-gpt-ad-1628911535838-0&aucs=%252F22404337467%252C58869406%252Fsoftschool-728x90-ATF%2C%252F22404337467%252C58869406%252Fsoftschools-300x250-ATF%2C%252F22404337467%252C58869406%252Fsoftschools-300x250-ATF2&auid=545665430%2C545665466%2C545665489
IP 35.244.159.8:0
File type JSON data\012- , ASCII text
Hash eff441fe8252e43897097a7290253118
3afd51704b8b5f55069f2971ca3cd4e4c32a3bb5
4a6a325505c38edeef8cbd3a9bb192735fba3e06cb4ac770cc8d9cb1d94dee02
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.softschools.com%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=866d63ec-f738-42a2-a916-5d13e0abdb25%2Cb4837e16-490f-4139-ba58-5f6d4d95a47e%2C8dd99f0b-c933-4cf2-b905-769ff8b00e26&nocache=1663256846958&gdpr=0&x_gdpr_f=1&schain=1.0%2C1!admetricspro.com%2C617%2C1%2C%2C%2C&aus=728x90%7C300x250%7C300x250&divids=div-gpt-ad-1628911412164-0%2Cdiv-gpt-ad-1628911477455-0%2Cdiv-gpt-ad-1628911535838-0&aucs=%252F22404337467%252C58869406%252Fsoftschool-728x90-ATF%2C%252F22404337467%252C58869406%252Fsoftschools-300x250-ATF%2C%252F22404337467%252C58869406%252Fsoftschools-300x250-ATF2&auid=545665430%2C545665466%2C545665489 HTTP/1.1
Host: teachingaids-d.openx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
set-cookie: i=b7a339ef-2733-04e7-32e9-2808593d7613|1663256862; Version=1; Expires=Fri, 15-Sep-2023 15:47:42 GMT; Max-Age=31536000; Domain=.openx.net; Path=/
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: application/json
content-length: 165
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f392891364085cfda5bf32943cb7ce6
b6a8daa68a5520f4fb5849afb60b53638751cca1
8d32c6e4a79694f967188f1e9e59502030464a5c30fd3a5fa6ee1bee34070fd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5152
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:21:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030474&size_id=15&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF&tk_flint=pbjs_lite_v6.22.0&x_source.tid=b4837e16-490f-4139-ba58-5f6d4d95a47e&l_pb_bid_id=2757b847eaa89c9&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF&slots=1&rand=0.1279179157221637
213.19.162.51200 OK 345 B URL HTTP/1.1 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030474&size_id=15&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF&tk_flint=pbjs_lite_v6.22.0&x_source.tid=b4837e16-490f-4139-ba58-5f6d4d95a47e&l_pb_bid_id=2757b847eaa89c9&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF&slots=1&rand=0.1279179157221637
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (345), with no line terminators
Hash 14012f86737b5a216a9c55243e3eae78
121db8fb28b881f97d418797566604a7c3d835cd
57ffed68b1eee458af2ac0d8af3eb89cf9f9eb66fc97f56d6f8acf0391fdae8d
GET /a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030474&size_id=15&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF&tk_flint=pbjs_lite_v6.22.0&x_source.tid=b4837e16-490f-4139-ba58-5f6d4d95a47e&l_pb_bid_id=2757b847eaa89c9&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF&slots=1&rand=0.1279179157221637 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Thu, 15 Sep 2022 15:47:42 GMT
Content-Type: application/json
Content-Length: 345
Connection: keep-alive
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.softschools.com
Pragma: no-cache
Vary: Accept-Encoding
Set-Cookie: khaos=L8386WN6-4-32QQ; Domain=.rubiconproject.com; Path=/; Expires=Fri, 15-Sep-2023 15:47:42 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrRy7Mj/ABvJe9DtVM30fCgGQ5ja3r4skRfcc/06pjBE+A6Of/p0JGp1Wd8K1LqGGPggJ3pD4CYm4yUFjhNtuts0A+VO7RH1E0=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 15-Sep-2023 15:47:42 GMT; Max-Age=31536000; SameSite=None; Secure
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
capi.connatix.com/core/pls?v=182743
151.101.86.137200 OK 5.5 kB URL HTTP/2 capi.connatix.com/core/pls?v=182743
IP 151.101.86.137:0
Hash f2622a2293836b9d1e571cac15407f27
d87445feb0df588c74aebed20d3a8843d9078c16
c58351564538e65473b8e57475df22544e81acca041bb38b5e038d1a8156ee39
POST /core/pls?v=182743 HTTP/1.1
Host: capi.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 99
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
content-encoding: gzip
content-type: application/x-protobuf
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
vary: Accept-Encoding
access-control-max-age: 86400
content-length: 5490
X-Firefox-Spdy: h2
web.hb.ad.cpe.dotomi.com/cvx/client/hb/ortb/25
64.158.223.146204 No Content 0 B URL HTTP/2 web.hb.ad.cpe.dotomi.com/cvx/client/hb/ortb/25
IP 64.158.223.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cvx/client/hb/ortb/25 HTTP/1.1
Host: web.hb.ad.cpe.dotomi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1874
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 15 Sep 2022 15:47:42 GMT
cache-control: no-cache
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
tlx.3lift.com/header/auction?lib=prebid&v=6.22.0&referrer=https%3A%2F%2Fwww.softschools.com%2F&tmax=1200&gdpr=false
18.158.177.133200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=6.22.0&referrer=https%3A%2F%2Fwww.softschools.com%2F&tmax=1200&gdpr=false
IP 18.158.177.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=6.22.0&referrer=https%3A%2F%2Fwww.softschools.com%2F&tmax=1200&gdpr=false HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1433
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-ua-arch,sec-ch-ua,sec-ch-ua-bitness,sec-ch-prefers-color-scheme,sec-ch-width,sec-ch-ect,user-agent,sec-ch-downlink,sec-ch-ua-mobile,sec-ch-save-data,sec-ch-device-memory,sec-ch-dpr,sec-ch-ua-full-version,sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-viewport-width,sec-ch-ua-platform,sec-ch-viewport-height,sec-ch-rtt
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 01197f5da71f288587b00742e4197f4e
87b52a6986f0ed458464f8d9c649d6873740242f
2a718752d8b28bf5b138d836bedc2942e5b16d685ad15e46648aae53f4026fd4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A718752D8B28BF5B138D836BEDC2942E5B16D685AD15E46648AAE53F4026FD4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3459
Expires: Thu, 15 Sep 2022 16:45:21 GMT
Date: Thu, 15 Sep 2022 15:47:42 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f58e51840672fbb356602d8e31499eaa
e0e535dfc093237cf2821c8747cf0afc7b1df264
1e91c0fbb32e0b4115b0b3b5ec387ba94ff27b8b19ed0996d8dbdbd6f5717887
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:15:11 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eS-DszGQuGpw949fY5mVf_Dj50fM63Xq8o006U1TBcMQf5N61IMvHQ==
Age: 5551
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030476&size_id=15&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2&tk_flint=pbjs_lite_v6.22.0&x_source.tid=8dd99f0b-c933-4cf2-b905-769ff8b00e26&l_pb_bid_id=287a3d59afae4f98&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2&slots=1&rand=0.26648640546821445
213.19.162.51200 OK 346 B URL HTTP/1.1 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030476&size_id=15&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2&tk_flint=pbjs_lite_v6.22.0&x_source.tid=8dd99f0b-c933-4cf2-b905-769ff8b00e26&l_pb_bid_id=287a3d59afae4f98&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2&slots=1&rand=0.26648640546821445
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (346), with no line terminators
Hash 5aed8478c929100b18c76ec9688f58de
d6b623788a5a4a8f39db884a4e47adf68e5537b1
70b7a979da6be625b49385de3dc51d75557e7dfcd74758181ebb0e93945dea24
GET /a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030476&size_id=15&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2&tk_flint=pbjs_lite_v6.22.0&x_source.tid=8dd99f0b-c933-4cf2-b905-769ff8b00e26&l_pb_bid_id=287a3d59afae4f98&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2&slots=1&rand=0.26648640546821445 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Thu, 15 Sep 2022 15:47:42 GMT
Content-Type: application/json
Content-Length: 346
Connection: keep-alive
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.softschools.com
Pragma: no-cache
Vary: Accept-Encoding
Set-Cookie: khaos=L8386WN5-1S-46KX; Domain=.rubiconproject.com; Path=/; Expires=Fri, 15-Sep-2023 15:47:42 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpsjZDsCr09sO9DtVM30fCgGQ5ja3r4skRfcc/06pjBE+A6Of/p0JGp1Wd8K1LqGGPggJ3pD4CYm4yUFjhNtuts0A+VO7RH1E0=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 15-Sep-2023 15:47:42 GMT; Max-Age=31536000; SameSite=None; Secure
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2a708e8ad87852a3275397766b4f910a
10921226dd11703ba1d059163d3bf753012c4681
b3a8e126acdfb501f920f2ff52f2f81f5c630afc49fbc059df250b959fe92d10
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3447
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:50:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f58e51840672fbb356602d8e31499eaa
e0e535dfc093237cf2821c8747cf0afc7b1df264
1e91c0fbb32e0b4115b0b3b5ec387ba94ff27b8b19ed0996d8dbdbd6f5717887
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:19:43 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z08eg_NaqE1dihE74SoPBOBE0XuSHOjf-awerTt5wDu2K0Vd7-WdJA==
Age: 5279
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030474&size_id=2&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF&tk_flint=pbjs_lite_v6.22.0&x_source.tid=866d63ec-f738-42a2-a916-5d13e0abdb25&l_pb_bid_id=26d5d489e7bc3428&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF&slots=1&rand=0.5844495010143885
213.19.162.51200 OK 342 B URL HTTP/1.1 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030474&size_id=2&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF&tk_flint=pbjs_lite_v6.22.0&x_source.tid=866d63ec-f738-42a2-a916-5d13e0abdb25&l_pb_bid_id=26d5d489e7bc3428&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF&slots=1&rand=0.5844495010143885
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (342), with no line terminators
Hash 1ec07c0f9d51c17082bdbcf500498f13
ece2e8c6ef8da55aa7b78a88581a3ce9802fa587
83043136e89d38a3e87115edab039262fed0efe23f08e33c5144e214820e4b5e
GET /a/api/fastlane.json?account_id=19254&site_id=371760&zone_id=2030474&size_id=2&p_pos=atf&gdpr=0&rp_schain=1.0,1!admetricspro.com,617,1,,,&rf=https%3A%2F%2Fwww.softschools.com%2F&kw=FreeMathworksheets%2Cprintable%2Cscience%2Csocialstudies%2Cphonics%2Cmathworksheets%2Cgrammar%2Ccounting%2Crounding%2Caddition%2Csubtraction%2Cmultiplication%2Cdivision%2Calgebra%2CRomanNumarals%2Conlinepractice%2CMathonlinepractice%2CMathworksheetsgenerator%2Cwork%2Csheets%2Cfree%2Ckids%2Cmath%2Cfractions%2Ctellingtime%2C1stgrade%2Csecondgrade%2C3rdgrade%2C4thgrade%2C5thgrade&tg_i.ref=https%3A%2F%2Fwww.softschools.com%2F&tg_i.pbadslot=%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF&tk_flint=pbjs_lite_v6.22.0&x_source.tid=866d63ec-f738-42a2-a916-5d13e0abdb25&l_pb_bid_id=26d5d489e7bc3428&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF&slots=1&rand=0.5844495010143885 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Thu, 15 Sep 2022 15:47:42 GMT
Content-Type: application/json
Content-Length: 342
Connection: keep-alive
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.softschools.com
Pragma: no-cache
Vary: Accept-Encoding
Set-Cookie: khaos=L8386WNJ-L-69PZ; Domain=.rubiconproject.com; Path=/; Expires=Fri, 15-Sep-2023 15:47:42 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|SDziDG3X/Ej4mDCMnR8neu9DtVM30fCgGQ5ja3r4skRfcc/06pjBE+A6Of/p0JGp1Wd8K1LqGGPggJ3pD4CYm4yUFjhNtuts0A+VO7RH1E0=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 15-Sep-2023 15:47:42 GMT; Max-Age=31536000; SameSite=None; Secure
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2223
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
cache-control: no-cache, no-store, must-revalidate
date: Thu, 15 Sep 2022 15:47:41 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f58e51840672fbb356602d8e31499eaa
e0e535dfc093237cf2821c8747cf0afc7b1df264
1e91c0fbb32e0b4115b0b3b5ec387ba94ff27b8b19ed0996d8dbdbd6f5717887
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:19:46 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QG4PQBguH76I1BWT_MQgTw1Lu0DpdrAVEMMN133MLyxoJLFrJR-pkw==
Age: 5276
ap.lijit.com/rtb/bid?src=prebid_prebid_6.22.0
72.251.249.9200 OK 99 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_6.22.0
IP 72.251.249.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e35d24e0931ca53198bbed7da83742a6
fc51ad82c6a699a04e5afd2654deea8249d30224
40d29ce88edeca71c1cfccfd9047e390ab102cb888db08fae580a8d4e002536a
POST /rtb/bid?src=prebid_prebid_6.22.0 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1728
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:42 GMT
Set-Cookie: ljtrtb=eJyrrgUAAXUA%2BQ%3D%3D;Version=1;Domain=.lijit.com;Path=/;Max-Age=31536000;Secure; SameSite=None;
ljt_reader=FUizrBZHe0BRqEcyT76Mn52Q;Version=1;Domain=.lijit.com;Path=/;Max-Age=31536000;Secure; SameSite=None;
Content-Type: application/json
Access-Control-Allow-Origin: https://www.softschools.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Content-Length: 99
