go.techgeek.digital/1dc3F1
172.67.138.135301 Moved Permanently 0 B URL HTTP/1.1 go.techgeek.digital/1dc3F1
IP 172.67.138.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1dc3F1 HTTP/1.1
Host: go.techgeek.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 08 Oct 2022 22:32:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 23:32:31 GMT
Location: https://go.techgeek.digital/1dc3F1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dN3s75FUhncnNiQePYNl%2BdqMfaWFaobKIL7PIVuj71i3hwgAqkfgZempKL4eP4xrtvQIdTqO9YGOHrGIXLfuZgx86x0Qk81dRnnawj18Xa7no5o9eA2GXEseaPyhU1tzO4UUW%2BgP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7572553acd160b55-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 08 Oct 2022 21:47:25 GMT
Expires: Sat, 08 Oct 2022 22:23:48 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OyWSlKUu-HJicQKauXLqsCQTe7IcUBxlQcCYuVB2qv7l8SBJfoZfGg==
Age: 2706
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13438
Expires: Sun, 09 Oct 2022 02:16:29 GMT
Date: Sat, 08 Oct 2022 22:32:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7cba6aada5c0a04c1c0644769c09f64e
ed02f174a9b718951911343af8ec181c6d205b1d
ba863e734d5d38ed160758ab0b09d1b0f44fc795dcbcee4199329b011fcd1bd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA863E734D5D38ED160758AB0B09D1B0F44FC795DCBCEE4199329B011FCD1BD1"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8038
Expires: Sun, 09 Oct 2022 00:46:29 GMT
Date: Sat, 08 Oct 2022 22:32:31 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5490842b4c3275e9c69b71961b67d323
72308da7d0461dee1cae52b685c32295a0730170
4f808c10be6db1a1e8d73d4e5598972c947a00d19e5b2e4cdda2ec338ad8ea52
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "4F808C10BE6DB1A1E8D73D4E5598972C947A00D19E5B2E4CDDA2EC338AD8EA52"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10078
Expires: Sun, 09 Oct 2022 01:20:29 GMT
Date: Sat, 08 Oct 2022 22:32:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: H81ThJlUSsr/9dT41SsAYITSx2V62kdj0kONFSxWxgOUCA08fSvMrCdB7CHYa/dTkfSAUYxNWZw=
x-amz-request-id: B99CBQDKRSBXM8RS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 21:59:46 GMT
age: 1965
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 22:30:03 GMT
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 23:23:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QZEtX55VJGKkcg7HIx1cCLKN8x7j8hoN2isw18gS3wtawUmLanKEQw==
Age: 170
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5490842b4c3275e9c69b71961b67d323
72308da7d0461dee1cae52b685c32295a0730170
4f808c10be6db1a1e8d73d4e5598972c947a00d19e5b2e4cdda2ec338ad8ea52
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "4F808C10BE6DB1A1E8D73D4E5598972C947A00D19E5B2E4CDDA2EC338AD8EA52"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10077
Expires: Sun, 09 Oct 2022 01:20:29 GMT
Date: Sat, 08 Oct 2022 22:32:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3775
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:32 GMT
Last-Modified: Sat, 08 Oct 2022 21:29:37 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
static.adshort.co/logo.png
104.21.1.248200 OK 11 kB URL HTTP/2 static.adshort.co/logo.png
IP 104.21.1.248:0
File type PNG image data, 215 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d281a30173f72f20199c2f8ff716193
fbd1ea9c362478e37834b808958fea22ceaec1b3
4edeb7cd021290261f7f7dc72cd26cd53ece78918bd11a23b4af3484f3a6abfa
GET /logo.png HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: image/png
content-length: 10737
last-modified: Mon, 24 Feb 2020 16:53:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6360
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jnoo4bZT7r0JNkZMGg45Dfu3EMUxX8AwKsJibIyDnBcZFq4Vpn%2FI1A61orfIt0wuG7JYnwOgQqQ5AoIOcKA3pKwXGoLE7mm2VW475mlzAo6pbOdxDXTlP%2BFEO2raBI6OdBQUSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572554129651c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c2579c4225ac1d7d3356c65266ecbf9
5cb9701fee432370ec08c81c5d826a178cb7af6c
213e94fb0f689faf17d75b2ae45dbc286d29d11e6fc15cd2c227388f84e626aa
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "213E94FB0F689FAF17D75B2AE45DBC286D29D11E6FC15CD2C227388F84E626AA"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2578
Expires: Sat, 08 Oct 2022 23:15:30 GMT
Date: Sat, 08 Oct 2022 22:32:32 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9f0247fb5bf6e6458f14094551436e1
0ac483f7caef89a55829041189790c8fc7eb8cd7
1b157a9bf613ddbf329225759780db82a249f8502b1b7cb6742907224b4c775e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-40605702-4