X-Sovrn-Pod: ad_ap3ams1
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.126.109.121204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.126.109.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1106
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:42 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.126.109.121204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.126.109.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1108
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:42 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.126.109.121204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.126.109.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1104
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:42 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f49b95be839e69ac21b8f6c73759ae75
7295b16587b477a3ca64e922a47b4b63a65ecab8
2cf4fe2a08098d1124be446e63181a20d1f618f07d6102a45f1440b604028745
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:11:21 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: b3grYgk609euKK6Nmp2ngOXJzQuI4mabK0HerSA1PhLlqAikLOuhcg==
Age: 5781
lit.connatix.com/08d79ac9-d151-59b7-8ffc-1666f862d246/blockedDomains_22.bin
151.101.86.137200 OK 1.6 kB URL HTTP/2 lit.connatix.com/08d79ac9-d151-59b7-8ffc-1666f862d246/blockedDomains_22.bin
IP 151.101.86.137:0
Hash c8a8f689d5e89cd2af44022cdd037f5c
5e313b6a848a2f3545967ae9e1de86a3ab74b01f
686e32255b2fc9c7ea32544b13c4b9504a71346d0b7eafcf6d8eb7c053cae3ce
GET /08d79ac9-d151-59b7-8ffc-1666f862d246/blockedDomains_22.bin HTTP/1.1
Host: lit.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 13 Sep 2022 16:46:38 GMT
etag: "dce14e589ad0e46e903fdcd192de40f5"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
age: 169121
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 1602
X-Firefox-Spdy: h2
ins.connatix.com/e81438b87a8ffd2f78c569bef361ad35/insights.bin
151.101.86.137200 OK 702 B URL HTTP/2 ins.connatix.com/e81438b87a8ffd2f78c569bef361ad35/insights.bin
IP 151.101.86.137:0
Hash edc674a5fc74d96a67d74c23733d6c9f
115716ec9595c8f8621735cb3006f030363a1208
316b903f3b1382eb886abaaaf0d60c929772d3d3ca22d2e3eaf6faa1292152e0
GET /e81438b87a8ffd2f78c569bef361ad35/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 23 Mar 2022 19:42:52 GMT
etag: "6e0794b89091ab635c0005c0722ec443"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
age: 1093595
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 702
X-Firefox-Spdy: h2
e.serverbid.com/api/v2
159.89.246.130200 OK 42 B IP 159.89.246.130:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 6b3ea90ae05ba6e3c5cb69e41bd4f3b0
e30d26c37cfb45eb346edb53f9322a672fdb2368
d1f523b2fc3183afb2614ae37c78a70c1a51374882df736654ba9021eee82960
POST /api/v2 HTTP/1.1
Host: e.serverbid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 754
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 10080
content-type: application/json
content-length: 42
content-encoding: gzip
set-cookie: CONSUMABLEID=6977e1ee89d64345b7e1ee89d6034552; Max-Age=1296000; Expires=Fri, 30 Sep 2022 15:47:42 GMT; Path=/; Domain=.serverbid.com; Secure; SameSite=None
date: Thu, 15 Sep 2022 15:47:42 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
185.89.211.116200 OK 373 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.211.116:0
File type JSON data\012- , ASCII text, with very long lines (373), with no line terminators
Hash e4720a06948cc3ad0d7dfcd674b339f7
5e8e844c879acd12270faf460c6b1a386300c863
488b727334a48da95606a225f5955aacc819d53efb80518c124d6b4e391e62f2
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1219
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:42 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 373
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.softschools.com
AN-X-Request-Uuid: 08900977-ff86-4165-b48c-d33bdad047b5
Set-Cookie: icu=ChgIw6RzEAoYASABKAEwnpKNmQY4AUABSAEQnpKNmQYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:42 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=485965126543877928; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:42 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
vid.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/3_media.bin
151.101.86.137200 OK 255 B URL HTTP/2 vid.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/3_media.bin
IP 151.101.86.137:0
Hash 1282de5d3686b302024854452b9ee145
c08aed9b9f45eabd44f6d2be459c896a5ccca650
060d1b4573677d4cf567aa5e55ae48bf37af4e12ed6325ac321c02cfd1cd3210
GET /pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/3_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Sep 2021 19:55:31 GMT
etag: "b2e6283f8951c3aff60342cadc974bc9"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
age: 85559
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 255
X-Firefox-Spdy: h2
hb.yellowblue.io/hb-multi
54.147.73.198200 OK 105 B URL HTTP/2 hb.yellowblue.io/hb-multi
IP 54.147.73.198:0
File type JSON data\012- , ASCII text
Hash b4a6e25b0212c14e31e3d1e2e0648936
3ecc2345af1fe8ea7232321d813160bafc724bf4
4652a1aa27c2853f9ee88d61cb7c90c41d44005992115e7b9dba8d5eae355e85
POST /hb-multi HTTP/1.1
Host: hb.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1800
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: application/json
content-length: 105
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://www.softschools.com
x-reason: gdpr is not applied
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d3b52f2a6f00601cc8e611af6c660786
181ae6e29a0021eb8b2aa19977bbae7ad8752ad3
6dc9e29fe6b857dd4b30485393084800b1abc9c1b5e8a117e90dd6ab678bf91e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DC9E29FE6B857DD4B30485393084800B1ABC9C1B5E8A117E90DD6AB678BF91E"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8286
Expires: Thu, 15 Sep 2022 18:05:48 GMT
Date: Thu, 15 Sep 2022 15:47:42 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 129 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2831)
Size 129 kB (128594 bytes)
Hash 50d626941b4ee04ffd8db40517d8efb0
b199efdcee797a379c48301caeeb8cd5754d1a90
602eefbadac2e37076b6daa8b56f24befe2b33d4b97c799695171aafd43fc57a
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 128594
date: Thu, 15 Sep 2022 15:47:42 GMT
expires: Thu, 15 Sep 2022 15:47:42 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cds.connatix.com/p/182743/elements.ui.a00f6f51fe97ad142aec.js
151.101.86.137200 OK 14 kB URL HTTP/2 cds.connatix.com/p/182743/elements.ui.a00f6f51fe97ad142aec.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 4d78cb6268f4528216d4a50aef0718ac
98d2e2db8f5fea49720c82ddeb787c2b32aa028e
f1dd9a2b8a467a0b821abc81b19db2f56a46b795cb41354fe46584c2f062fc2f
GET /p/182743/elements.ui.a00f6f51fe97ad142aec.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 12:10:57 GMT
etag: "ae7b6d9d9fc5c7b5460a545ab30bffe5"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
age: 12745
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 13586
X-Firefox-Spdy: h2
c.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fwww.softschools.com%2F&pid=T7Qog2qhcS5uB&cb=0&ws=1280x939&v=22.8.252032&t=1200&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1628911412164-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1628911477455-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1628911535838-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%7D%5D&pubid=cb8cfc89-e83e-44aa-a3a2-ff78eda781ef&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D
143.204.46.73200 OK 220 B URL HTTP/2 c.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fwww.softschools.com%2F&pid=T7Qog2qhcS5uB&cb=0&ws=1280x939&v=22.8.252032&t=1200&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1628911412164-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1628911477455-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1628911535838-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%7D%5D&pubid=cb8cfc89-e83e-44aa-a3a2-ff78eda781ef&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D
IP 143.204.46.73:0
File type ASCII text, with no line terminators
Hash f0b998a729b0105a5965e8edaa9393c1
f1d79cda048ad98c935ccec50f0405403964cd48
08207fcce7f67a5a6419edcf004b0b4d2f7bdb00a37318da212533ab7dec2399
GET /e/dtb/bid?src=600&u=https%3A%2F%2Fwww.softschools.com%2F&pid=T7Qog2qhcS5uB&cb=0&ws=1280x939&v=22.8.252032&t=1200&slots=%5B%7B%22sd%22%3A%22div-gpt-ad-1628911412164-0%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschool-728x90-ATF%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1628911477455-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF%22%7D%2C%7B%22sd%22%3A%22div-gpt-ad-1628911535838-0%22%2C%22s%22%3A%5B%22300x250%22%5D%2C%22sn%22%3A%22%2F22404337467%2C58869406%2Fsoftschools-300x250-ATF2%22%7D%5D&pubid=cb8cfc89-e83e-44aa-a3a2-ff78eda781ef&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 220
server: Server
date: Thu, 15 Sep 2022 15:47:42 GMT
x-amz-rid: WBXKBHKP2YD3VY3KYJZY
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6kUxHImxFu2s4voTizW8PXJ7kK-63V9ZrX9U0kX96LfEIIBVMz4SuQ==
X-Firefox-Spdy: h2
img.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/1.png
151.101.86.137200 OK 6.5 kB URL HTTP/2 img.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/1.png
IP 151.101.86.137:0
File type PNG image data, 288 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 1612a13ef1a38ccc605c2a1dba909b3f
adc49409ea9a898b68bc11c92c905bf61b9effd7
00f5e02126d72f2488f660891e1cea7e3371f2cb2ceeeb50c4d07fac6c86cb60
GET /pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/1.png HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "DumiNnuNu90/b0QD3JCDdge4FCERvGoUsGg502wu/VY"
fastly-io-info: ifsz=8114 idim=288x42 ifmt=png ofsz=6487 odim=288x42 ofmt=png
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
age: 1313590
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 6487
X-Firefox-Spdy: h2
cds.connatix.com/p/182743/hls.29b1ff4c2227d65c148f.js
151.101.86.137200 OK 48 kB URL HTTP/2 cds.connatix.com/p/182743/hls.29b1ff4c2227d65c148f.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b2064e57b538d549f8d77b429898ab46
36126934caf18bc1922894ab2843dfea79f34618
2c856b602fc1bd4361a1ab7791ce867143f9fb4e35fe482ff23e42c9d202abd4
GET /p/182743/hls.29b1ff4c2227d65c148f.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 12:10:57 GMT
etag: "c3c3a7f8e8a161e4327f0feb8e2ec491"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:42 GMT
age: 12746
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 48325
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 3d5f92334b750ec050fa5d0ca20c51fb
876405a24b4fa1e7bc846151e9034f50ae62b6e5
21abb4f700576ce1c890a8e77c14544145f87badcce9929bf6f9875794ec86dd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 15 Sep 2022 14:49:54 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: d8SM2uqnMywR8Tm4SjRlvZrHgi4ZF4kWX6Muo6XjmU8e2FyI3oHENA==
Age: 3468
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6971ad04397ebe0a117d03ae5c1de8c5
5179eab2d14b4c8c52c00fd6bf2953fb98ad5b8f
97a64e5b9bf5e3e347b23e4bbf41aa0fe6ffd379d50b379770f5c7347e6bb248
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a8b2bb270d78a6dddeb5b7fa01bd896c
eee28c4dd10c090f100c6ed383392b67d9fb9200
5c929c1a5e85ed508916eda62cccedb3ef1a5f407468596fa2726c476e2a9340
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capi-tier-1-us-east-2.connatix.com/tr/sr?v=182743
18.189.153.196200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/sr?v=182743
IP 18.189.153.196:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/sr?v=182743 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 1463
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 15 Sep 2022 15:47:42 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
adservice.google.com/adsid/integrator.js?domain=www.softschools.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.softschools.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.softschools.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 15:47:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
142.250.74.2200 OK 13 kB URL HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 142.250.74.2:0
File type ASCII text, with very long lines (1977)
Hash 64bb7f59803ae6130d8f160e9b5caea8
e9f34d7bf416e6719b9a6da7e6d72804afdeecfd
dd71fb7acce37bb1b1c4a943d3e226ada9df7ab2b7ed93b9d0ed33c8d98c4f8d
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 12926
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 14:54:42 GMT
expires: Thu, 15 Sep 2022 15:54:42 GMT
cache-control: public, max-age=3600
age: 3181
last-modified: Tue, 19 Jul 2022 21:40:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.softschools.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.softschools.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.softschools.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 15:47:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c51675fd352c7db13261c905bfaa8342
85ac07e4592d413c55c204d4e52118be5bdd39cb
ffcbfefcb252a9ed446122906b75c29ca2aa64460ddbd912542d12bc68be9fd5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/1_th.jpg?crop=400:225,smart&width=400&height=225&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 6.4 kB URL HTTP/2 img.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/1_th.jpg?crop=400:225,smart&width=400&height=225&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x225, components 3\012- data
Hash 4b2cc2155fc02ef1f53af538e08d61ff
71e5fc62559ba92a2b493fd6dd272d9566ecb70d
3eb4e1be4b2087a5b76db756109bbb0fbb7aab04291faae6f294a2b1d5c0cbfc
GET /pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/1_th.jpg?crop=400:225,smart&width=400&height=225&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "TpCTmFG5nUwX7FOT5ramR7qhxwFAHUu9weQVg0vsFJE"
fastly-io-info: ifsz=70634 idim=2560x1440 ifmt=jpeg ofsz=6866 odim=400x225 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:43 GMT
age: 99929
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 6388
X-Firefox-Spdy: h2
cds.connatix.com/p/plugins/prebid6.20.0-6.js
151.101.86.137200 OK 126 kB URL HTTP/2 cds.connatix.com/p/plugins/prebid6.20.0-6.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (65423)
Size 126 kB (126154 bytes)
Hash 9e6a07a6fdd0cb53b47d6cb71d37cb3f
4d83b3373ebf6e23350eee25f0864520b5641196
7556a8585e60af3ab3d33fb61b2f31f5cf99bbfdb2ff1a5eec4e757b787c8d64
GET /p/plugins/prebid6.20.0-6.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 06 Sep 2022 12:45:55 GMT
etag: "9628a694ab2c4ed301bc6f55e1ba0eae"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:43 GMT
age: 788496
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 126154
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6971ad04397ebe0a117d03ae5c1de8c5
5179eab2d14b4c8c52c00fd6bf2953fb98ad5b8f
97a64e5b9bf5e3e347b23e4bbf41aa0fe6ffd379d50b379770f5c7347e6bb248
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-smaato_n-index_n-sharethrough_pm-db5_rbd_smrt_cnv_an-db5_sovrn_3lift
54.239.38.253302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-smaato_n-index_n-sharethrough_pm-db5_rbd_smrt_cnv_an-db5_sovrn_3lift
IP 54.239.38.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-smaato_n-index_n-sharethrough_pm-db5_rbd_smrt_cnv_an-db5_sovrn_3lift HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Thu, 15 Sep 2022 15:47:43 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: WZDCPRCZPDM5KH7VYXXD
Set-Cookie: ad-id=A-HwmbkIjkNcqCQHBfP_59k|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Apr-2023 15:47:43 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-smaato_n-index_n-sharethrough_pm-db5_rbd_smrt_cnv_an-db5_sovrn_3lift&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
s0.2mdn.net/instream/video/client.js
216.58.211.6200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 216.58.211.6:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Thu, 15 Sep 2022 15:47:43 GMT
expires: Thu, 15 Sep 2022 15:47:43 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d12d39743ed54a3481fb65b958823cb
5a07dc5fcf7ed8d3f11557afe94f9d5f0f0f9ffe
f38bb163e8ea070c7c1cc84d1ce17f185ab55dda6bf31a99d93cf8dd15cd16aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capi-tier-1-us-east-2.connatix.com/tr/ao?v=182743
18.189.153.196200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/ao?v=182743
IP 18.189.153.196:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/ao?v=182743 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 1481
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 15 Sep 2022 15:47:42 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-smaato_n-index_n-sharethrough_pm-db5_rbd_smrt_cnv_an-db5_sovrn_3lift&dcc=t
54.239.38.253200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-smaato_n-index_n-sharethrough_pm-db5_rbd_smrt_cnv_an-db5_sovrn_3lift&dcc=t
IP 54.239.38.253:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-smaato_n-index_n-sharethrough_pm-db5_rbd_smrt_cnv_an-db5_sovrn_3lift&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.softschools.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Thu, 15 Sep 2022 15:47:43 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: AHS15RN99JKFYMABCAQZ
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5cb573d3c9bcfd0aca93d5064638773c
8389db960285c5b7a5a3beaa026b0ece6b362d8a
618e5bc351dfee8d072d1357971e52a5891de7d89e8cfc57affc7ddc55082e8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vid.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/playlist.m3u8
151.101.86.137200 OK 3.1 kB URL HTTP/2 vid.connatix.com/pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/playlist.m3u8
IP 151.101.86.137:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /pid-2ce0c15f-ad41-4870-9a89-5441c1e2a8b9/60764267-557e-410f-85cb-f102d92ee134/b79eb93f-782e-46fd-8974-ff13997dfcad/playlist.m3u8 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Sep 2021 19:55:30 GMT
etag: "555aab791eaac4ba5ce5f5b879cbef64"
content-type: application/x-mpegURL
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:43 GMT
age: 95818
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 155
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/tr/ps?v=182743
18.189.153.196200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/ps?v=182743
IP 18.189.153.196:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/ps?v=182743 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 1432
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 15 Sep 2022 15:47:42 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 12bf16f54f35521707d8553f01f5ef77
d2352fdafb9ca1a0578f230832adf335770d44f1
151977d5788e540f46357f731c6846903682f2d0c9e2273f113eeca05c138912
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 15 Sep 2022 15:47:43 GMT
expires: Thu, 15 Sep 2022 15:47:43 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capi-tier-1-us-east-2.connatix.com/rtb/g?v=182743
18.189.153.196200 OK 672 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/rtb/g?v=182743
IP 18.189.153.196:0
Hash 799d1739c423004ac4c2fd91f5130df9
800c827c056f78f81e610b299b9816c34aaa10af
5c5ea35b1dc9e0bca7473c0401ef7c45359203a524300e0f402a913babbe4ffd
POST /rtb/g?v=182743 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 1320
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 15 Sep 2022 15:47:43 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 672
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ed97a4b82680caefc4ffdebf786e12fc
a638a68f346844709bac57a92bf3d2c28043165e
b81ed44963f5d8b54c62e7fe18db301d3c8eeaf8fbbfb099270562156e12fdc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 078c34b08281d43ab48298250694a95c
6ad029d8de3c149b1554a40caeced7d90add6f59
ddfe8f9031b1c85d1e9f1b7f34cbabc20e47e37199b9c780a632b357e5c75123
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 15 Sep 2022 15:47:43 GMT
date: Thu, 15 Sep 2022 15:47:43 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-JdrA0g41yeBFAfNCmcJIpw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1131
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
cache-control: no-cache, no-store, must-revalidate
date: Thu, 15 Sep 2022 15:47:43 GMT
X-Firefox-Spdy: h2
tag.1rx.io/rmp/230106/0/mvo?z=1r&hbv=6.20,2.1
213.19.147.42204 No Content 0 B URL HTTP/2 tag.1rx.io/rmp/230106/0/mvo?z=1r&hbv=6.20,2.1
IP 213.19.147.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rmp/230106/0/mvo?z=1r&hbv=6.20,2.1 HTTP/1.1
Host: tag.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 781
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:43 GMT
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
tag.1rx.io/rmp/216479/0/mvo?z=1r&hbv=6.20,2.1
213.19.147.42204 No Content 0 B URL HTTP/2 tag.1rx.io/rmp/216479/0/mvo?z=1r&hbv=6.20,2.1
IP 213.19.147.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rmp/216479/0/mvo?z=1r&hbv=6.20,2.1 HTTP/1.1
Host: tag.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 782
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:43 GMT
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1110
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
cache-control: max-age=0, private, must-revalidate
date: Thu, 15 Sep 2022 15:47:42 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1131
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
cache-control: no-cache, no-store, must-revalidate
date: Thu, 15 Sep 2022 15:47:43 GMT
X-Firefox-Spdy: h2
tag.1rx.io/rmp/230057/0/mvo?z=1r&hbv=6.20,2.1
213.19.147.42204 No Content 0 B URL HTTP/2 tag.1rx.io/rmp/230057/0/mvo?z=1r&hbv=6.20,2.1
IP 213.19.147.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rmp/230057/0/mvo?z=1r&hbv=6.20,2.1 HTTP/1.1
Host: tag.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 782
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:43 GMT
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
tag.1rx.io/rmp/216478/0/mvo?z=1r&hbv=6.20,2.1
213.19.147.42204 No Content 0 B URL HTTP/2 tag.1rx.io/rmp/216478/0/mvo?z=1r&hbv=6.20,2.1
IP 213.19.147.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rmp/216478/0/mvo?z=1r&hbv=6.20,2.1 HTTP/1.1
Host: tag.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 783
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:43 GMT
access-control-allow-origin: https://www.softschools.com
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a0707e2715ddbcb6308ecdbf066f658e
19121b4049e172a10cb625eb9a60b3437d330b40
c3f8c75dbd6a7009f37217fe1ea5bf1641ecdc17077ddf77d26042cf8c565c78
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3954
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:44 GMT
Last-Modified: Thu, 15 Sep 2022 14:41:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/ut/v3/prebid
185.89.211.116200 OK 144 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.211.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c634690f827609bfa184483490590bed
8174a38fd3139006f69fb86ca658e3bd75d1b59e
6bb8b312ad1dcf1439e510818f5a7dd8c70c52582c17bf4115abf915a50073de
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 796
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:44 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 144
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.softschools.com
AN-X-Request-Uuid: 2bc84eda-9996-4af4-bd0f-40479da7812b
Set-Cookie: icu=ChgIw6RzEAoYASABKAEwoJKNmQY4AUABSAEQoJKNmQYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=8914389482324784489; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a0707e2715ddbcb6308ecdbf066f658e
19121b4049e172a10cb625eb9a60b3437d330b40
c3f8c75dbd6a7009f37217fe1ea5bf1641ecdc17077ddf77d26042cf8c565c78
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1106
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:44 GMT
Last-Modified: Thu, 15 Sep 2022 15:29:18 GMT
Server: ECS (amb/6BA3)
X-Cache: HIT
Content-Length: 471
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.softschools.com/
Origin: https://www.softschools.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:44 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.softschools.com
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
185.89.211.116200 OK 145 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.211.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 49689612896dfa1d7eeb308f56741bbe
8204bd4c9ffa2bda8e492c9842d4995514fcd66b
e67482537aa5d351f852fc63b60f1dd88dc80d594c32edb95592d8611f11b106
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 842
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:44 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 145
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.softschools.com
AN-X-Request-Uuid: 0007b3e7-929d-4a4c-ac7b-52fb2e3d7181
Set-Cookie: icu=ChgIw6RzEAoYASABKAEwoJKNmQY4AUABSAEQoJKNmQYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=2725379448058319865; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
c2shb.pubgw.yahoo.com/bidRequest
18.156.195.47200 OK 66 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 18.156.195.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e64584ddac1921645f647f674691b067
19e8094562c4863dfb00fa5e9252b225841201ba
556b9c48b0a60417c0f6c123e1e71dfffcb5b0fb91ed94243aee15105c91acf5
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1110
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:44 GMT
content-type: application/json;charset=utf-8
content-length: 66
server: ATS/9.1.10.25
access-control-allow-origin: https://www.softschools.com
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
age: 0
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
172.217.21.162200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 172.217.21.162:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3d3b3278b5d426b5801994e1924969fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Thu, 15 Sep 2022 15:47:44 GMT