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-40605702-4
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash fd7249fa6b01361b11669a55a1f3fe45
03980cedac1558a61d76b917fd04b91771a1a5e5
4acd51c92fbcef72a90b5e6381813fc8b68095ea348ab65f09b9be7bf33b4807
GET /gtag/js?id=UA-40605702-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 08 Oct 2022 22:32:32 GMT
expires: Sat, 08 Oct 2022 22:32:32 GMT
cache-control: private, max-age=900
last-modified: Sat, 08 Oct 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42396
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2314195eaa175857bccde61d73662e4
5cdf1c9dd681d731bfbc79699caeeedb45a6f99c
b70cf42ff93d50496986911f708eb471535dca29c3d4a488042c0216b296cbde
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B70CF42FF93D50496986911F708EB471535DCA29C3D4A488042C0216B296CBDE"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3507
Expires: Sat, 08 Oct 2022 23:30:59 GMT
Date: Sat, 08 Oct 2022 22:32:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d8e21cab536bdff25ec9b616c56623d7
81ffb0811b7661db5ae76af839c6ea94c523e7ce
05ff61a82889db8243cdda61941871b0a218df01b8f83d8703bc996437721397
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05FF61A82889DB8243CDDA61941871B0A218DF01B8F83D8703BC996437721397"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4272
Expires: Sat, 08 Oct 2022 23:43:44 GMT
Date: Sat, 08 Oct 2022 22:32:32 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9f0247fb5bf6e6458f14094551436e1
0ac483f7caef89a55829041189790c8fc7eb8cd7
1b157a9bf613ddbf329225759780db82a249f8502b1b7cb6742907224b4c775e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zunsoach.com/tag.min.js
139.45.197.248200 OK 23 kB IP 139.45.197.248:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash cbc1a749a758004bf75c0f79563088de
6c23efcfeb4b917f152c5052c2eea7be3c2a671f
995674aeef71db5a2a24e19bd3bf5ebee47c7712aa3b8d747d8fac374391b826
GET /tag.min.js HTTP/1.1
Host: zunsoach.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: text/javascript; charset=utf-8
content-length: 22986
content-encoding: br
x-trace-id: cb3c596eaf79427f87e60359c7e9e852
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 07 Oct 2022 10:33:51 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.237.51.86101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.51.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mYHEZ2s+i7X/pH9JhDKQLw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dgoLCNRaFqbJni384D8Qw3gkuQY=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc6e32a9394f5288feb5e12812de6d7c
601260fd4644bca742ddcd19a910a4854280cf58
5ef06c31a9f400bc900b49e50d16f581891f9cf89ef86d93b0f8859ecf62febe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EF06C31A9F400BC900B49E50D16F581891F9CF89EF86D93B0F8859ECF62FEBE"
Last-Modified: Thu, 06 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7658
Expires: Sun, 09 Oct 2022 00:40:10 GMT
Date: Sat, 08 Oct 2022 22:32:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 12 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55c8e2443885448fcf609edb37ee700b
46dbf5e989da82c7cb7c7dbcbfd0b9ce242a9310
c98b6d4e8bc07e7075e8f00404dbd0c01f8220b2c3120042483c752d66553b42
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2B6CCEF88D8716939BA8C827AA0A9BB3B8B1C18942D73C0E9A0DEA3E5AC76167"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12832
Expires: Sun, 09 Oct 2022 02:06:24 GMT
Date: Sat, 08 Oct 2022 22:32:32 GMT
Connection: keep-alive
ads.adshort.media/adx/video_adx_f096.js
172.67.179.25200 OK 5.9 kB URL HTTP/2 ads.adshort.media/adx/video_adx_f096.js
IP 172.67.179.25:0
File type ASCII text, with very long lines (3106)
Hash 6279257726315e96a98bfbf80645889d
ca447ee065fe1cf26e85e5dda2dcba3c5cc522de
ebf8ad3a7e868df13ddb2ae70a7d17a58f561e855a4fe55265fa7a6611d9fcd7
GET /adx/video_adx_f096.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Mon, 10 Jan 2022 15:53:00 GMT
cache-control: max-age=2592000
expires: Sun, 06 Nov 2022 18:48:48 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 99824
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZWSBVwJohOE2HlRjFyaYwAhYPSIxhX0L6dUUX0o%2Bgm3xIqOlSFySVitCGQcHrL8dXB99zkWX8cv%2FKWi421maztzHEkPZBt0y%2B9f57pamsR7IIRWzp8aEioO97M5b3ilCZldx2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 757255417a0a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5690c00c386c753af6de22646db06434
aa5b0574bf8aa58bc5608d593e7dcba23100b454
741af8ab8cb30aac3a08fe0ae823577cb602c717416f9bcd52cef5b830b5fb0e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 22:32:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 18:25:20 GMT