expires: Thu, 15 Sep 2022 15:47:44 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/xbbe/pixel?d=CIT1lgIQ3-CiAhiHn-LNATAB&v=APEucNWh4H9Nsb263j7WW_GnDyEHW23qafCrTO7b6aB2KeCnWenRi7t2DuAZ8tTFZFKnXWBTB40flJLXlmNFBocOLX1F93LlhmnONZ1rGz9YjBkDpskEYX8
216.58.207.226200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CIT1lgIQ3-CiAhiHn-LNATAB&v=APEucNWh4H9Nsb263j7WW_GnDyEHW23qafCrTO7b6aB2KeCnWenRi7t2DuAZ8tTFZFKnXWBTB40flJLXlmNFBocOLX1F93LlhmnONZ1rGz9YjBkDpskEYX8
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CIT1lgIQ3-CiAhiHn-LNATAB&v=APEucNWh4H9Nsb263j7WW_GnDyEHW23qafCrTO7b6aB2KeCnWenRi7t2DuAZ8tTFZFKnXWBTB40flJLXlmNFBocOLX1F93LlhmnONZ1rGz9YjBkDpskEYX8 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3d3b3278b5d426b5801994e1924969fb.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 15 Sep 2022 15:47:44 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 15-Sep-2022 16:02:44 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 15 Sep 2022 15:47:44 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-DnPUml1dS8f3m7uZKgM5x-NRAaTtL1KUbO_7FYSuNW-2Y7NEpc2uqAe4nVmhrTLj1kkHUefCTBDEf8K3eV9unhwOgbLQ&cry=1&dbm_d=AKAmf-BriUxcslQ8ihGlPEsj2GIS_g9notC8CRcB2i3poNDyZcp6PtV2fslSks-VPTQDrbjbzRZVpH1dAywOFZD7oszixSJTt10kH0zNGa2bYYXb_8S_E5IGwgqdEm9IXBEhCLTXomAbY7X1QgIn3nTdSux4uzToehIDdcV2PQ6Xuid2ABpR5b7Eax3yEVpj0Xb4Ls9pYai3QCdkwijcKTrvDuUaE6liPz0MFbFGpjexIE3sk5sseWev81Hq4uF8PqZgHwYHfre_Ykk8Ou1nYrZ9y1AntqszKWYilm_lfI0boX9BNJPjEAy1V8xHdSjfTDx0BBL4lAJ7POGo5G1gla0rCKpvNi1l87UDWeJUV9xFOKixgpFt8chhqVEHw7abVhs3xcvzjDHLDK0uoHB84L43ANeNVUvh4aePzSkDrzwOF4aD32i5I_CZV_DpUb-9mhsZbwU6RUIWHq7E_IjgsemuXgz7P_nLAsciaxKMNXyyrXSx1iKEnM_CTMn0yGZ-4Ws91Mt6vX9JMVotAyuJFwHy8JB4j3dL5a-v-6NAE4OGAx2Lkgvmx7t8BA7cvnLZ2Y_LhR-Lijj7An7XG9orkwKQb7YkGAz_61p0VJOH4x6PfKvsElTRHDp-Si588WyqzJd9q74SdG3kfYMALqzP8rCyv5IXAP55Sho8LHSKlftnCmdMQNoeE_yUKiKAHZoOab7pw41KxgknB7NBaSaBMQxzqUxOcdqDvQBr5PWbTBPYQeqbi8QabJ2mH41yuq7RQQUR-wLQyR4ariyXrHHdQYA0slriSdhTdo_OYAi5GFXvAVrPi5X786FmUAOOlA3hkQkIxu_TYiQRaE52-qL6wIxNCrblx6aIgyVofca0y8XT6gP6oQJzpkCrRz8uIyMZHjigupuu4JrpMstSv47yVK4twBx-f25KEdsRUL5UWAgXN1ChlsgPrDX0_LUuT8f6KXBkfj5MgWBDi_eqFXk5VKRlYCW_iNH8DHHUdmVqTmsHZos-WYYkL1SRLBBCUHjYutLV5bIYUbM9Q_xwcG9cVmZPq-R8-fIk5IYk-xJv41ohp67MZrxkMIEcprhRci7d7lOAL4Qwyvft1JbtdBaOAoXyc9RVH8vlUA6xwfKnGJcPYElYfvGABIHT8QrlU47R2L2zfAqjhCyxnn65sHOktTOtNWdzk2TFKtU_qdvHsAaAojEOOuQNUNyzO-jZiGFv_FSlKkB8vyJLW2abeGy2jIf6xl_Bo6it4gjy5zmGB2PWigEAcfOSwSxqKyqjlI49QzVnXUyDX896Y3FKMuBezMfePXJ47fWoF0hFnjpgLOeOPUyZgQAvf-gwDmAc8aIq9eOosk7k-JrWRQgrbQDJvD_vXYA2bXP5vJzPS3hQ2503NTydylv_ayX3OPOaBBS0KGg2w50Jx5oKQDkT2t42mkE-LFIYrldQOMAnm_hv_-UtCM67C0AhFoCfcmxYpoK9hkcF0kyxZz7FZpwdZ-M6iHdhjhn385cL_DRoA9WAuQvvrWNk08A8P2wiTvARVHnyNeisfxLMQ1RKuM5SjuhM0vXNoRjeDXnJeRM1UNQZrJR1xMynx6H2e04hOZPu3G-Zad_CyUyor7eCRGsU35Z5CBttr8rrrYebr-fhswdQfL5ufgrET0nOlCWZSUshsRgo5Z-GKVMP0TyvI89qYPDyALgWLSHrxN6OptGlbmRwD4DtDGsDmiKdV9rmpZrGl5YV8j78dun_z1c-exAaXbzj0Tj1dSOWSZH5F_XI1MMCFl3ABFMLd774cxMx2_LQGdOdqJXRxyWGITEopVzCPQie6eCK-0GM8fpQG9mkcnrK6jj2xB9MHqCoNc-W5TeAn1fbUXoEyABwfrm3WL5P4SI6z3oIBluZz7Y_yYSZ-Q3NTAj5R2C36_rfZVzDQbANyIAjBaGCHW9vkqzBdn4EPljC06qRtX9lDWraVjqlBe9TMtgaXyc2KTSK2p1vJktD-8vGGJGP6zLpMQbQyxIwcaWTSi1tzdxo0y4UMTY3W_hIip4B_NY1xfKOGxQIF7QJZqe-1L1_xcGVe_Lz9BUwG6f-IgfcGMFkfIGs-O_CSppHY8RMGBYdcbM7YtCRshoX6_tMTAiPN2RlPPcYYFAKqur5oOsM71Nf5PfsovCzvo_KojqyoioIG5_SWfOZ0dnBXZ_eQ1uvF1jvOtjukS1e9E4hwK9erkewvEzRNlWbZwA1xNemAlPHISOKY-uPpZ79nZFBSMElenTgU7g3vMpPpzYdNaTZ6ucsnZpaA9Mb8J1CTrkqAJ22qiifSZa-3Y7gmxB-o8Qahz_0BYv-4UiQfR5GSmi0fAsgsmhHRwlgKwLKMWwwJbf5I6Av47NCTFdD9XVO-v3942BWJgt_5DpsuJ5POLftOCgAbCVH9Xj03YAT9VY0ZkA95Aotw1BolWd_pxUH9RIlqVkFNIDhTyUQCDMljpYAgOXv7EHC3AeqjHQQivvaSf9mPah9vsTwnXanjfkjw8uvPUm671aoBb8dOMG1s_shXc_j7Q7Gq-QFLH3u4Pv_gD3Va-JyqgU8tRKLoPHZ2VUCp59tiVV-iaPH8ZgpMaSQjRSCteDkiq5v1Aj_KNYT10Hnq2iI75FRCkI7EJ55V4ZiJT3DUr3-isthhtH-MKbpncYM2SEF7bg0rQ1e_c0vFE9x9taHKsGahdee1ynw4nQdPyWDITKScaeWjNvEEN6Ke-KKILcbcjsLKDlw0cHoWzNWPUdNNUMi1hl8bYu86lOZn7dWo4lV0ucU7DK2PXutoX57Phn7GgGcerWscGVH_tgvOeB9jD_EayBxQ2PmrS14S59_bCnHe8WE-ro8n28pcdw50JFriN5GmB9tvDbemJVvxBlH_0Bk-hykOTBIqIStqmBbym2NeYUUmbWZY770H_tAX_qta2gzznx7DakI19CUKyy4sFaSPZoHDrD1Rpcw9xUIDPmuSiHrDGV0YqdeEXguObHcjIUxo7M3_NoFSu0UQ8uzGc30mO6kBKt3IpTZMQ4heTGgda8CpYctjYF9iS-m2Xc3PciTpLNco-YlcM1vIKmVcMgU1f8rIDeWKIRhsMEAFqtjDmJ9kH15P2x6yDzEjxWEJgsud4HlqTgw_02LIGiGWANvkfl1yW70MQWaQzzg5fJlv-9SpQJfsW9kqnbAROjYFjTA8s0d_L88qATi-mGv_VeZ1qgEEjkDY6_ylWv_qnCiTj7yrNVWgHuunJYrGhY0aAq7AwaVqQox-B0HEvyf8kp082VbmqmHkTUF2_0nxoH8EgwzeZ4zk2TtyHeVEvnP1WBqV9lp7XLdOIAAk0URM42yzoUbXSBZhtcy9PKurx-pUogDo0NZhDJ7UQIM3YJ-ALYITTz7SEX2HkpelnsVP3zUwJySnWcD5PNhUtUxhdPckbaPv8z4PuMDRXa92qbGc7cr2jpNNW59lOttYo2X1AS63YQbXf5gyYC4MssT5RIf&cid=CAASKORofvXG4b40gqvJwEbEXJsoADAbMlKay-aXnofXIwXLMTVsVM41ZoI&rfl=1%2Chttps%253A%252F%252Fwww.softschools.com%252F%240
216.58.207.226200 OK 33 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-DnPUml1dS8f3m7uZKgM5x-NRAaTtL1KUbO_7FYSuNW-2Y7NEpc2uqAe4nVmhrTLj1kkHUefCTBDEf8K3eV9unhwOgbLQ&cry=1&dbm_d=AKAmf-BriUxcslQ8ihGlPEsj2GIS_g9notC8CRcB2i3poNDyZcp6PtV2fslSks-VPTQDrbjbzRZVpH1dAywOFZD7oszixSJTt10kH0zNGa2bYYXb_8S_E5IGwgqdEm9IXBEhCLTXomAbY7X1QgIn3nTdSux4uzToehIDdcV2PQ6Xuid2ABpR5b7Eax3yEVpj0Xb4Ls9pYai3QCdkwijcKTrvDuUaE6liPz0MFbFGpjexIE3sk5sseWev81Hq4uF8PqZgHwYHfre_Ykk8Ou1nYrZ9y1AntqszKWYilm_lfI0boX9BNJPjEAy1V8xHdSjfTDx0BBL4lAJ7POGo5G1gla0rCKpvNi1l87UDWeJUV9xFOKixgpFt8chhqVEHw7abVhs3xcvzjDHLDK0uoHB84L43ANeNVUvh4aePzSkDrzwOF4aD32i5I_CZV_DpUb-9mhsZbwU6RUIWHq7E_IjgsemuXgz7P_nLAsciaxKMNXyyrXSx1iKEnM_CTMn0yGZ-4Ws91Mt6vX9JMVotAyuJFwHy8JB4j3dL5a-v-6NAE4OGAx2Lkgvmx7t8BA7cvnLZ2Y_LhR-Lijj7An7XG9orkwKQb7YkGAz_61p0VJOH4x6PfKvsElTRHDp-Si588WyqzJd9q74SdG3kfYMALqzP8rCyv5IXAP55Sho8LHSKlftnCmdMQNoeE_yUKiKAHZoOab7pw41KxgknB7NBaSaBMQxzqUxOcdqDvQBr5PWbTBPYQeqbi8QabJ2mH41yuq7RQQUR-wLQyR4ariyXrHHdQYA0slriSdhTdo_OYAi5GFXvAVrPi5X786FmUAOOlA3hkQkIxu_TYiQRaE52-qL6wIxNCrblx6aIgyVofca0y8XT6gP6oQJzpkCrRz8uIyMZHjigupuu4JrpMstSv47yVK4twBx-f25KEdsRUL5UWAgXN1ChlsgPrDX0_LUuT8f6KXBkfj5MgWBDi_eqFXk5VKRlYCW_iNH8DHHUdmVqTmsHZos-WYYkL1SRLBBCUHjYutLV5bIYUbM9Q_xwcG9cVmZPq-R8-fIk5IYk-xJv41ohp67MZrxkMIEcprhRci7d7lOAL4Qwyvft1JbtdBaOAoXyc9RVH8vlUA6xwfKnGJcPYElYfvGABIHT8QrlU47R2L2zfAqjhCyxnn65sHOktTOtNWdzk2TFKtU_qdvHsAaAojEOOuQNUNyzO-jZiGFv_FSlKkB8vyJLW2abeGy2jIf6xl_Bo6it4gjy5zmGB2PWigEAcfOSwSxqKyqjlI49QzVnXUyDX896Y3FKMuBezMfePXJ47fWoF0hFnjpgLOeOPUyZgQAvf-gwDmAc8aIq9eOosk7k-JrWRQgrbQDJvD_vXYA2bXP5vJzPS3hQ2503NTydylv_ayX3OPOaBBS0KGg2w50Jx5oKQDkT2t42mkE-LFIYrldQOMAnm_hv_-UtCM67C0AhFoCfcmxYpoK9hkcF0kyxZz7FZpwdZ-M6iHdhjhn385cL_DRoA9WAuQvvrWNk08A8P2wiTvARVHnyNeisfxLMQ1RKuM5SjuhM0vXNoRjeDXnJeRM1UNQZrJR1xMynx6H2e04hOZPu3G-Zad_CyUyor7eCRGsU35Z5CBttr8rrrYebr-fhswdQfL5ufgrET0nOlCWZSUshsRgo5Z-GKVMP0TyvI89qYPDyALgWLSHrxN6OptGlbmRwD4DtDGsDmiKdV9rmpZrGl5YV8j78dun_z1c-exAaXbzj0Tj1dSOWSZH5F_XI1MMCFl3ABFMLd774cxMx2_LQGdOdqJXRxyWGITEopVzCPQie6eCK-0GM8fpQG9mkcnrK6jj2xB9MHqCoNc-W5TeAn1fbUXoEyABwfrm3WL5P4SI6z3oIBluZz7Y_yYSZ-Q3NTAj5R2C36_rfZVzDQbANyIAjBaGCHW9vkqzBdn4EPljC06qRtX9lDWraVjqlBe9TMtgaXyc2KTSK2p1vJktD-8vGGJGP6zLpMQbQyxIwcaWTSi1tzdxo0y4UMTY3W_hIip4B_NY1xfKOGxQIF7QJZqe-1L1_xcGVe_Lz9BUwG6f-IgfcGMFkfIGs-O_CSppHY8RMGBYdcbM7YtCRshoX6_tMTAiPN2RlPPcYYFAKqur5oOsM71Nf5PfsovCzvo_KojqyoioIG5_SWfOZ0dnBXZ_eQ1uvF1jvOtjukS1e9E4hwK9erkewvEzRNlWbZwA1xNemAlPHISOKY-uPpZ79nZFBSMElenTgU7g3vMpPpzYdNaTZ6ucsnZpaA9Mb8J1CTrkqAJ22qiifSZa-3Y7gmxB-o8Qahz_0BYv-4UiQfR5GSmi0fAsgsmhHRwlgKwLKMWwwJbf5I6Av47NCTFdD9XVO-v3942BWJgt_5DpsuJ5POLftOCgAbCVH9Xj03YAT9VY0ZkA95Aotw1BolWd_pxUH9RIlqVkFNIDhTyUQCDMljpYAgOXv7EHC3AeqjHQQivvaSf9mPah9vsTwnXanjfkjw8uvPUm671aoBb8dOMG1s_shXc_j7Q7Gq-QFLH3u4Pv_gD3Va-JyqgU8tRKLoPHZ2VUCp59tiVV-iaPH8ZgpMaSQjRSCteDkiq5v1Aj_KNYT10Hnq2iI75FRCkI7EJ55V4ZiJT3DUr3-isthhtH-MKbpncYM2SEF7bg0rQ1e_c0vFE9x9taHKsGahdee1ynw4nQdPyWDITKScaeWjNvEEN6Ke-KKILcbcjsLKDlw0cHoWzNWPUdNNUMi1hl8bYu86lOZn7dWo4lV0ucU7DK2PXutoX57Phn7GgGcerWscGVH_tgvOeB9jD_EayBxQ2PmrS14S59_bCnHe8WE-ro8n28pcdw50JFriN5GmB9tvDbemJVvxBlH_0Bk-hykOTBIqIStqmBbym2NeYUUmbWZY770H_tAX_qta2gzznx7DakI19CUKyy4sFaSPZoHDrD1Rpcw9xUIDPmuSiHrDGV0YqdeEXguObHcjIUxo7M3_NoFSu0UQ8uzGc30mO6kBKt3IpTZMQ4heTGgda8CpYctjYF9iS-m2Xc3PciTpLNco-YlcM1vIKmVcMgU1f8rIDeWKIRhsMEAFqtjDmJ9kH15P2x6yDzEjxWEJgsud4HlqTgw_02LIGiGWANvkfl1yW70MQWaQzzg5fJlv-9SpQJfsW9kqnbAROjYFjTA8s0d_L88qATi-mGv_VeZ1qgEEjkDY6_ylWv_qnCiTj7yrNVWgHuunJYrGhY0aAq7AwaVqQox-B0HEvyf8kp082VbmqmHkTUF2_0nxoH8EgwzeZ4zk2TtyHeVEvnP1WBqV9lp7XLdOIAAk0URM42yzoUbXSBZhtcy9PKurx-pUogDo0NZhDJ7UQIM3YJ-ALYITTz7SEX2HkpelnsVP3zUwJySnWcD5PNhUtUxhdPckbaPv8z4PuMDRXa92qbGc7cr2jpNNW59lOttYo2X1AS63YQbXf5gyYC4MssT5RIf&cid=CAASKORofvXG4b40gqvJwEbEXJsoADAbMlKay-aXnofXIwXLMTVsVM41ZoI&rfl=1%2Chttps%253A%252F%252Fwww.softschools.com%252F%240
IP 216.58.207.226:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 5d8f5bada48d31c072ab170c4fd7aebd
c9284d328209a1f4ee0127e136c0ddedd08dfb66
ff1fa4c8379ffd954635e1eb969d34f4595357976ba0c707b2a2fcf4d240f534
GET /dbm/ad?dbm_c=AKAmf-DnPUml1dS8f3m7uZKgM5x-NRAaTtL1KUbO_7FYSuNW-2Y7NEpc2uqAe4nVmhrTLj1kkHUefCTBDEf8K3eV9unhwOgbLQ&cry=1&dbm_d=AKAmf-BriUxcslQ8ihGlPEsj2GIS_g9notC8CRcB2i3poNDyZcp6PtV2fslSks-VPTQDrbjbzRZVpH1dAywOFZD7oszixSJTt10kH0zNGa2bYYXb_8S_E5IGwgqdEm9IXBEhCLTXomAbY7X1QgIn3nTdSux4uzToehIDdcV2PQ6Xuid2ABpR5b7Eax3yEVpj0Xb4Ls9pYai3QCdkwijcKTrvDuUaE6liPz0MFbFGpjexIE3sk5sseWev81Hq4uF8PqZgHwYHfre_Ykk8Ou1nYrZ9y1AntqszKWYilm_lfI0boX9BNJPjEAy1V8xHdSjfTDx0BBL4lAJ7POGo5G1gla0rCKpvNi1l87UDWeJUV9xFOKixgpFt8chhqVEHw7abVhs3xcvzjDHLDK0uoHB84L43ANeNVUvh4aePzSkDrzwOF4aD32i5I_CZV_DpUb-9mhsZbwU6RUIWHq7E_IjgsemuXgz7P_nLAsciaxKMNXyyrXSx1iKEnM_CTMn0yGZ-4Ws91Mt6vX9JMVotAyuJFwHy8JB4j3dL5a-v-6NAE4OGAx2Lkgvmx7t8BA7cvnLZ2Y_LhR-Lijj7An7XG9orkwKQb7YkGAz_61p0VJOH4x6PfKvsElTRHDp-Si588WyqzJd9q74SdG3kfYMALqzP8rCyv5IXAP55Sho8LHSKlftnCmdMQNoeE_yUKiKAHZoOab7pw41KxgknB7NBaSaBMQxzqUxOcdqDvQBr5PWbTBPYQeqbi8QabJ2mH41yuq7RQQUR-wLQyR4ariyXrHHdQYA0slriSdhTdo_OYAi5GFXvAVrPi5X786FmUAOOlA3hkQkIxu_TYiQRaE52-qL6wIxNCrblx6aIgyVofca0y8XT6gP6oQJzpkCrRz8uIyMZHjigupuu4JrpMstSv47yVK4twBx-f25KEdsRUL5UWAgXN1ChlsgPrDX0_LUuT8f6KXBkfj5MgWBDi_eqFXk5VKRlYCW_iNH8DHHUdmVqTmsHZos-WYYkL1SRLBBCUHjYutLV5bIYUbM9Q_xwcG9cVmZPq-R8-fIk5IYk-xJv41ohp67MZrxkMIEcprhRci7d7lOAL4Qwyvft1JbtdBaOAoXyc9RVH8vlUA6xwfKnGJcPYElYfvGABIHT8QrlU47R2L2zfAqjhCyxnn65sHOktTOtNWdzk2TFKtU_qdvHsAaAojEOOuQNUNyzO-jZiGFv_FSlKkB8vyJLW2abeGy2jIf6xl_Bo6it4gjy5zmGB2PWigEAcfOSwSxqKyqjlI49QzVnXUyDX896Y3FKMuBezMfePXJ47fWoF0hFnjpgLOeOPUyZgQAvf-gwDmAc8aIq9eOosk7k-JrWRQgrbQDJvD_vXYA2bXP5vJzPS3hQ2503NTydylv_ayX3OPOaBBS0KGg2w50Jx5oKQDkT2t42mkE-LFIYrldQOMAnm_hv_-UtCM67C0AhFoCfcmxYpoK9hkcF0kyxZz7FZpwdZ-M6iHdhjhn385cL_DRoA9WAuQvvrWNk08A8P2wiTvARVHnyNeisfxLMQ1RKuM5SjuhM0vXNoRjeDXnJeRM1UNQZrJR1xMynx6H2e04hOZPu3G-Zad_CyUyor7eCRGsU35Z5CBttr8rrrYebr-fhswdQfL5ufgrET0nOlCWZSUshsRgo5Z-GKVMP0TyvI89qYPDyALgWLSHrxN6OptGlbmRwD4DtDGsDmiKdV9rmpZrGl5YV8j78dun_z1c-exAaXbzj0Tj1dSOWSZH5F_XI1MMCFl3ABFMLd774cxMx2_LQGdOdqJXRxyWGITEopVzCPQie6eCK-0GM8fpQG9mkcnrK6jj2xB9MHqCoNc-W5TeAn1fbUXoEyABwfrm3WL5P4SI6z3oIBluZz7Y_yYSZ-Q3NTAj5R2C36_rfZVzDQbANyIAjBaGCHW9vkqzBdn4EPljC06qRtX9lDWraVjqlBe9TMtgaXyc2KTSK2p1vJktD-8vGGJGP6zLpMQbQyxIwcaWTSi1tzdxo0y4UMTY3W_hIip4B_NY1xfKOGxQIF7QJZqe-1L1_xcGVe_Lz9BUwG6f-IgfcGMFkfIGs-O_CSppHY8RMGBYdcbM7YtCRshoX6_tMTAiPN2RlPPcYYFAKqur5oOsM71Nf5PfsovCzvo_KojqyoioIG5_SWfOZ0dnBXZ_eQ1uvF1jvOtjukS1e9E4hwK9erkewvEzRNlWbZwA1xNemAlPHISOKY-uPpZ79nZFBSMElenTgU7g3vMpPpzYdNaTZ6ucsnZpaA9Mb8J1CTrkqAJ22qiifSZa-3Y7gmxB-o8Qahz_0BYv-4UiQfR5GSmi0fAsgsmhHRwlgKwLKMWwwJbf5I6Av47NCTFdD9XVO-v3942BWJgt_5DpsuJ5POLftOCgAbCVH9Xj03YAT9VY0ZkA95Aotw1BolWd_pxUH9RIlqVkFNIDhTyUQCDMljpYAgOXv7EHC3AeqjHQQivvaSf9mPah9vsTwnXanjfkjw8uvPUm671aoBb8dOMG1s_shXc_j7Q7Gq-QFLH3u4Pv_gD3Va-JyqgU8tRKLoPHZ2VUCp59tiVV-iaPH8ZgpMaSQjRSCteDkiq5v1Aj_KNYT10Hnq2iI75FRCkI7EJ55V4ZiJT3DUr3-isthhtH-MKbpncYM2SEF7bg0rQ1e_c0vFE9x9taHKsGahdee1ynw4nQdPyWDITKScaeWjNvEEN6Ke-KKILcbcjsLKDlw0cHoWzNWPUdNNUMi1hl8bYu86lOZn7dWo4lV0ucU7DK2PXutoX57Phn7GgGcerWscGVH_tgvOeB9jD_EayBxQ2PmrS14S59_bCnHe8WE-ro8n28pcdw50JFriN5GmB9tvDbemJVvxBlH_0Bk-hykOTBIqIStqmBbym2NeYUUmbWZY770H_tAX_qta2gzznx7DakI19CUKyy4sFaSPZoHDrD1Rpcw9xUIDPmuSiHrDGV0YqdeEXguObHcjIUxo7M3_NoFSu0UQ8uzGc30mO6kBKt3IpTZMQ4heTGgda8CpYctjYF9iS-m2Xc3PciTpLNco-YlcM1vIKmVcMgU1f8rIDeWKIRhsMEAFqtjDmJ9kH15P2x6yDzEjxWEJgsud4HlqTgw_02LIGiGWANvkfl1yW70MQWaQzzg5fJlv-9SpQJfsW9kqnbAROjYFjTA8s0d_L88qATi-mGv_VeZ1qgEEjkDY6_ylWv_qnCiTj7yrNVWgHuunJYrGhY0aAq7AwaVqQox-B0HEvyf8kp082VbmqmHkTUF2_0nxoH8EgwzeZ4zk2TtyHeVEvnP1WBqV9lp7XLdOIAAk0URM42yzoUbXSBZhtcy9PKurx-pUogDo0NZhDJ7UQIM3YJ-ALYITTz7SEX2HkpelnsVP3zUwJySnWcD5PNhUtUxhdPckbaPv8z4PuMDRXa92qbGc7cr2jpNNW59lOttYo2X1AS63YQbXf5gyYC4MssT5RIf&cid=CAASKORofvXG4b40gqvJwEbEXJsoADAbMlKay-aXnofXIwXLMTVsVM41ZoI&rfl=1%2Chttps%253A%252F%252Fwww.softschools.com%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3d3b3278b5d426b5801994e1924969fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 15 Sep 2022 15:47:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 33429
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 15-Sep-2022 16:02:44 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
142.250.74.163200 OK 205 B URL HTTP/2 www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 4087858e2c9db9aa8f6a840aedcfb533
d1ffe861da6bd0e95fd1a365b0c3d3ceb6cd58a3