Expires: Thu, 13 Oct 2022 18:25:19 GMT
Etag: "aa5b0574bf8aa58bc5608d593e7dcba23100b454"
Cache-Control: max-age=416566,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757255438b9f1c06-OSL
my.rtmark.net/gid.js?userId=cd5d928f4940498cb0388c0b0e50f9a2
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=cd5d928f4940498cb0388c0b0e50f9a2
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash d2737157c04a0cae01b6d65257410cda
2aedebcbfdf9a64caad88afba1d8b9844a6769bc
4a7dd69f1d8f64edf9047e755c7d8aec72a3a71f375dab6a5ae33ec2931bb0d1
GET /gid.js?userId=cd5d928f4940498cb0388c0b0e50f9a2 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=cd5d928f4940498cb0388c0b0e50f9a2; expires=Sun, 08 Oct 2023 22:32:32 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
nanouwho.com/42/38?z=4986256
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/42/38?z=4986256
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /42/38?z=4986256 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=810fffbabb034c9282c19a9de680b668; oaidts=1665268352
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:32 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 211cb9610e0859b962db54d6213b0c59
access-control-expose-headers: X-Sc
set-cookie: OAID=810fffbabb034c9282c19a9de680b668; expires=Sun, 08 Oct 2023 22:32:32 GMT; secure; SameSite=None
oaidts=1665268352; expires=Sun, 08 Oct 2023 22:32:32 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 3.9 kB IP 142.250.74.3:0
Hash d21b668cb5401be163d6cd3ca02d39e5
08e40dd5a27085180dca40c612b37500f441d953
c7cfb84c7c13eadba8de8bd71e79ef4b47d634edc2ea7fb96e8d90ffa25ec70d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
216.58.207.195200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19292, version 1.0\012- data
Hash 19007b17e56daa60133bce9e9b352a95
bac1384caeae5762e7a1d8c18037f69c8cd21bc4
fd88a03358ba14440b78c6329717bdf6ed1a9fe97c3ad4e0a0a39d31fb1ac546
GET /s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 20:03:19 GMT
expires: Tue, 03 Oct 2023 20:03:19 GMT
cache-control: public, max-age=31536000
age: 440954
last-modified: Wed, 27 Apr 2022 16:12:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c9906233017b1f816ac55471c91d78db
70c0a729694adfdac823442449f1633dde867563
093c13d589206669b2f542d312c02d69f16ab368991f354314b6157fd1695d59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adshort.space/script_ad.js
104.21.3.210200 OK 5.5 kB URL HTTP/2 adshort.space/script_ad.js
IP 104.21.3.210:0
File type ASCII text, with very long lines (758)
Hash 198d53128ab4ccaad0982825741f74cb
0affeb7e222afecdccc3963a1d85d904fdce03d7
f7f9e5d652f717dc19eec44b7d30a1045da2ad33edca2be736b00dfd661930d4
GET /script_ad.js HTTP/1.1
Host: adshort.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
last-modified: Mon, 25 Jan 2021 10:26:17 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BhZHpn%2B6be9w7cVTxlxpP60uBUE4B0S35O4tsQdIP7WVcZCYpgCYT%2F8BLgeJwSVP4fmka0noKZKd9%2B%2FxQmvjuXwBaZIA2f%2BT6eHWnCw2dhz5SfgPQ4kp43klcrpEPBcy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75725541bae9b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
142.250.74.131200 OK 585 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP 142.250.74.131:0
File type ASCII text, with very long lines (921), with no line terminators
Hash f88552f4fb93b90aefb41434525cc80f
427b50cec78eadb0632666a3b9fec5791360a93e
9b4489d51153daf660af1ad13fe14e8b9949e34f04f756dbe179988c1ce76234
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 08 Oct 2022 22:32:33 GMT
date: Sat, 08 Oct 2022 22:32:33 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cd5d928f4940498cb0388c0b0e50f9a2
139.45.197.242204 No Content 0 B URL HTTP/2 nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cd5d928f4940498cb0388c0b0e50f9a2
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cd5d928f4940498cb0388c0b0e50f9a2 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://go.techgeek.digital/
Origin: https://go.techgeek.digital
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
216.58.207.194200 OK 39 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 216.58.207.194:0
Hash 6ba1b74146c69d47d2d6bb0b199393bd
53c552e4e7b2d3ad39851eefd4f1d24332df9f9a
f67d1e9a44c0c6ea3471b1f58d0cdce2e9200f592b0fefe0f38a5344c0f543ad
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27714
date: Sat, 08 Oct 2022 22:32:33 GMT