4d45982f2dc34f36c9045ee46a75a1943666bb7fd64e103cac8c7429e7012840
GET /images/icons/material/system/2x/feedback_grey600_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3d3b3278b5d426b5801994e1924969fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 07:29:38 GMT
expires: Thu, 14 Sep 2023 07:29:38 GMT
cache-control: public, max-age=31536000
age: 116287
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
142.250.74.163200 OK 604 B URL HTTP/2 www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 7bd42e5a35b5fb3ff852d6ea9191ca83
8a141eb392a05a2dea3dcd83b97940ef70a81ebc
5c4a713ee4250851232be9f9f68d41586be39b299528cfc7266e0b0e7e582e1b
GET /images/icons/material/system/2x/settings_grey600_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3d3b3278b5d426b5801994e1924969fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 06:20:49 GMT
expires: Fri, 15 Sep 2023 06:20:49 GMT
cache-control: public, max-age=31536000
age: 34016
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuni2ge3He4V28nnau7W6Bnptsrzmje6Y59JgUHQSVFZs861EIgQnrsoXMIrydps84YOaH6GOEaxCq74rp83cCPVx38rnKIOMgbUhNTIWSFRnRu5XyMJyfQGy7Bl5SZQU2WVd_QZXsDvIV_Pm6tTLf0KbbtWxOlKGKBv3oo97qW_ZGz7qhmWoV7Y_laVX_Ze1DY8ksxdjrr-pgR32sGLfVhgubp4Dc3W0AcGl8uc29uXmfTcbUFsU2CflQqQVoMljfSYGhM_E6ybz3-CM_zhBoKePNKlj9d4gCS_rHZegD7VTsH4Q-oMjpuC2uFGdRbc32TB_Jh3x8rCoEQcfssEncBEC_fXAUC6JNrA3pjmsswANn78aej1zmDw3ReFf0OYmacDpKrxHgiidc_WEyn38hlzZsoUw2-a8qOflx3Yb4NPJB_5CJK9i1w59aoFWJW_Rr45MIT-YnXlv-lGDnTtH-Hrm__DcgIYKKPNeL6JXTIJJ5HBHPJmtyzJofYZUVBrr152zbo-IOlGT4ntynyRo3Qbm86UG_nKFWFGd49clxLU_b6EgMEq7EomXXUkhRIrYXd3VJ1jumqyOt4jTmI-iexgBpSUz7AyOzIBhbGnyIHwyP-VDPINKkoYoFHrwI0QDQT61ChezfhV0LuQATV_OAxLBIOGt1agIuAVhdOS_STq3TyA4kSUZ15sV4JGB9FMhNlvEqL6-w4GMzcF1vABVx3vX3apKrIlrR1JvUV0N5ETCqYN5tgWyGH0-CgVboUfsmG0kjzEZ33F0GmaqPGTI0_2J3DfzKmgc1F4VV30d5-KhAzvXeCiFtpH6VU-7k3OZd8Yu4LglCEQOrfFH2G5ZNUNDCCHbwV6hThaSdiI_E274l0VwY9gmch9Qz2Fz2rFIja0hd7Sd8CtieegKUvkmsc_P4nzbERHqjlTKwLAT5UWBB-Q3Vq-5UDeU075RduIzruJpsOQMTEGF7fpNk2Xx9kNdrdmMXVy4dlJEwTWVm6P7mfGNM3Q5V_4uEfCaUUyFi2Kkkp5zaH-XTvcvJDMyztr4Wh9e7P8oEnKt5WfjW2kaTnb6MAWS613c145eiURWCL-taQUiRtm1ICcEM0sQHhl--zIsevpI2xn1DtoSEI8Rgxy57K5PfAaBPPHlu-teAw91fpUQjh2zofzdjJagGw79W5w9khEfrci1SOv_WyMRyYIA7Zh1cgCQ38pvCpR6Ug9Wjtc3tvZfm5tsFLtVwrU6Qo9UGtJf-MUkDsAexUjbfq0P-WzwPs0djiaXgVphrVYB6RsfRP97e9SQTtQH0yfmhpg7Cd62nGK4Y&sai=AMfl-YSOwV0RAiJZBe3CSyxHPvXp_03ox4p6mr7svyZ38rg8N5ZGtU8ps7N0Nb9uBCjaK3L3tozUwn2_pZvGbRLQYbd1ptomHtFp5w-DDvOsKSj-imOPwGZW-6UIvE11CavpD38tkQNa4B0Hft3puH5nkQ2TwbBb53CxLma3mKBIufLLCyn8pO5pYR7uc8fUyY3nta2Sq8HD2Yp5opGE2QScCkH49mffg1KCbA&sig=Cg0ArKJSzIqP2MferzaNEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220912.98285&adurl=
142.250.74.130200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuni2ge3He4V28nnau7W6Bnptsrzmje6Y59JgUHQSVFZs861EIgQnrsoXMIrydps84YOaH6GOEaxCq74rp83cCPVx38rnKIOMgbUhNTIWSFRnRu5XyMJyfQGy7Bl5SZQU2WVd_QZXsDvIV_Pm6tTLf0KbbtWxOlKGKBv3oo97qW_ZGz7qhmWoV7Y_laVX_Ze1DY8ksxdjrr-pgR32sGLfVhgubp4Dc3W0AcGl8uc29uXmfTcbUFsU2CflQqQVoMljfSYGhM_E6ybz3-CM_zhBoKePNKlj9d4gCS_rHZegD7VTsH4Q-oMjpuC2uFGdRbc32TB_Jh3x8rCoEQcfssEncBEC_fXAUC6JNrA3pjmsswANn78aej1zmDw3ReFf0OYmacDpKrxHgiidc_WEyn38hlzZsoUw2-a8qOflx3Yb4NPJB_5CJK9i1w59aoFWJW_Rr45MIT-YnXlv-lGDnTtH-Hrm__DcgIYKKPNeL6JXTIJJ5HBHPJmtyzJofYZUVBrr152zbo-IOlGT4ntynyRo3Qbm86UG_nKFWFGd49clxLU_b6EgMEq7EomXXUkhRIrYXd3VJ1jumqyOt4jTmI-iexgBpSUz7AyOzIBhbGnyIHwyP-VDPINKkoYoFHrwI0QDQT61ChezfhV0LuQATV_OAxLBIOGt1agIuAVhdOS_STq3TyA4kSUZ15sV4JGB9FMhNlvEqL6-w4GMzcF1vABVx3vX3apKrIlrR1JvUV0N5ETCqYN5tgWyGH0-CgVboUfsmG0kjzEZ33F0GmaqPGTI0_2J3DfzKmgc1F4VV30d5-KhAzvXeCiFtpH6VU-7k3OZd8Yu4LglCEQOrfFH2G5ZNUNDCCHbwV6hThaSdiI_E274l0VwY9gmch9Qz2Fz2rFIja0hd7Sd8CtieegKUvkmsc_P4nzbERHqjlTKwLAT5UWBB-Q3Vq-5UDeU075RduIzruJpsOQMTEGF7fpNk2Xx9kNdrdmMXVy4dlJEwTWVm6P7mfGNM3Q5V_4uEfCaUUyFi2Kkkp5zaH-XTvcvJDMyztr4Wh9e7P8oEnKt5WfjW2kaTnb6MAWS613c145eiURWCL-taQUiRtm1ICcEM0sQHhl--zIsevpI2xn1DtoSEI8Rgxy57K5PfAaBPPHlu-teAw91fpUQjh2zofzdjJagGw79W5w9khEfrci1SOv_WyMRyYIA7Zh1cgCQ38pvCpR6Ug9Wjtc3tvZfm5tsFLtVwrU6Qo9UGtJf-MUkDsAexUjbfq0P-WzwPs0djiaXgVphrVYB6RsfRP97e9SQTtQH0yfmhpg7Cd62nGK4Y&sai=AMfl-YSOwV0RAiJZBe3CSyxHPvXp_03ox4p6mr7svyZ38rg8N5ZGtU8ps7N0Nb9uBCjaK3L3tozUwn2_pZvGbRLQYbd1ptomHtFp5w-DDvOsKSj-imOPwGZW-6UIvE11CavpD38tkQNa4B0Hft3puH5nkQ2TwbBb53CxLma3mKBIufLLCyn8pO5pYR7uc8fUyY3nta2Sq8HD2Yp5opGE2QScCkH49mffg1KCbA&sig=Cg0ArKJSzIqP2MferzaNEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220912.98285&adurl=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsuni2ge3He4V28nnau7W6Bnptsrzmje6Y59JgUHQSVFZs861EIgQnrsoXMIrydps84YOaH6GOEaxCq74rp83cCPVx38rnKIOMgbUhNTIWSFRnRu5XyMJyfQGy7Bl5SZQU2WVd_QZXsDvIV_Pm6tTLf0KbbtWxOlKGKBv3oo97qW_ZGz7qhmWoV7Y_laVX_Ze1DY8ksxdjrr-pgR32sGLfVhgubp4Dc3W0AcGl8uc29uXmfTcbUFsU2CflQqQVoMljfSYGhM_E6ybz3-CM_zhBoKePNKlj9d4gCS_rHZegD7VTsH4Q-oMjpuC2uFGdRbc32TB_Jh3x8rCoEQcfssEncBEC_fXAUC6JNrA3pjmsswANn78aej1zmDw3ReFf0OYmacDpKrxHgiidc_WEyn38hlzZsoUw2-a8qOflx3Yb4NPJB_5CJK9i1w59aoFWJW_Rr45MIT-YnXlv-lGDnTtH-Hrm__DcgIYKKPNeL6JXTIJJ5HBHPJmtyzJofYZUVBrr152zbo-IOlGT4ntynyRo3Qbm86UG_nKFWFGd49clxLU_b6EgMEq7EomXXUkhRIrYXd3VJ1jumqyOt4jTmI-iexgBpSUz7AyOzIBhbGnyIHwyP-VDPINKkoYoFHrwI0QDQT61ChezfhV0LuQATV_OAxLBIOGt1agIuAVhdOS_STq3TyA4kSUZ15sV4JGB9FMhNlvEqL6-w4GMzcF1vABVx3vX3apKrIlrR1JvUV0N5ETCqYN5tgWyGH0-CgVboUfsmG0kjzEZ33F0GmaqPGTI0_2J3DfzKmgc1F4VV30d5-KhAzvXeCiFtpH6VU-7k3OZd8Yu4LglCEQOrfFH2G5ZNUNDCCHbwV6hThaSdiI_E274l0VwY9gmch9Qz2Fz2rFIja0hd7Sd8CtieegKUvkmsc_P4nzbERHqjlTKwLAT5UWBB-Q3Vq-5UDeU075RduIzruJpsOQMTEGF7fpNk2Xx9kNdrdmMXVy4dlJEwTWVm6P7mfGNM3Q5V_4uEfCaUUyFi2Kkkp5zaH-XTvcvJDMyztr4Wh9e7P8oEnKt5WfjW2kaTnb6MAWS613c145eiURWCL-taQUiRtm1ICcEM0sQHhl--zIsevpI2xn1DtoSEI8Rgxy57K5PfAaBPPHlu-teAw91fpUQjh2zofzdjJagGw79W5w9khEfrci1SOv_WyMRyYIA7Zh1cgCQ38pvCpR6Ug9Wjtc3tvZfm5tsFLtVwrU6Qo9UGtJf-MUkDsAexUjbfq0P-WzwPs0djiaXgVphrVYB6RsfRP97e9SQTtQH0yfmhpg7Cd62nGK4Y&sai=AMfl-YSOwV0RAiJZBe3CSyxHPvXp_03ox4p6mr7svyZ38rg8N5ZGtU8ps7N0Nb9uBCjaK3L3tozUwn2_pZvGbRLQYbd1ptomHtFp5w-DDvOsKSj-imOPwGZW-6UIvE11CavpD38tkQNa4B0Hft3puH5nkQ2TwbBb53CxLma3mKBIufLLCyn8pO5pYR7uc8fUyY3nta2Sq8HD2Yp5opGE2QScCkH49mffg1KCbA&sig=Cg0ArKJSzIqP2MferzaNEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220912.98285&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3d3b3278b5d426b5801994e1924969fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Thu, 15 Sep 2022 15:47:45 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 15-Sep-2022 16:02:45 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 15 Sep 2022 15:47:45 GMT
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/tr/sv?v=182743
18.189.153.196200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/sv?v=182743
IP 18.189.153.196:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/sv?v=182743 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 1432
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 15 Sep 2022 15:47:45 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156858&gdpr=0&gdpr_consent=
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156858&gdpr=0&gdpr_consent=
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?kdntuid=1&p=156858&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=114596
expires: Fri, 16 Sep 2022 23:37:43 GMT
date: Thu, 15 Sep 2022 15:47:47 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156858&gdpr=0&gdpr_consent=
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156858&gdpr=0&gdpr_consent=
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?kdntuid=1&p=156858&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=114596
expires: Fri, 16 Sep 2022 23:37:43 GMT
date: Thu, 15 Sep 2022 15:47:47 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
js-sec.indexww.com/um/ixmatch.html
23.38.200.248200 OK 1.4 kB URL HTTP/1.1 js-sec.indexww.com/um/ixmatch.html
IP 23.38.200.248:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2920), with no line terminators
Hash d41805aed22c3b9731d56a19244e6b8a
7e5da0bdf4db3f38f1590b5020750a93d1a174b5
46aa57bbee28a5fa9e4352e856a1d3a0485613234232d0b3de27adc74d8fac26
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 25 Jul 2022 19:18:30 GMT
ETag: "e20015-b68-5e4a60c97afb7"
Accept-Ranges: bytes
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1387
Date: Thu, 15 Sep 2022 15:47:47 GMT
Connection: keep-alive
js-sec.indexww.com/um/ixmatch.html
23.38.200.248200 OK 1.4 kB URL HTTP/1.1 js-sec.indexww.com/um/ixmatch.html
IP 23.38.200.248:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2920), with no line terminators
Hash d41805aed22c3b9731d56a19244e6b8a
7e5da0bdf4db3f38f1590b5020750a93d1a174b5
46aa57bbee28a5fa9e4352e856a1d3a0485613234232d0b3de27adc74d8fac26
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 25 Jul 2022 19:18:30 GMT
ETag: "e20015-b68-5e4a60c97afb7"
Accept-Ranges: bytes
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1387
Date: Thu, 15 Sep 2022 15:47:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash bb5011a32469d04a8c6eef616480093e
10d67597f4d964e4b7ac3356cd07f75f70af0189
a14a68abd9f16becedc20dabd6921592f1d50a141475635d7412afe1157619fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5205
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:47 GMT
Last-Modified: Thu, 15 Sep 2022 14:21:02 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
qd.admetricspro.com/js/softschools/layout-two.js
104.26.7.218200 OK 2.7 kB URL HTTP/2 qd.admetricspro.com/js/softschools/layout-two.js
IP 104.26.7.218:0
Hash 42eb70fbf858391ac6d70394693f7331
8effb0aa0d6a6b09e6355482793e2401eb364c2d
9a9ab92caff3295ddea75a4b2d117f4dcd70ec2f9fb30295672ba42c7f69bd66
GET /js/softschools/layout-two.js HTTP/1.1
Host: qd.admetricspro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:41 GMT
content-type: application/javascript
last-modified: Sat, 25 Jun 2022 02:46:11 GMT
etag: W/"3e6c-5e23cb0906319-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
expires: Thu, 15 Sep 2022 15:53:07 GMT
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xa%2Br5tQQsJNU1pat9oqbA3qO085RVCqnakR5%2F6UMLb8MNjC68vymUWuZs1zdOIUQqGHaDhE8HYNSUXyMvlA3b7cBFfkujrHxOtrnEJTYzX2EFPFQT5zXcI0sUsBBAMyuMlj4mgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74b28094af790b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
151.101.85.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.85.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Thu, 08 Sep 2022 04:38:03 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 15 Sep 2022 15:47:47 GMT
Age: 40170
X-Served-By: cache-lga13626-LGA, cache-bma1627-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 390, 120922
X-Timer: S1663256868.544466,VS0,VE0
Vary: Accept-Encoding
acdn.adnxs.com/dmp/async_usersync.html
151.101.85.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.85.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Thu, 08 Sep 2022 04:38:03 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 15 Sep 2022 15:47:47 GMT
Age: 40170
X-Served-By: cache-lga13626-LGA, cache-bma1627-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 390, 120923
X-Timer: S1663256868.564933,VS0,VE0
Vary: Accept-Encoding
ib.adnxs.com/async_usersync?cbfn=queuePixels
185.89.211.116307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 8ebb4774-1319-4d76-a595-f74405d3a6e4
Set-Cookie: uuid2=8170369960850616414; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:47 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ap.lijit.com/beacon?informer=13394437
72.251.249.9302 Found 0 B URL HTTP/1.1 ap.lijit.com/beacon?informer=13394437
IP 72.251.249.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beacon?informer=13394437 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 15:47:47 GMT
Set-Cookie: ljt_reader=FUizrNZHC-v0NXC3RDmLP_x_; Path=/; Domain=.lijit.com; Expires=Fri, 15-Sep-2023 15:47:47 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
Location: https://ap.lijit.com/beacon?informer=13394437&dnr=1
Content-Length: 0
X-Sovrn-Pod: ad_ap3ams1
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.softschools.com%2F&domain=www.softschools.com&cw=1&lsw=1
178.250.2.146200 OK 22 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.softschools.com%2F&domain=www.softschools.com&cw=1&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 91d4898f938e4920ac88f87453b33933
1bd4a04303c2501101656075ad8304e1a84eb91e
93ecc6762eafd376cbe2fd18250fa9f12c90f9a86b481430ef29ec40716d8f35
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.softschools.com%2F&domain=www.softschools.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.softschools.com/
Origin: https://www.softschools.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:47 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.softschools.com
server-processing-duration-in-ticks: 394936
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?gdpr=0
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=0
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?gdpr=0 HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 15 Sep 2022 15:47:47 GMT
Connection: keep-alive
Vary: Accept-Encoding
eb2.3lift.com/sync?