expires: Sat, 08 Oct 2022 22:32:33 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1358 / 789 of 1000 / last-modified: 1665180320"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c9906233017b1f816ac55471c91d78db
70c0a729694adfdac823442449f1633dde867563
093c13d589206669b2f542d312c02d69f16ab368991f354314b6157fd1695d59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 8ba6d5d98811a2b336e1952cb5f46a7f
456f14c5f26f86c604ae6e1fdf3486961583ffbc
1009e976bf5cde759aaed85c59c3858a875d0464eb5f81585448a12c5906e942
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 22:32:33 GMT
Last-Modified: Sat, 08 Oct 2022 21:17:07 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6H8bJ3aLLVFy_O4pe07Vys58UZrLh21rBD2h4wGjjm77oGmrCvBeig==
Age: 4526
player.avplayer.com/script/2/v/avcplayer.js
23.36.79.26200 OK 61 kB URL HTTP/2 player.avplayer.com/script/2/v/avcplayer.js
IP 23.36.79.26:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9dff0335699f04080269947f40c366ae
8447df4f8b168d9c506630f96ef95002c2c6eb28
157b5912ad26a879f38d0dafb1fce2def6df3168a08f991d6203463375fa32fc
GET /script/2/v/avcplayer.js HTTP/1.1
Host: player.avplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 03 Mar 2022 17:18:44 GMT
etag: "9dff0335699f04080269947f40c366ae"
x-guploader-uploadid: ADPycdtu-4lkKnewYrLZAQ6C3FYocqKyAEpTHAcTl1fhfCPCh7vxR-IJqbD_5jBst3P2Kl4LF2YOsUpbgaREFcUSdQ
server: UploadServer
x-goog-generation: 1646327924579580
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 61326
content-type: application/javascript
content-encoding: gzip
content-language: en
x-goog-hash: crc32c=DITkQg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 61326
cache-control: public, max-age=300
expires: Sat, 08 Oct 2022 22:37:33 GMT
date: Sat, 08 Oct 2022 22:32:33 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
nanouwho.com/11?rnd=2191924302&z=4986256&b=14566424&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=BaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw==&ruid=e2c2b265-51e1-420e-b206-9eae99c0fe45&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=175
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/11?rnd=2191924302&z=4986256&b=14566424&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=BaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw==&ruid=e2c2b265-51e1-420e-b206-9eae99c0fe45&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=175
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=2191924302&z=4986256&b=14566424&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=BaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw==&ruid=e2c2b265-51e1-420e-b206-9eae99c0fe45&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=175 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=cd5d928f4940498cb0388c0b0e50f9a2; oaidts=1665268352
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 6636a2ed3499448137e81867435f76ba
access-control-expose-headers: X-Sc
set-cookie: OAID=cd5d928f4940498cb0388c0b0e50f9a2; expires=Sun, 08 Oct 2023 22:32:33 GMT; secure; SameSite=None
oaidts=1665268352; expires=Sun, 08 Oct 2023 22:32:33 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
betotodilea.com/500/4986248?excludes=&oaid=cd5d928f4940498cb0388c0b0e50f9a2&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/500/4986248?excludes=&oaid=cd5d928f4940498cb0388c0b0e50f9a2&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/4986248?excludes=&oaid=cd5d928f4940498cb0388c0b0e50f9a2&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://go.techgeek.digital/
Origin: https://go.techgeek.digital
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
track1.aniview.com/track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1665268352921&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1665268352921&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&cb=1665268352921&r=go.techgeek.digital&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&e=playerLoaded HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:33 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8f914c75d78aabd8f442473c89339139
65f9275088f83adaabf31e48c76de615ceaf238d
e609b19f355624c89679e3029f5f54f6c1b0398d8b13aae97c6d11b2598dee66
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 22:32:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 12:52:20 GMT
Expires: Thu, 13 Oct 2022 12:52:19 GMT
Etag: "65f9275088f83adaabf31e48c76de615ceaf238d"
Cache-Control: max-age=396585,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7572554908091c06-OSL
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.techgeek.digital/
Content-Type: text/plain;charset=UTF-8