76.223.111.18200 OK 37 B IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sync? HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:47 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
public.servenobid.com/sync.html
54.230.111.95200 OK 3.4 kB URL HTTP/2 public.servenobid.com/sync.html
IP 54.230.111.95:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8994), with no line terminators
Hash 09391e3a73806c4d8bfc65a80af5b77e
2af47e9c4697cbc2fc85ffd82df02c730cc2d84a
414c319302cd6a47529235c897c33babe4a5f75bf8ef9170c0c845002844b5dd
GET /sync.html HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 17 Aug 2022 23:23:08 GMT
x-amz-meta-codebuild-content-sha256: 4cf0411e60b9185dacd3ae0196e3adabe45eed1b64ea27e89ed58c43c33d4297
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:049b4e88-3480-44ce-bc71-9207efe847a1
x-amz-meta-codebuild-content-md5: 77e8f986028c7819a018b65a51e4d1c5
server: AmazonS3
content-encoding: br
date: Thu, 15 Sep 2022 07:15:43 GMT
cache-control: max-age=86400
etag: W/"3b058e9cd661ca6990301a82cf5d448f"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bAkjnI0c1wHEMixtezh4BAvsFrifjHVxUH9KcL52V31yFPLfFZQr5g==
age: 30724
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/tr/abt?v=182743
18.189.153.196200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/abt?v=182743
IP 18.189.153.196:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/abt?v=182743 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 2079
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 15 Sep 2022 15:47:47 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
sync.serverbid.com/ss/2000891.html
143.204.55.106200 OK 1.2 kB URL HTTP/2 sync.serverbid.com/ss/2000891.html
IP 143.204.55.106:0
File type HTML document text\012- HTML document, ASCII text
Hash d92d72b70b3462aa83a2857c086031c2
abbc1d61dda2091716fe8d0f4f9d97327a4a73a7
869968427d69691fe9b6c44bfa7e6315a5adde2a0d5a5c4d49d99154082fb9c2
GET /ss/2000891.html HTTP/1.1
Host: sync.serverbid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Cookie: CONSUMABLEID=6977e1ee89d64345b7e1ee89d6034552
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Mon, 12 Sep 2022 19:19:39 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 15 Sep 2022 07:22:31 GMT
etag: W/"0e95251901ed7615700b647150c08414"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xKswoskdyWzb1Oea0mCTb1hrok18FNStAH0ZFcpFjeMIjPRruSuNUQ==
age: 30324
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fx.yieldlift.com%2Fsetuid%3Fbidder%3Dpubmatic%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D1YN-%26uid%3D
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fx.yieldlift.com%2Fsetuid%3Fbidder%3Dpubmatic%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D1YN-%26uid%3D
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?predirect=https%3A%2F%2Fx.yieldlift.com%2Fsetuid%3Fbidder%3Dpubmatic%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3D1YN-%26uid%3D HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=114595
expires: Fri, 16 Sep 2022 23:37:43 GMT
date: Thu, 15 Sep 2022 15:47:48 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?p=156319&gdpr=0&predirect=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D3%26src%3D2%26cspi%3D0%26cn%3D3%26spui%3D%26dpui%3D
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=156319&gdpr=0&predirect=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D3%26src%3D2%26cspi%3D0%26cn%3D3%26spui%3D%26dpui%3D
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?p=156319&gdpr=0&predirect=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D3%26src%3D2%26cspi%3D0%26cn%3D3%26spui%3D%26dpui%3D HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=114595
expires: Fri, 16 Sep 2022 23:37:43 GMT
date: Thu, 15 Sep 2022 15:47:48 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Thu, 15 Sep 2022 15:47:48 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=7e12df00-38de-4aed-86ef-c3bcc9bfc99a&gdpr=0&gdpr_consent=&us_privacy=1YN-
server: envoy
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
date: Thu, 15 Sep 2022 15:47:48 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
185.89.211.116307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 3d16990a-9d4f-4944-b3cf-194f07b58720
Set-Cookie: uuid2=2048766502407784838; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:48 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
104.18.18.126302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
IP 104.18.18.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-length: 0
location: /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
cf-ray: 74b280c1b9ff0b41-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YyNJJLC.tfPGISp0PEASRQAA; Path=/; Domain=casalemedia.com; Expires=Fri, 15 Sep 2023 15:47:48 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4445; Path=/; Domain=casalemedia.com; Expires=Wed, 14 Dec 2022 15:47:48 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4445; Path=/; Domain=casalemedia.com; Expires=Wed, 14 Dec 2022 15:47:48 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8n8CZBiGuojAz8EF82FeUQKohdnRK%2B%2BpySarUuZLcxh6iSn3%2FTPeyt8iGf9inzW0lFwCd7qglP5O%2BPJbaqEDwRq6vpKOPSPD6Z2LEm%2FweHbNE%2BaC3l1tG48KQwAgBSxnup4gVAJjn5PiDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 9.5 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18100)
Hash 5c11e730675f95ef3e09fd3d2196bf1d
9d10fe6c5980b12cc1451a49b9562a961313344e
090d3578c840853a44ad9946752a2a7d775be3adf468d128126ab6822615ff44
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?gdpr=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Tue, 13 Sep 2022 16:52:30 GMT
Content-Encoding: gzip
Content-Length: 9452
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=19425
Expires: Thu, 15 Sep 2022 21:11:33 GMT
Date: Thu, 15 Sep 2022 15:47:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 1a53047df206f657661d4ea9a8415b30
19dd5056c574756692cacb66d984f9d289f8ca56
c82d1d8cad671cd8676a115eab76dd8d59e9c32de05aba524d551d7d1473ec38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4845
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:27:03 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 313
eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 15 Sep 2022 15:47:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.211.116200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: e4239c7f-c167-4030-8dc8-a678c32a94ec
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 4da306d5743c1f04af3bbb7c0dfe19d2
e9e01760bb40990668b542113e39418b06e07eb3
6dc42ed0e75e0358c052bd0eec9ff5dbb926f55a225ebcc2fbd78dc254951af5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6533
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 13:58:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
onetag-sys.com/usync/?pubId=6c68086c0c61793
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=6c68086c0c61793
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=6c68086c0c61793 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=327&uid=7e12df00-38de-4aed-86ef-c3bcc9bfc99a&gdpr=0&gdpr_consent=&us_privacy=1YN-
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=327&uid=7e12df00-38de-4aed-86ef-c3bcc9bfc99a&gdpr=0&gdpr_consent=&us_privacy=1YN-
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=7e12df00-38de-4aed-86ef-c3bcc9bfc99a&gdpr=0&gdpr_consent=&us_privacy=1YN- HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ap.lijit.com/pixel?redir=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D4%26spui%3D%26dpui%3D%24UID
72.251.249.9204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?redir=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D4%26spui%3D%26dpui%3D%24UID
IP 72.251.249.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?redir=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D4%26spui%3D%26dpui%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Thu, 15 Sep 2022 15:47:48 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap3ams1
ib.adnxs.com/getuid?https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5551%26spui%3D%26dpui%3D%24UID
185.89.211.116307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5551%26spui%3D%26dpui%3D%24UID
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5551%26spui%3D%26dpui%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fx.serverbid.com%252Fusersync%253Fttt%253D1%2526src%253D2%2526cspi%253D0%2526cn%253D5551%2526spui%253D%2526dpui%253D%2524UID
AN-X-Request-Uuid: a17e9c7f-d238-4d29-a038-7a3b91561b41
Set-Cookie: uuid2=774851311594806540; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:48 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash e6090c36d0faffe2f5c200026fbe3732
6f78e23540c30ef535f278b37ecf997a2e5bff9d
915a307c4e669c37df741f093bd9d55263d435a2feceb7fdcc19d450d0053b44
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 15:30:32 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AO8XjRcE6vud4Uy1cGkpmsbKUIb8boRsXdmPRsAMwtCXL4zM2J0l5g==
Age: 1036
ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
185.86.137.122200 OK 1.1 kB URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
IP 185.86.137.122:0
ASN #201081 SmartAdServer SAS
File type HTML document text\012- HTML document, ASCII text
Hash 4838213fef96772fb0452e7ad975e8fa
1ed48ae10421b34b9c78ee498fbb45c4970d8442
2a3337e6bcdf9cb1a33d58a7bbb870132fb20547afc9aa07d34b979e7544458c
GET /api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 1055
content-type: text/html
date: Thu, 15 Sep 2022 15:47:48 GMT
set-cookie: pid=6974188786330186715; expires=Mon, 16 Oct 2023 15:46:48 GMT; domain=smartadserver.com; path=/; secure; samesite=none
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.211.116200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: fe32809a-ae05-4987-b31f-7b63fb171bc0
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bf650a7da677c881381c8902c747496f
066589fe6e0e3ff51945f028bfdce946ebea8aac
ac26d94ce990dfca5caebb3cb6c74bd2b6bdaa153f3e7e78cd558c6f0d595279
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4853
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:26:55 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
52.31.51.136200 OK 2.8 kB URL HTTP/2 g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
IP 52.31.51.136:0
Hash fe8c133b4f2671db57532e783c959a26
b7b038d078b81c1ab83faf8eaa4ca007b7c015ab
83b0a3197d46d785f067aff35b4f3a9d519f298b613914a84ca10acc6d351e90
GET /usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: text/html;charset=UTF-8
server: nginx
set-cookie: vst=e_2d97daf5-24a5-48ea-8347-99ebdf007d97; Domain=.gumgum.com; Expires=Fri, 15-Sep-2023 15:47:48 GMT; Path=/; Secure; SameSite=None
etag: W/"045524c1f86143662967dd268125f25f0"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
pixel.advertising.com/ups/56621/occ
3.120.95.199302 Found 0 B URL HTTP/2 pixel.advertising.com/ups/56621/occ
IP 3.120.95.199:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/56621/occ HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-length: 0
location: https://ups.analytics.yahoo.com/ups/56621/occ
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fx.serverbid.com%252Fusersync%253Fttt%253D1%2526src%253D2%2526cspi%253D0%2526cn%253D5551%2526spui%253D%2526dpui%253D%2524UID
185.89.211.116302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fx.serverbid.com%252Fusersync%253Fttt%253D1%2526src%253D2%2526cspi%253D0%2526cn%253D5551%2526spui%253D%2526dpui%253D%2524UID
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fx.serverbid.com%252Fusersync%253Fttt%253D1%2526src%253D2%2526cspi%253D0%2526cn%253D5551%2526spui%253D%2526dpui%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sync.serverbid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://x.serverbid.com/usersync?ttt=1&src=2&cspi=0&cn=5551&spui=&dpui=0
AN-X-Request-Uuid: 4834229b-4f40-40d7-b129-a07234cb3d3b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
185.89.211.116307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
AN-X-Request-Uuid: a9fe0939-634a-4a88-a6a3-eeb6bdc9af4a
Set-Cookie: uuid2=4342594581210964491; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:48 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 5a3cf740722cd5379699ecc2a6d19b9a
dc2926cba5b405ef00f9806714d128f89f79b0c3
968af6e4864609fc6d8407a1184e4f292b3acd126d9d6415c8ecfa4ae0de5e4b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 14 Sep 2022 21:59:57 GMT
Expires: Thu, 15 Sep 2022 21:59:57 GMT
ETag: "dc2926cba5b405ef00f9806714d128f89f79b0c3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
72.251.249.9204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
IP 72.251.249.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Thu, 15 Sep 2022 15:47:48 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap3ams1
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e3c83de875a9342e445b7953d827dc41
d5deaf955bdca84a2188c56a33a0c13a25dc128e
693fd5f7e9d01ac372764071ca4adab8d32092832206a081ecc0e7770f5cf240
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 02:15:45 GMT
Expires: Wed, 21 Sep 2022 02:15:44 GMT
Etag: "d5deaf955bdca84a2188c56a33a0c13a25dc128e"
Cache-Control: max-age=469075,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74b280c31e870b65-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 39fd17cdb45bbc328cac3e4142c2f9a5
27bf9255c10f1ddac9fc4ddb264123cb376e3997
52b731a4c137dcffc13e81e4d2c4769c5b6d8d42fb36b787d69ae09e2c60e2de
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:16:35 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uubsIza823iTTFA_yiM_7viU2iNlDeCsZi0ArHowmJgJfeE_g30n1A==
Age: 5473
ads.servenobid.com/sync?pid=333&uid=0
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=333&uid=0
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=333&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_333=0; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
cs.emxdgt.com/um?ssp=pbs&redirect=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D9%26spui%3D%26dpui%3D%24UID
3.75.3.113204 No Content 0 B URL HTTP/2 cs.emxdgt.com/um?ssp=pbs&redirect=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D9%26spui%3D%26dpui%3D%24UID
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?ssp=pbs&redirect=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D9%26spui%3D%26dpui%3D%24UID HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Thu, 15 Sep 2022 15:47:47 GMT
content-length: 0
X-Firefox-Spdy: h2
p.rfihub.com/cm?pub=42786&in=1
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=42786&in=1
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=42786&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 15:47:48 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MjY0sDA2MzAwNhHiM9RNTQ2rzDeuKrP0TzYHAE4nfyglAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 10 Oct 2023 15:47:48 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MjY0sDA2MzAwNhHiM9RNTQ2rzDeuKrP0TzYHAE4nfyglAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_-sS5zU0MzM2MjWzMLMwMTYBAO0Cv00QAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 10 Oct 2023 15:47:48 GMT; Secure; SameSite=None
Location: https://e.serverbid.com/udb/9969/sync/i.gif?partnerId=53&userId=5124322323108360034
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
216.52.2.30302 Found 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
IP 216.52.2.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
set-cookie: ljt_reader=FUizuRZHtUjzKNVDSwCUFclt; Path=/; Domain=.lijit.com; Expires=Fri, 15-Sep-2023 15:47:48 GMT; Max-Age=31536000;Secure;SameSite=None
expires: Fri, 20 Mar 2009 00:00:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
location: https://ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
content-length: 0
pod: X-Sovrn-Pod: ad_ap6ams1
pixel.rubiconproject.com/exchange/sync.php?p=13702&gdpr=0&gdpr_consent=&us_privacy=1YN-&
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=13702&gdpr=0&gdpr_consent=&us_privacy=1YN-&
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=13702&gdpr=0&gdpr_consent=&us_privacy=1YN-& HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 17c962550296893d145ef1b8078fc6d6
Content-Type: image/gif
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3e6c131178768ed3a6f62b2022a578f
c405af5948b92cdf7432495ffa2eff0b024060da
95f9d78f15be73e9be6ec171e094580e976735fae09e07327c7983ddc31a9a2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5894
Cache-Control: max-age=132298
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Etag: "632293e8-1d7"
Expires: Sat, 17 Sep 2022 04:32:46 GMT
Last-Modified: Thu, 15 Sep 2022 02:54:32 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
match.adsrvr.org/track/rid?ttd_pid=prebid&fmt=json
52.223.40.198200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=prebid&fmt=json
IP 52.223.40.198:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fb148eb10a51a1b1a1e55ecc4b4a018e
d4882650495df84964a2d404a3097bfd6c34b9b9
a8590b3aadbcadd4a98d6ebd2db0a64a415b0ed6c13d9ef38f691f9906cc21e7
GET /track/rid?ttd_pid=prebid&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sync.serverbid.com/
Origin: https://sync.serverbid.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Sat, 15 Oct 2022 15:47:48 GMT
vary: Origin
access-control-allow-origin: https://sync.serverbid.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 7bdd24639f7b656dfcc71f86d70100dd
9601f2bda89e51b740c0c2036e25eb97a8e7bf64
72b9a0ab9312107b077b0388e32d9958942e74b64946e13b39bbdb115d4e1b89
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 15 Sep 2022 11:53:19 GMT
Expires: Fri, 16 Sep 2022 11:53:19 GMT
ETag: "9601f2bda89e51b740c0c2036e25eb97a8e7bf64"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
p.rfihub.com/cm?pub=44007&in=1
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=44007&in=1
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=44007&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 15:47:48 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0NjQwNzc3MjI1NTGwtDAyNhbiM9TNdPJyTAvPzM8Kc_EAADkOvGAlAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 10 Oct 2023 15:47:48 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0NjQwNzc3MjI1NTGwtDAyNhbiM9TNdPJyTAvPzM8Kc_EAADkOvGAlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_zslzmtoZmZsZGpmYWZhYmkIABLoROkQAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 10 Oct 2023 15:47:48 GMT; Secure; SameSite=None
Location: https://ads.servenobid.com/sync?pid=324&uid=5131077722554098233
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
x.yieldlift.com/getuid?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D314%26uid%3D%24UID
3.230.47.190301 Moved Permanently 119 B URL HTTP/1.1 x.yieldlift.com/getuid?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D314%26uid%3D%24UID
IP 3.230.47.190:0
File type HTML document, ASCII text
Hash 83b2c561bd17177a1d87ccfc40d68f59
4de85f3d37ef8db8f90bf6f3f9f020f83f170ec4
a1dbed0639bffee5e79f820ea461b069a05b07784fb75b06e7af1a56835428d7
GET /getuid?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D314%26uid%3D%24UID HTTP/1.1
Host: x.yieldlift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Date: Thu, 15 Sep 2022 15:47:48 GMT
Location: https://ads.servenobid.com/sync?pid=314&uid=0631b612-84c4-436a-b11a-2c1e78ce8b25
Set-Cookie: ylxuid=0631b612-84c4-436a-b11a-2c1e78ce8b25; Path=/; Expires=Sat, 15 Oct 2022 15:47:48 GMT; Secure; SameSite=None
Vary: Origin
Content-Length: 119
Connection: keep-alive
ads.servenobid.com/sync?pid=317&uid=6974188786330186715&gdpr=0&gdpr_consent=
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=317&uid=6974188786330186715&gdpr=0&gdpr_consent=
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=317&uid=6974188786330186715&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; pid_333=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_317=6974188786330186715; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=114595
expires: Fri, 16 Sep 2022 23:37:43 GMT