Origin: https://go.techgeek.digital
Content-Length: 1521
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 08 Oct 2022 22:32:56 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://go.techgeek.digital
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 430e7015a6326fe035a6163a73dbcaec
15ecaa07ae9100698dd7847a0ee763a2089ca875
41d995dd55ede2e71ba46b042541c3ae0b0239c1b1aa0eeefad4d1fc1b8cfc32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41D995DD55EDE2E71BA46B042541C3AE0B0239C1B1AA0EEEFAD4D1FC1B8CFC32"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4281
Expires: Sat, 08 Oct 2022 23:43:54 GMT
Date: Sat, 08 Oct 2022 22:32:33 GMT
Connection: keep-alive
player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37
23.38.201.105200 OK 112 kB URL HTTP/2 player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37
IP 23.38.201.105:0
File type Unicode text, UTF-8 text, with very long lines (46154), with LF, NEL line terminators
Size 112 kB (112390 bytes)
Hash 338e56b1f4ce4f7715f277f4b2749547
600797536339e354a9ad5d1d23a10b2db113a34a
7e96fafa3b612256fa5fe692da8f6d55d1fe3e23fe677ecc5c6dd54dff8aabb1
GET /script/6.1/AVmanager.js?v=1.0&type=s&pid=61d82ad1753313534b21dc37 HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsdObmA8mb9WOhe-IjVLKKlAaIfwGqzQ776G7sR5J3z6kwNOGrLg4sRXNh3gw_uMdK0sDZnWsbkLmY_jqjWTkhysg
last-modified: Thu, 22 Sep 2022 10:35:01 GMT
etag: "338e56b1f4ce4f7715f277f4b2749547"
x-goog-generation: 1663842901832027
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 112390
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=61SVsA==, md5=M45WsfTOT3cV8nf0snSVRw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 112390
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=300
expires: Sat, 08 Oct 2022 22:37:33 GMT
date: Sat, 08 Oct 2022 22:32:33 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
offerimage.com/www/images/375d4eace3e9692bfe2fc21648f4c59a.jpeg
104.22.32.172200 OK 13 kB URL HTTP/2 offerimage.com/www/images/375d4eace3e9692bfe2fc21648f4c59a.jpeg
IP 104.22.32.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 375d4eace3e9692bfe2fc21648f4c59a
57ef9b8278b63d567eab92b8607b68cee29071b8
46005b3961515220591e6df79d2713774deb57a082dda8162c3d182bcad3aa1b
GET /www/images/375d4eace3e9692bfe2fc21648f4c59a.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: image/jpeg
content-length: 13449
cache-control: max-age=86400
cf-bgj: h2pri
etag: "6231b480-3489"
expires: Sun, 09 Oct 2022 13:46:01 GMT
last-modified: Wed, 16 Mar 2022 09:57:20 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 31592
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572554a78f0f134-ARN
X-Firefox-Spdy: h2
interstitial-07.com/contents/s/d8/50/db/3008ab8caf4cc7d31e3920dfd5/0876908758031.jpeg
139.45.197.151200 OK 21 kB URL HTTP/2 interstitial-07.com/contents/s/d8/50/db/3008ab8caf4cc7d31e3920dfd5/0876908758031.jpeg
IP 139.45.197.151:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Hash d850db3008ab8caf4cc7d31e3920dfd5
27d23973fff676162e979b4696e2a3aa07801c73
6e46cbcff6d5b6b01c3b0ad71034fafcb1f590cec4d189d61a7a0c36c14498af
GET /contents/s/d8/50/db/3008ab8caf4cc7d31e3920dfd5/0876908758031.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=p8NYtlbFpV62T4w&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1140793793%26z%3D4986256%26b%3D14566424%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DBaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3De2c2b265-51e1-420e-b206-9eae99c0fe45%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F1dc3F1%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: image/jpeg
content-length: 20778
last-modified: Thu, 16 Sep 2021 07:03:01 GMT
etag: "6142ec25-512a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13101
Expires: Sun, 09 Oct 2022 02:10:54 GMT
Date: Sat, 08 Oct 2022 22:32:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13101
Expires: Sun, 09 Oct 2022 02:10:54 GMT
Date: Sat, 08 Oct 2022 22:32:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13101
Expires: Sun, 09 Oct 2022 02:10:54 GMT
Date: Sat, 08 Oct 2022 22:32:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13101
Expires: Sun, 09 Oct 2022 02:10:54 GMT
Date: Sat, 08 Oct 2022 22:32:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13101
Expires: Sun, 09 Oct 2022 02:10:54 GMT
Date: Sat, 08 Oct 2022 22:32:33 GMT
Connection: keep-alive
interstitial-07.com/contents/s/2f/0c/5c/05fe4242e3b0d6a0486ead3410/033925084315.jpeg
139.45.197.151200 OK 47 kB URL HTTP/2 interstitial-07.com/contents/s/2f/0c/5c/05fe4242e3b0d6a0486ead3410/033925084315.jpeg