date: Thu, 15 Sep 2022 15:47:48 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58559/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58559/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBCRJI2MCEFNLEqEma82h-Ugx9f-RprAFEgEBAQGaJGMtYwAAAAAA_eMAAA&S=AQAAAtI-pGkoREPf0qbkdjhuT34; Expires=Fri, 15 Sep 2023 21:47:48 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 7d31dfa2a97e7eedcffeca4c6a20e7c3
429d61af41dc41e0f69cd9d5c1a6a691eb23ab84
5721c0065d4c2a9e2c7176c45a5f439fd7c4e5ddf179b1a0e2af637fe3a5cf84
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 15 Sep 2022 11:16:42 GMT
Expires: Fri, 16 Sep 2022 11:16:42 GMT
ETag: "429d61af41dc41e0f69cd9d5c1a6a691eb23ab84"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=gumgum HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=gumgum
date: Thu, 15 Sep 2022 15:47:48 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3e6c131178768ed3a6f62b2022a578f
c405af5948b92cdf7432495ffa2eff0b024060da
95f9d78f15be73e9be6ec171e094580e976735fae09e07327c7983ddc31a9a2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5973
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:08:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
3.75.3.113302 Found 0 B URL HTTP/2 cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent= HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html
date: Thu, 15 Sep 2022 15:47:47 GMT
location: https://ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
set-cookie: euid=57471663256868542131f1; Max-Age=2592000; Expires=Sat, 15 Oct 2022 15:47:47 GMT; Domain=.emxdgt.com; Path=/; HttpOnly
content-length: 0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=309&uid=e_2d97daf5-24a5-48ea-8347-99ebdf007d97
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=309&uid=e_2d97daf5-24a5-48ea-8347-99ebdf007d97
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=309&uid=e_2d97daf5-24a5-48ea-8347-99ebdf007d97 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; pid_333=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_309=e_2d97daf5-24a5-48ea-8347-99ebdf007d97; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
185.89.211.116302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ads.servenobid.com/sync?pid=312&uid=0
AN-X-Request-Uuid: 638880e2-b1c6-408f-a26c-52d9ec62b301
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/56621/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/56621/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/56621/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sync.serverbid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/56621/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBCRJI2MCEDigua4vYBFtzD4M9Dz7uL0FEgEBAQGaJGMtYwAAAAAA_eMAAA&S=AQAAAoN5w6E1BYfbOJvr_O5fUQI; Expires=Fri, 15 Sep 2023 21:47:48 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?p=gumgum
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=gumgum
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=gumgum HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 15 Sep 2022 15:47:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
151.101.86.49503 Service Unavailable 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
IP 151.101.86.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
server: Varnish
retry-after: 0
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1657-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663256869.623162,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58632/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58632/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBCRJI2MCEFo1ONvpZEhnMoYA5ezQ4aoFEgEBAQGaJGMtYwAAAAAA_eMAAA&S=AQAAAnnfQGlKcexuVzWuWklQTxE; Expires=Fri, 15 Sep 2023 21:47:48 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
185.89.211.116307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA== HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
AN-X-Request-Uuid: ca2578e4-7eeb-4b03-8427-1524ad1a9e41
Set-Cookie: uuid2=5366371648641953335; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:48 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ads.servenobid.com/sync?pid=314&uid=0631b612-84c4-436a-b11a-2c1e78ce8b25
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=314&uid=0631b612-84c4-436a-b11a-2c1e78ce8b25
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=314&uid=0631b612-84c4-436a-b11a-2c1e78ce8b25 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; pid_333=0; pid_317=6974188786330186715; pid_309=e_2d97daf5-24a5-48ea-8347-99ebdf007d97
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_314=0631b612-84c4-436a-b11a-2c1e78ce8b25; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
sync-tm.everesttech.net/upi/pid/gjIEMT18?redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D94%26partneruserid%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
151.101.86.49503 Service Unavailable 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/gjIEMT18?redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D94%26partneruserid%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
IP 151.101.86.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/gjIEMT18?redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D94%26partneruserid%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
server: Varnish
retry-after: 0
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1657-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663256869.660521,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
216.52.2.30204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
IP 216.52.2.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
date: Thu, 15 Sep 2022 15:47:48 GMT
set-cookie: ljt_reader=FUizuRZHePxbHU5rSfuwg4io; Path=/; Domain=.lijit.com; Expires=Fri, 15-Sep-2023 15:47:48 GMT; Max-Age=31536000;Secure;SameSite=None
expires: Fri, 20 Mar 2009 00:00:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
pod: X-Sovrn-Pod: ad_ap6ams1
ups.analytics.yahoo.com/ups/56621/occ?verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/56621/occ?verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/56621/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sync.serverbid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:48 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBCRJI2MCECDy_bsrXh2sMLGPIRuk3VYFEgEBAQGaJGMtYwAAAAAA_eMAAA&S=AQAAAhjEF8DOYjSRmcqSTs-3z4s; Expires=Fri, 15 Sep 2023 21:47:48 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
sync.go.sonobi.com/usa?loc=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5444%26spui%3D%26dpui%3D
69.166.1.10302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/usa?loc=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5444%26spui%3D%26dpui%3D
IP 69.166.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usa?loc=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5444%26spui%3D%26dpui%3D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-7-8
X-Xss-Protection: 0
Location: https://x.serverbid.com/usersync?ttt=1&src=2&cspi=0&cn=5444&spui=&dpui=c576a962-6b48-469e-b6ce-be3666eec090
Server: sonobi-go
Set-Cookie: __uis=c576a962-6b48-469e-b6ce-be3666eec090; expires=Sat, 15 Oct 2022 15:47:47 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s878|YyNJF; path=/; domain=.go.sonobi.com; SameSite=None; secure
ads.servenobid.com/sync?pid=324&uid=5131077722554098233
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=324&uid=5131077722554098233
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=324&uid=5131077722554098233 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; pid_333=0; pid_317=6974188786330186715; pid_309=e_2d97daf5-24a5-48ea-8347-99ebdf007d97
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_324=5131077722554098233; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1663256868448
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1663256868448
IP 213.19.147.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1663256868448 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://ads.servenobid.com/sync?pid=321&uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83efff2f586bc0a2df4f157ec26e6bb2
2499cb056f6d45a2c8516e7bb830b73174108243
d825fc8e8625b9771681fbd974d42b7f408014bdc0b70010b3298570d15477d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3904
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:42:44 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ads.servenobid.com/sync?pid=312&uid=0
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=312&uid=0
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=312&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; pid_333=0; pid_317=6974188786330186715; pid_309=e_2d97daf5-24a5-48ea-8347-99ebdf007d97; pid_314=0631b612-84c4-436a-b11a-2c1e78ce8b25
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_312=0; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58632/occ?verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ?verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 15 Sep 2022 15:47:48 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBCRJI2MCEFcAriZP5D1zhagL8P9gubUFEgEBAQGaJGMtYwAAAAAA_eMAAA&S=AQAAAmkt0f6845_U7fzHnZi28Iw; Expires=Fri, 15 Sep 2023 21:47:48 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV8yZDk3ZGFmNS0yNGE1LTQ4ZWEtODM0Ny05OWViZGYwMDdkOTc=&gdpr=0&gdpr_consent=
142.250.74.66302 Found 364 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV8yZDk3ZGFmNS0yNGE1LTQ4ZWEtODM0Ny05OWViZGYwMDdkOTc=&gdpr=0&gdpr_consent=
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0d57b33a424b29a134bce85b79016464
a770e24afc3ac914083c196bf153f39c2bae17df
907d97688a8904fc1c7adf282323cac2e8329c30f570bd0876f73d4221653d59
GET /pixel?google_nid=gumgum_dbm&google_hm=ZV8yZDk3ZGFmNS0yNGE1LTQ4ZWEtODM0Ny05OWViZGYwMDdkOTc=&gdpr=0&gdpr_consent= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV8yZDk3ZGFmNS0yNGE1LTQ4ZWEtODM0Ny05OWViZGYwMDdkOTc=&gdpr=0&gdpr_consent=&google_tc=
date: Thu, 15 Sep 2022 15:47:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 364
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 15-Sep-2022 16:02:48 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=321&uid=OPTOUT
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=321&uid=OPTOUT
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=321&uid=OPTOUT HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; pid_333=0; pid_317=6974188786330186715; pid_309=e_2d97daf5-24a5-48ea-8347-99ebdf007d97; pid_314=0631b612-84c4-436a-b11a-2c1e78ce8b25
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_321=OPTOUT; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:48 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
e.serverbid.com/udb/9969/sync/i.gif?partnerId=53&userId=5124322323108360034
159.89.246.130200 OK 58 B URL HTTP/2 e.serverbid.com/udb/9969/sync/i.gif?partnerId=53&userId=5124322323108360034
IP 159.89.246.130:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash faa2536347ecdf485cf5bc94135a5fda
bdac3d5ca7fcae7c68ed542c7ff20cbee0814e58
ee3bd8d781681ec388e38b048bb0ac3b483c2b980ac6ea94f04c626814276541
GET /udb/9969/sync/i.gif?partnerId=53&userId=5124322323108360034 HTTP/1.1
Host: e.serverbid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sync.serverbid.com/
Connection: keep-alive
Cookie: CONSUMABLEID=6977e1ee89d64345b7e1ee89d6034552
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://sync.serverbid.com
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 10080
content-type: image/gif
content-length: 58
content-encoding: gzip
date: Thu, 15 Sep 2022 15:47:48 GMT
X-Firefox-Spdy: h2
x.serverbid.com/usersync?ttt=1&src=2&cspi=0&cn=5551&spui=&dpui=0
159.89.246.130200 OK 58 B URL HTTP/2 x.serverbid.com/usersync?ttt=1&src=2&cspi=0&cn=5551&spui=&dpui=0
IP 159.89.246.130:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash faa2536347ecdf485cf5bc94135a5fda
bdac3d5ca7fcae7c68ed542c7ff20cbee0814e58
ee3bd8d781681ec388e38b048bb0ac3b483c2b980ac6ea94f04c626814276541
GET /usersync?ttt=1&src=2&cspi=0&cn=5551&spui=&dpui=0 HTTP/1.1
Host: x.serverbid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sync.serverbid.com/
Connection: keep-alive
Cookie: CONSUMABLEID=6977e1ee89d64345b7e1ee89d6034552
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://sync.serverbid.com
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 10080
content-type: image/gif
content-length: 58
content-encoding: gzip
set-cookie: CONSUMABLEID=6977e1ee89d64345b7e1ee89d6034552; Max-Age=1296000; Expires=Fri, 30 Sep 2022 15:47:48 GMT; Path=/; Domain=.serverbid.com; Secure; SameSite=None
date: Thu, 15 Sep 2022 15:47:48 GMT
X-Firefox-Spdy: h2
x.serverbid.com/usersync?ttt=1&src=2&cspi=0&cn=5528&spui=&dpui=0
159.89.246.130200 OK 58 B URL HTTP/2 x.serverbid.com/usersync?ttt=1&src=2&cspi=0&cn=5528&spui=&dpui=0
IP 159.89.246.130:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash faa2536347ecdf485cf5bc94135a5fda
bdac3d5ca7fcae7c68ed542c7ff20cbee0814e58
ee3bd8d781681ec388e38b048bb0ac3b483c2b980ac6ea94f04c626814276541
GET /usersync?ttt=1&src=2&cspi=0&cn=5528&spui=&dpui=0 HTTP/1.1
Host: x.serverbid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sync.serverbid.com/
Connection: keep-alive
Cookie: CONSUMABLEID=6977e1ee89d64345b7e1ee89d6034552
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://sync.serverbid.com
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 10080
content-type: image/gif
content-length: 58
content-encoding: gzip
set-cookie: CONSUMABLEID=6977e1ee89d64345b7e1ee89d6034552; Max-Age=1296000; Expires=Fri, 30 Sep 2022 15:47:48 GMT; Path=/; Domain=.serverbid.com; Secure; SameSite=None
date: Thu, 15 Sep 2022 15:47:48 GMT
X-Firefox-Spdy: h2
sync.colossusssp.com/pbs.gif?gdpr=0&gdpr_consent=&us_privacy=&redir=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5974%26spui%3D%26dpui%3D%5BUID%5D
8.2.111.121302 Found 0 B URL HTTP/1.1 sync.colossusssp.com/pbs.gif?gdpr=0&gdpr_consent=&us_privacy=&redir=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5974%26spui%3D%26dpui%3D%5BUID%5D
IP 8.2.111.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pbs.gif?gdpr=0&gdpr_consent=&us_privacy=&redir=https%3A%2F%2Fx.serverbid.com%2Fusersync%3Fttt%3D1%26src%3D2%26cspi%3D0%26cn%3D5974%26spui%3D%26dpui%3D%5BUID%5D HTTP/1.1
Host: sync.colossusssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sync.serverbid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 15 Sep 2022 15:47:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: gtm_usr=23ff9f51-1896-44d4-a43b-9b1e6b7437aa; path=/; domain=.colossusssp.com; expires=Fri, 15 Sep 2023 15:47:48 GMT;SameSite=None;Secure
lmg_r=11; path=/; domain=.colossusssp.com; expires=Fri, 15 Sep 2023 15:47:48 GMT;SameSite=None;Secure
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Location: https://x.serverbid.com/usersync?ttt=1&src=2&cspi=0&cn=5974&spui=&dpui=23ff9f51-1896-44d4-a43b-9b1e6b7437aa
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
creativecdn.com/cm-notify?pi=gumgum
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm-notify?pi=gumgum HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=FeiDMsk0yej2H9bntlUL;Path=/;Domain=.creativecdn.com;Expires=Fri, 15-Sep-2023 15:47:48 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1663256868;Path=/;Domain=.creativecdn.com;Expires=Fri, 15-Sep-2023 15:47:48 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/cm-notify?pi=gumgum&tc=1
content-length: 0
X-Firefox-Spdy: h2
sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
69.166.1.10302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
IP 69.166.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-33
X-Xss-Protection: 0
Location: https://ads.servenobid.com/sync?pid=332&uid=dda7a73a-a592-4aad-a4eb-699c6d8dd29c
Server: sonobi-go
Set-Cookie: __uis=dda7a73a-a592-4aad-a4eb-699c6d8dd29c; expires=Sat, 15 Oct 2022 15:47:48 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s8533|YyNJF; path=/; domain=.go.sonobi.com; SameSite=None; secure
match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
52.223.40.198200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV8yZDk3ZGFmNS0yNGE1LTQ4ZWEtODM0Ny05OWViZGYwMDdkOTc=&gdpr=0&gdpr_consent=&google_tc=
142.250.74.66200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV8yZDk3ZGFmNS0yNGE1LTQ4ZWEtODM0Ny05OWViZGYwMDdkOTc=&gdpr=0&gdpr_consent=&google_tc=
IP 142.250.74.66:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=gumgum_dbm&google_hm=ZV8yZDk3ZGFmNS0yNGE1LTQ4ZWEtODM0Ny05OWViZGYwMDdkOTc=&gdpr=0&gdpr_consent=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Thu, 15 Sep 2022 15:47:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
creativecdn.com/cm-notify?pi=gumgum&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=gumgum&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
185.89.210.141307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
IP 185.89.210.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
AN-X-Request-Uuid: 96e9919f-c57f-45f7-a27b-d1252230d2a9
Set-Cookie: uuid2=7912248747850715193; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 14-Dec-2022 15:47:48 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 950.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 3d4392cf3f257d7e1bea46927430f1a5
827186a8b74f462cd48001d20b4d182c3420aab9
eee2badf87c997522b3042a3c92d7a3bc23662b18a62d469e2c28d170ac37eff
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 15:14:58 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6fEAwxyDr_ezUOSrZifl4hOEjm8FdiyNUqRxFEJb6CPgdNQ4VW8jnA==
Age: 1970
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 792ef6336ac67eec05c802ebd9f54acd
e625884330875be6e7c0a297d50077037f3e6152
fa1033e2724e834db1f9fa5ed348cecf820d630d1fee5c6267650108e6989077
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5775
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:11:34 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
185.86.137.122302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
IP 185.86.137.122:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Thu, 15 Sep 2022 15:47:48 GMT
location: https://usersync.gumgum.com/usersync?b=sad&i=6326629965747532781
set-cookie: pid=6326629965747532781; expires=Mon, 16 Oct 2023 15:46:48 GMT; domain=smartadserver.com; path=/; secure; samesite=none
sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
185.29.134.244302 Moved Temporarily 0 B URL HTTP/1.1 sync.mathtag.com/sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d
IP 185.29.134.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/img?mt_exid=71&gdpr=0&gdpr_consent=&redir=https%3a%2f%2fusersync.gumgum.com%2fusersync%3fb%3dmmh%26i%3d%5bMM_UUID%5d HTTP/1.1
Host: sync.mathtag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Access-Control-Allow-Origin: *
Server: MT3 4505 5b23575 master cdg-pixel-x35 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: uuid=fa2e6323-4924-4100-b284-2a0398aea46e; domain=.mathtag.com; path=/; expires=Fri, 13-Oct-2023 15:47:48 GMT; SameSite=None; Secure
location: https://usersync.gumgum.com/usersync?b=mmh&i=fa2e6323-4924-4100-b284-2a0398aea46e&gdpr=0&gdpr_consent=
Expires: Thu, 15 Sep 2022 15:47:47 GMT
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
185.89.211.116302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcs.emxdgt.com%2Fumcheck%3Fapnxid%3D%24UID%26redirect%3Dhttps%253A%252F%252Fusersync.gumgum.com%252Fusersync%253Fb%253Demx%2526i%253D%2524EMXUID%26b64_redirect%3DaHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA%3D%3D HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
AN-X-Request-Uuid: ea44b0eb-6b66-48cc-bef5-c3b8929929fb
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
a.audrte.com/get?p=M501991648&r=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D141%26partneruserid%3D$UID&gdpr=0&gdpr_consent=
35.172.39.147302 0 B URL HTTP/1.1 a.audrte.com/get?p=M501991648&r=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D141%26partneruserid%3D$UID&gdpr=0&gdpr_consent=
IP 35.172.39.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /get?p=M501991648&r=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D141%26partneruserid%3D$UID&gdpr=0&gdpr_consent= HTTP/1.1
Host: a.audrte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Allow-Origin: *