IP 139.45.197.151:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash 2f0c5c05fe4242e3b0d6a0486ead3410
2fe595fc2851b76263649bb2c4781f2c20933dd2
a22ffbd7bf69000b15925f4c7e1655fecf0774e360a897134a7708103a25024d
GET /contents/s/2f/0c/5c/05fe4242e3b0d6a0486ead3410/033925084315.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=p8NYtlbFpV62T4w&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1140793793%26z%3D4986256%26b%3D14566424%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DBaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3De2c2b265-51e1-420e-b206-9eae99c0fe45%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F1dc3F1%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: image/jpeg
content-length: 47320
last-modified: Thu, 16 Sep 2021 07:03:00 GMT
etag: "6142ec24-b8d8"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: 126f9400-fa43-413b-b496-338908efb777
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZeqScHUVoAMFrRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633c240f-1b7cff3e3415299a4d17e19e;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 12:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BjBiRKpvs2LQznegxhvMFrczSZGWXGSMvk3bxR8UPpcthRUUA2eTBg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:56:13 GMT
age: 2180
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1599fbb-2511-4bc2-8ca8-c4005f192889.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1599fbb-2511-4bc2-8ca8-c4005f192889.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa302105ffc3d3c3eb8c61fb9c74eb44
748429ef5ace5733a115fbff5d775825a6d7a406
4214b707ce6018e1f70d36515f270d3e5c7575b2f2c2c3affa670b5f48d6e195
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1599fbb-2511-4bc2-8ca8-c4005f192889.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7332
x-amzn-requestid: f1570fe8-21a8-4d77-87d5-cd186eff2987
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHgOH9boAMFRzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec67-25e96c4777da7ced0b003869;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G7vhGeZoKkYulwkrRoIyxH_18pOWc2qur0qjX6QOL9mdIEL3Q-Gapw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:49:58 GMT
age: 2555
etag: "748429ef5ace5733a115fbff5d775825a6d7a406"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b15495e3e13c06fd0d67523870405ed
3cb8b43735e86c93733affa10818c47693c80fce
f65edddef18295076f79a48e9a6c95d07ed244a2ae618cb4229b6c1bd434cd57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12187
x-amzn-requestid: 9768886f-0e17-4958-bdaf-e17385eb21d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjqJCHyNoAMFmDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e23d3-288e1d28057753a16893d6b5;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 00:39:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jm9hynO1KfuT2luShwOU_Ps2ZHxUAPwymP1Bi-V49MWWJ3ooQq7qVg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:26:18 GMT
age: 375
etag: "3cb8b43735e86c93733affa10818c47693c80fce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58ddd605-8bb7-489e-88f0-51ba1cc6095c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58ddd605-8bb7-489e-88f0-51ba1cc6095c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5cbd50295a4fbc6734f47c8f4ef6f94c
bb9122e3f153a3100b89688c6c08ba938a7e7db3
97ae4592605581e855fda6e523760f600a34dd5f10a4195d0c8df8e220fdd77e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58ddd605-8bb7-489e-88f0-51ba1cc6095c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4957
x-amzn-requestid: 97457aca-e435-437e-a326-59e317bec853
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHgaFrjoAMFslw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec68-2ca87ddb370532f75b236149;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:32:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XenzEoRSNQwOe0HuMcMT132V0ofdwUBJfnYrAuMdo7VR_mGtgoiJhw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:20 GMT
etag: "bb9122e3f153a3100b89688c6c08ba938a7e7db3"
content-type: image/jpeg
age: 2893
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa6a5392-fd30-4d13-9f90-568acb0a2172.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa6a5392-fd30-4d13-9f90-568acb0a2172.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b91f329b853c57b8f20b40ba2ce86d70
477d9b9545bca529da41482deaf4b586167ee543
cda45824f6868071840f298b679e6bfc25bd46bf2b06168dd0d0231b248a046b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa6a5392-fd30-4d13-9f90-568acb0a2172.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6503
x-amzn-requestid: 7d2fcb6e-7469-4e7d-b1c7-3b431876cea3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zg9oEH1goAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633d0fcd-02c2efb1226b11a659ab157b;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 05:02:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x403XrPkBEbYH_QSyU8ZJWGR3alRJXnZTf84xG2YZ7efJqgQMhdmKA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 23:15:53 GMT
age: 83800
etag: "477d9b9545bca529da41482deaf4b586167ee543"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a3b74c93b6981236040ebf4134e04f55
c31c8db9e51872d0a28a3798ebd0f6f2abe993cb
8a48bd2b67104ad81b00a7882dbecd7d8b664056dd180483090d10a4c7c66960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7250
x-amzn-requestid: cbe8c575-cda7-49af-9b12-e4f7c2b362c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHkeF43IAMFv9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec82-1afe0e72794ddcd10c76dd4a;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:32:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NbpU2O7ByYcHSc5ExCSbHf4wGS9R1IS1K_xOVAu5qmSCmtqR2T2oMg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:08:41 GMT
etag: "c31c8db9e51872d0a28a3798ebd0f6f2abe993cb"
content-type: image/jpeg
age: 1432
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6518b23c755327277b44dc1f6987f958
86856a3d7cc9fff082df12330105de7a89b81552
190f6d829f0eb407fec412a6a83e7aa46a213f7ed032c58a97eb333bc7534d98
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "190F6D829F0EB407FEC412A6A83E7AA46A213F7ED032C58A97EB333BC7534D98"
Last-Modified: Fri, 07 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11930
Expires: Sun, 09 Oct 2022 01:51:23 GMT
Date: Sat, 08 Oct 2022 22:32:33 GMT
Connection: keep-alive
track1.aniview.com/track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.56&apppkg=&fv=3&proto=https&clsid=2e3d3cf9-60ca-46a7-b240-1b4f61f07c72&rando=41&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1665268353737
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.56&apppkg=&fv=3&proto=https&clsid=2e3d3cf9-60ca-46a7-b240-1b4f61f07c72&rando=41&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1665268353737
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?r=go.techgeek.digital&sn=&ic=0&tgt=0&app=&wi=640&he=361&test=&d36=6.2.56&apppkg=&fv=3&proto=https&clsid=2e3d3cf9-60ca-46a7-b240-1b4f61f07c72&rando=41&pid=61d82ad1753313534b21dc37&cid=61d82b27ba35a623517b0be5&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&e=inventory&vi=0&cb=1665268353737 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:33 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=72747
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=72747
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 14d67a8b6646d173300613beaeaed8b1
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1665268353487
18.235.73.31200 OK 0 B URL HTTP/2 track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1665268353487
IP 18.235.73.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ctrack?pt=2&cmid=&cwid=&cvid=&pid=61d82ad1753313534b21dc37&r=go.techgeek.digital&sn=&cd1=&cd2=&cd3=&app=&wi=640&he=361&test=&vi=0&e=cpll&cb=1665268353487 HTTP/1.1
Host: track1.avplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:33 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
nanouwho.com/11?rnd=2191924302&z=4986256&b=14566424&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=BaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw==&ruid=e2c2b265-51e1-420e-b206-9eae99c0fe45&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/11?rnd=2191924302&z=4986256&b=14566424&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=BaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw==&ruid=e2c2b265-51e1-420e-b206-9eae99c0fe45&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=2191924302&z=4986256&b=14566424&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=BaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw==&ruid=e2c2b265-51e1-420e-b206-9eae99c0fe45&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=cd5d928f4940498cb0388c0b0e50f9a2; oaidts=1665268352
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 1b4627d39ad9084482db62e8a5eedca5
access-control-expose-headers: X-Sc
set-cookie: OAID=cd5d928f4940498cb0388c0b0e50f9a2; expires=Sun, 08 Oct 2023 22:32:33 GMT; secure; SameSite=None
oaidts=1665268352; expires=Sun, 08 Oct 2023 22:32:33 GMT; secure; SameSite=None
oaidvc=1; expires=Sun, 08 Oct 2023 22:32:33 GMT; secure; SameSite=None