Date: Thu, 15 Sep 2022 15:47:48 GMT
Location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=141&partneruserid=cigg4H-ptBPSBOYBX1wQWZ17w&gdpr=0&gdpr_consent=&redirurl=https%3A%2F%2Fa.audrte.com%2Fmatch%3Fuid%3DSMART_USER_ID%26p%3DM501991648
Server: nginx/1.18.0
Set-Cookie: arcki2=cigg4H-ptBPSBOYBX1wQWZ17w!20220908!1663256868888; Max-Age=1296000; Expires=Fri, 30-Sep-2022 15:47:48 GMT; Domain=audrte.com; Path=/; Secure; HttpOnly; SameSite=none; Secure
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e71ead8306f11f0bc5c3039cae0577ce
28b4453a659d96cdb9c303bdfa0b0cd8136dbfc1
78dfc1c24860952d69dca84fec003b1b4acea7d301b4c7643a3cbf947e14933c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3993
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:41:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 541c26a019f0601701f2bfe34e6929c9
3ad6167a5eed8507f406a017386ce08498e63107
105db812a834e5396ef6c0f641004941bb3526a763eb99c658fc89da43b7f657
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 15:08:28 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Eust6NSI41NEIVB5mIRFk0CgXVqQuFuxjt_q7TQ98EcMvNb7dGmpQA==
Age: 2361
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 812f14fed2dd6db2ac2f69ed686637d4
e88e629fc6025053e63ec43650d1a9c6df50db4f
73c50ee61c1b379b38824b71d013ac9855c17ccfb74e547231498c303987c074
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 03:11:56 GMT
Expires: Wed, 21 Sep 2022 03:11:55 GMT
Etag: "e88e629fc6025053e63ec43650d1a9c6df50db4f"
Cache-Control: max-age=472446,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74b280c5d95c0b65-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f370e89-6cc5-4da8-83dc-68d5a685ce0f.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f370e89-6cc5-4da8-83dc-68d5a685ce0f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a05eafb022d09a0c88432fe018f2c325
b8ae9f4346fe63c5aa7a3b07ef84eac8fc63ca94
91b3994632d954d1c93ee53a46d2d8850ebe387af40962aad787d341b742e9f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f370e89-6cc5-4da8-83dc-68d5a685ce0f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9340
x-amzn-requestid: 23ab295a-91a0-4a91-ba26-8302088a50c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNxvmEPIIAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bc996-10ccfaf45b93ef066901573d;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 23:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j_TffmLpWMBRCuHyrY6e6DuD3g8nOMX296pqnkra4KHsAwSkXj-3_w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:00:43 GMT
age: 64025
etag: "b8ae9f4346fe63c5aa7a3b07ef84eac8fc63ca94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
3.75.3.113200 OK 43 B URL HTTP/2 cs.emxdgt.com/umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
IP 3.75.3.113:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /umcheck?apnxid=0&redirect=https://usersync.gumgum.com/usersync?b=emx&i=$EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA== HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
date: Thu, 15 Sep 2022 15:47:48 GMT
x-nosync: na;
content-length: 43
X-Firefox-Spdy: h2
pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
34.246.57.76200 OK 43 B URL HTTP/2 pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
IP 34.246.57.76:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 13e1c7a2184e36d7ae519e99b1aa226f
355ccad4eac39838e1cc76fd0b670fd2ea1e5aa3
48a33ca9f42b91902d57ad8ac52e1ce32b92c8c10c732f2dbb6fe960ebfd9438
GET /sync/gumgum?gdpr=0&gdpr_consent= HTTP/1.1
Host: pr-bh.ybp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/gif
content-length: 43
age: 0
strict-transport-security: max-age=31536000
server: ATS
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 911722b49a5dee2c225bff5c55aaaf0f
bdfc8db4f74ed54f10f30da9b8b3e41e1978a38e
0034b4b13b147928750f064f6308304af9da112f16ba3f32ee823c2b6ca6f0a3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:48 GMT
Last-Modified: Thu, 15 Sep 2022 14:07:41 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PtcGhfLPoKeOYXiwiT9EIsV0QX9Y46PRwKRuRoAztmm-_WZlJ_ppRg==
Age: 6007
visitor.omnitagjs.com/visitor/bsync?uid=627080440e659fbe0f85333c665ae1de&name=SMARTADSERVER&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D117%26partneruserid%3DPARTNER_USER_ID%26gdpr%3DGDPR%26gdpr_consent%3DGDPR_CONSENT&gdpr=0&gdpr_consent=
185.255.84.153307 Temporary Redirect 0 B URL HTTP/2 visitor.omnitagjs.com/visitor/bsync?uid=627080440e659fbe0f85333c665ae1de&name=SMARTADSERVER&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D117%26partneruserid%3DPARTNER_USER_ID%26gdpr%3DGDPR%26gdpr_consent%3DGDPR_CONSENT&gdpr=0&gdpr_consent=
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /visitor/bsync?uid=627080440e659fbe0f85333c665ae1de&name=SMARTADSERVER&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D117%26partneruserid%3DPARTNER_USER_ID%26gdpr%3DGDPR%26gdpr_consent%3DGDPR_CONSENT&gdpr=0&gdpr_consent= HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store, must-revalidate
expires: 0
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=117&partneruserid=aaf7aff8c458a33431fdf7aba61188c9&gdpr=0&gdpr_consent=0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=aaf7aff8c458a33431fdf7aba61188c9; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 15 Sep 2022 15:47:48 GMT
content-length: 0
x-envoy-upstream-service-time: 4
server: ayl-lb-fra02
X-Firefox-Spdy: h2
pixel-us-east.rubiconproject.com/exchange/sync.php?p=duration_media
8.43.72.97204 No Content 0 B URL HTTP/1.1 pixel-us-east.rubiconproject.com/exchange/sync.php?p=duration_media
IP 8.43.72.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=duration_media HTTP/1.1
Host: pixel-us-east.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: a414d61fde5a538d1bc5c621aec59518
Content-Type: image/gif
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 11109096fd224180f5db52dd46201a9f
50b3f3f452339bc76bf97cd4b9a447a2fcd5186f
684b5126ce546af2d69ce93ae175224b790e25337790333efb356e5c3e612c6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2270
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:49 GMT
Last-Modified: Thu, 15 Sep 2022 15:09:59 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
64.202.112.191302 Found 0 B URL HTTP/1.1 sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
IP 64.202.112.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 15 Sep 2022 15:47:49 GMT
Content-Length: 0
Connection: close
set-cookie: obuid=591825d0-5a70-418d-a4bc-2db24ea4cd44; Max-Age=7776000; Expires=Wed, 14 Dec 2022 15:47:49 GMT; Path=/; Domain=.outbrain.com
location: https://usersync.gumgum.com/usersync?b=obn&i=ENC%281Z9FCxK_VvgN9u1OwePVgSP09vMJAs6Lm6NdOG5HdiBZ1WOsCIB1qIfbjwk-Fsk9%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%281Z9FCxK_VvgN9u1OwePVgSP09vMJAs6Lm6NdOG5HdiBZ1WOsCIB1qIfbjwk-Fsk9%29
X-TraceId: 5655d09340fe6f49515f25e8cff02798
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash ed2f81310fc165227216239733c209ed
6ca2582abd7217e69c33c951423d3a897bc4c2d5
1ef558601afbbaaabf54bf74323779e9516db1393988ddcb366537f134491833
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:49 GMT
Last-Modified: Thu, 15 Sep 2022 14:25:13 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zvWLxt9hgCd0VhD8CWQ8pugD8ahf5pkkMg2bimEmlZaLHrkPnydTKg==
Age: 4956
usersync.gumgum.com/usersync?b=iex&i=0
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=iex&i=0
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=iex&i=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 15 Sep 2022 15:47:49 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash e1defd3695c4abd1a499adf690f0a110
3551a4a79bbcc0bf239c781f2bf11e7dc38facaa
4c05d656a3d828d93200fc0c55edf363d07d07857888996e718f1be50752bef3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:49 GMT
Last-Modified: Thu, 15 Sep 2022 15:07:31 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kP9n2yorbsR7RAthJoNDY3iXVwombiRn_lxMmXX-h-GiQN0j4Z_y-w==
Age: 2418
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash bb0621a9272d9b16f2e9ebd04e1fa0a4
18c188d8e72979c17da7af1a4e86962130166ed9
fd5c9ab7f2c86b13ee4700b5e148aaf499bb86612851b1ebf0ffdd8829de883d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 15:47:49 GMT
Last-Modified: Thu, 15 Sep 2022 15:08:26 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0nLlENUVgT_fX7No-IFEh8R6XD1Wl8Jib20o1MBKvLBsyr8kq939WQ==
Age: 2363
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
185.89.210.141302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
IP 185.89.210.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 15 Sep 2022 15:47:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://usersync.gumgum.com/usersync?b=apn&i=0
AN-X-Request-Uuid: 954d9211-b600-4cfe-a1a8-172822c0b865
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 950.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ads.servenobid.com/sync?pid=332&uid=dda7a73a-a592-4aad-a4eb-699c6d8dd29c
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=332&uid=dda7a73a-a592-4aad-a4eb-699c6d8dd29c
IP 52.48.53.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=332&uid=dda7a73a-a592-4aad-a4eb-699c6d8dd29c HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=7e12df00-38de-4aed-86ef-c3bcc9bfc99a; pid_333=0; pid_317=6974188786330186715; pid_309=e_2d97daf5-24a5-48ea-8347-99ebdf007d97; pid_314=0631b612-84c4-436a-b11a-2c1e78ce8b25; pid_324=5131077722554098233; pid_312=0; pid_321=OPTOUT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:49 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_332=dda7a73a-a592-4aad-a4eb-699c6d8dd29c; domain=servenobid.com; SameSite=None; Expires=Thu, 22 Sep 2022 15:47:49 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1f2ff0fea7939e810ad4c60fe553b6f4
16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0
9b46d70511b3a16eb5a682cd0acb13f185570ca55be11ccbcff285428e58e2e4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 15:47:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 17:09:30 GMT
Expires: Tue, 20 Sep 2022 17:09:29 GMT
Etag: "16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0"
Cache-Control: max-age=436299,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74b280c6bb95b51d-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f2134af1e0e88b9f4e12aee8ef89f148
4586affbb6d279d17a01da455e045ea3ab92a7df
d6197b989eae03c3b6c5f2e65c782bf428132effda1028f67c7640033a9d11c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3548
Cache-Control: max-age=87478
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 15:47:49 GMT
Etag: "6321edff-1d7"
Expires: Fri, 16 Sep 2022 16:05:47 GMT
Last-Modified: Wed, 14 Sep 2022 15:06:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
qd.admetricspro.com/js/cmp2/vendor-list.json
104.26.7.218200 OK 0 B URL HTTP/2 qd.admetricspro.com/js/cmp2/vendor-list.json
IP 104.26.7.218:0
GET /js/cmp2/vendor-list.json HTTP/1.1
Host: qd.admetricspro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:41 GMT
content-type: application/json
last-modified: Tue, 03 May 2022 16:25:12 GMT
etag: W/"4f6fe-5de1df3ffe732"
cache-control: max-age=14400
expires: Thu, 15 Sep 2022 15:49:59 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L6BvMXECR3lcX8oqyWNNmMmIH3zlgB1%2B5qjVJsx97bXCK2ZMxw8iygiCxR2wUOjpClbgynSkz%2BoEYVOnFdWsONss%2BaGQTWR1Ogu2oGB129sybBf9hVX4oKXWETNju9ba%2Fc%2Bz%2BJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b280992bde0b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.2.114200 OK 0 B IP 104.18.2.114:0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3958
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.softschools.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=4dex.io; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure; SameSite=None
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b2809cb942b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3d3b3278b5d426b5801994e1924969fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 15:47:44 GMT
date: Thu, 15 Sep 2022 15:47:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
IP 213.19.147.44:0
GET /usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-3177b449-4e90-4286-a019-4bb60f5d70bc-003%22%2C%22zdxidn%22%3A%221506%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D%22%7D; path=/; expires=Fri, 15 Sep 2023 15:47:48 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663256868627
etag: RX3177b4494e904286a0194bb60f5d70bc003
X-Firefox-Spdy: h2
qd.admetricspro.com/js/softschools/uspcmp.js
104.26.7.218200 OK 0 B URL HTTP/2 qd.admetricspro.com/js/softschools/uspcmp.js
IP 104.26.7.218:0
GET /js/softschools/uspcmp.js HTTP/1.1
Host: qd.admetricspro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:40 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:57:45 GMT
etag: W/"2a41c-5e80872b87448-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
expires: Thu, 15 Sep 2022 15:50:34 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LPZcVUDspuCPI%2B3ck62Bd6Wtaro4I9n4PcUEXczxr8MobnBUsi2fK%2F08OfUeSop7d9F%2BxUeUcg8z6%2Fg6vAAETQyrHnIquDz520QlfLnxxiGLce2Ep48EZT59RCXAntDm1ryMuDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74b28094af6f0b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
143.204.46.73200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 143.204.46.73:0
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 15 Sep 2022 13:36:04 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 15 Sep 2022 13:35:39 GMT
etag: W/"a4d296427fc806b21335359e398c025c"
cache-control: public, max-age=86400
x-amz-version-id: oGiGhs4ZfjJg.LB2Yi6O9XMZXNC6Xrry
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -S25LWiMaXKp1l_ofFnX_ZhGKvEda4e0HGu7mwEq-gnURCOobLUdaA==
age: 7898
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
IP 213.19.147.44:0
GET /usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-a01d3580-56fa-4367-b23e-72cf904d6050-003%22%2C%22zdxidn%22%3A%222069.26%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D%22%7D; path=/; expires=Fri, 15 Sep 2023 15:47:48 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1663256868448
etag: RXa01d358056fa4367b23e72cf904d6050003
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663256868627
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663256868627
IP 213.19.147.44:0
GET /usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1663256868627 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
qd.admetricspro.com/js/softschools/prebid.js
104.26.7.218200 OK 0 B URL HTTP/2 qd.admetricspro.com/js/softschools/prebid.js
IP 104.26.7.218:0
GET /js/softschools/prebid.js HTTP/1.1
Host: qd.admetricspro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:40 GMT
content-type: application/javascript
last-modified: Mon, 02 May 2022 16:56:40 GMT
etag: W/"72c32-5de0a46b45676-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
expires: Thu, 15 Sep 2022 15:50:34 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ao6gzSkF5wDMSAl3LeX2uESMhDMLmKUak2YWTpzK%2FZkAbkmLPm%2F8YG5c7wpNmtJN2KP0ytZ7oEzYCmjfDQRiGmBke%2FVzG1bCY8EesfhLS0B6Yp0OixMNrb2qPk0JRV18kYiZ2w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74b28094bf7d0b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
104.18.18.126200 OK 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
IP 104.18.18.126:0
GET /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: text/html
cf-ray: 74b280c21a4b0b41-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G3acfyj1mY9vCKwOPUDHHA0WjLjrQVyWSFi9k0ZVUbjrCUhoeHE17xruKsGcKIjfuQlniywv2fMRvhDyptN5wAWtIuHCtawr2pHBO5jyC0cA4F10h7aTAwAMY3pHKFtgUJcxeN2qySH%2FzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.servenobid.com/adreq?cb=4153
52.48.53.23200 OK 0 B URL HTTP/2 ads.servenobid.com/adreq?cb=4153
IP 52.48.53.23:0
POST /adreq?cb=4153 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1201
Origin: https://www.softschools.com
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: application/json
access-control-allow-origin: https://www.softschools.com
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
qd.admetricspro.com/js/softschools/cmp.js
104.26.7.218200 OK 0 B URL HTTP/2 qd.admetricspro.com/js/softschools/cmp.js
IP 104.26.7.218:0
GET /js/softschools/cmp.js HTTP/1.1
Host: qd.admetricspro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:40 GMT
content-type: application/javascript
last-modified: Tue, 01 Jun 2021 14:47:10 GMT
etag: W/"4d957-5c3b56abf6028-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
expires: Thu, 15 Sep 2022 15:50:34 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uajpGnX1HR66%2FacIYGE3V5GOIpQ1DRHuOaByyDcpu2lk5yLPhZJIlsk6XZouNY1fXcN7b4DRUf9GTBUi63fnp36Z6lgYbgdeMs3QEu1%2BzscxuUdmOHvC9biXbz0fVttSLIEETCU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74b28094af750b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
143.204.46.73200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 143.204.46.73:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 15 Sep 2022 15:42:20 GMT
last-modified: Thu, 01 Sep 2022 20:50:54 GMT
etag: W/"350e165fc9b88312c43a9ba90eba4e3d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 00746b020527dcdbeca0dab6f6de299a.cloudfront.net (CloudFront), 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-C1
x-amz-cf-id: G27ZilPRYlQunraFAyJjys72ZyPYIh0ik7XnWqpUMRZPAPhJwThQyw==
age: 322
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
104.22.53.86200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 104.22.53.86:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:42 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: ZUddLZ7O1OXf5c7mbsWs7TcoRwu0BI4ksS03RiIChmRO18bIYMRt5FOdSTEoWZMKdnrBtFadaeE=
x-amz-request-id: 5NBR7FENRJFAM1VR
last-modified: Wed, 31 Aug 2022 11:00:45 GMT
etag: W/"b17c28d6fd88a6b12feea5c52e9a7485"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 2287
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 74b2809bde6a0b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dis.criteo.com/dis/usersync.aspx?r=30&p=273&cp=smartortb&cu=1&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D79%26partneruserid%3D%40%40CRITEO_USERID%40%40&gdpr=0&gdpr_consent=
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/usersync.aspx?r=30&p=273&cp=smartortb&cu=1&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D79%26partneruserid%3D%40%40CRITEO_USERID%40%40&gdpr=0&gdpr_consent=
IP 178.250.0.163:0
GET /dis/usersync.aspx?r=30&p=273&cp=smartortb&cu=1&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D79%26partneruserid%3D%40%40CRITEO_USERID%40%40&gdpr=0&gdpr_consent= HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:48 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Thu, 15 Sep 2022 00:00:00 GMT
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 747719
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
qd.admetricspro.com/js/softschools/engine.js
104.26.7.218200 OK 0 B URL HTTP/2 qd.admetricspro.com/js/softschools/engine.js
IP 104.26.7.218:0
GET /js/softschools/engine.js HTTP/1.1
Host: qd.admetricspro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.softschools.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 15:47:40 GMT
content-type: application/javascript
last-modified: Mon, 24 Jan 2022 02:31:38 GMT
etag: W/"8cae-5d64ac49b9c1c-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
expires: Thu, 15 Sep 2022 15:50:12 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rj7yDjwBAjSVjkCOvWLkAieHzCQ2Yc4%2Bc4VjMpCJZZAM4kapNZbiNroHCaCpDQHKfDZlqQu%2ByyulCCtK8qZlJ2jmwFzb%2BeWfJxkSRjcqvwE3nEY%2FlV4yc1oM7monTgoUpJdMpVo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74b28094af720b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
cds.connatix.com/p/182743/connatix.player.dc.js
151.101.86.137200 OK 0 B URL HTTP/2 cds.connatix.com/p/182743/connatix.player.dc.js
IP 151.101.86.137:0
GET /p/182743/connatix.player.dc.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 12:10:57 GMT
etag: "9eb1161600b630f6109c443a3bdb2465"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 15 Sep 2022 15:47:41 GMT
age: 12746
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 222859
X-Firefox-Spdy: h2