CNT=1_v1_GETeAAEAAABJSzAA; expires=Sat, 08 Oct 2022 23:32:33 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 08 Oct 2022 22:32:34 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 039fcf11d1e8d431b65c4716d76908c1
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 08 Oct 2022 20:41:09 GMT
expires: Sat, 08 Oct 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 6685
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 264627
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07e328c57909afc5a9e79d7d6907e7cf
38f1cc086938281fb5fbbd1877edf17263ae1fda
76c5865adaa292511aeeea981863ca4acbb44f82980998b6aafe64c1f6feedcb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=go.techgeek.digital
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=go.techgeek.digital
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=go.techgeek.digital HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 08 Oct 2022 22:32:34 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=go.techgeek.digital
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=go.techgeek.digital
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=go.techgeek.digital HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 08 Oct 2022 22:32:34 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1665268354377&asid=61dd3ddf4d1f07692963d4e6%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b%2C61dd3cfdaba5ac776422c86a%2C6215f24fc5339015154d3144&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1665268354377&asid=61dd3ddf4d1f07692963d4e6%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b%2C61dd3cfdaba5ac776422c86a%2C6215f24fc5339015154d3144&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1665268354377&asid=61dd3ddf4d1f07692963d4e6%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b%2C61dd3cfdaba5ac776422c86a%2C6215f24fc5339015154d3144&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:34 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1665268354377&asid=61d828eebcd2bb5c4a7fea6a%2C61f2a41c668f7775cc236957%2C61dd3c1e2eb4c24f87628b66&ofpr=%2C%2C&fpo=%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1665268354377&asid=61d828eebcd2bb5c4a7fea6a%2C61f2a41c668f7775cc236957%2C61dd3c1e2eb4c24f87628b66&ofpr=%2C%2C&fpo=%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1665268354377&asid=61d828eebcd2bb5c4a7fea6a%2C61f2a41c668f7775cc236957%2C61dd3c1e2eb4c24f87628b66&ofpr=%2C%2C&fpo=%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:34 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=bid&cb=1665268354418&asid=61d828eebcd2bb5c4a7fea6a%2C61f2a41c668f7775cc236957%2C61dd3c1e2eb4c24f87628b66&ofpr=%2C%2C&fpo=%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=bid&cb=1665268354418&asid=61d828eebcd2bb5c4a7fea6a%2C61f2a41c668f7775cc236957%2C61dd3c1e2eb4c24f87628b66&ofpr=%2C%2C&fpo=%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=bid&cb=1665268354418&asid=61d828eebcd2bb5c4a7fea6a%2C61f2a41c668f7775cc236957%2C61dd3c1e2eb4c24f87628b66&ofpr=%2C%2C&fpo=%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:34 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=bid&cb=1665268354419&asid=61dd3ddf4d1f07692963d4e6%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b%2C61dd3cfdaba5ac776422c86a%2C6215f24fc5339015154d3144&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=bid&cb=1665268354419&asid=61dd3ddf4d1f07692963d4e6%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b%2C61dd3cfdaba5ac776422c86a%2C6215f24fc5339015154d3144&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=bid&cb=1665268354419&asid=61dd3ddf4d1f07692963d4e6%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C620e1d517f4f540812237178%2C621608fa964cdd04dc3e2f6b%2C61dd3cfdaba5ac776422c86a%2C6215f24fc5339015154d3144&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:34 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07e328c57909afc5a9e79d7d6907e7cf
38f1cc086938281fb5fbbd1877edf17263ae1fda
76c5865adaa292511aeeea981863ca4acbb44f82980998b6aafe64c1f6feedcb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=1184139276.1665268354&jid=1772636208&gjid=1756333683&_gid=262171458.1665268354&_u=YEBAAUAAAAAAACAAI~&z=1982481621
173.194.73.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=1184139276.1665268354&jid=1772636208&gjid=1756333683&_gid=262171458.1665268354&_u=YEBAAUAAAAAAACAAI~&z=1982481621
IP 173.194.73.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-40605702-4&cid=1184139276.1665268354&jid=1772636208&gjid=1756333683&_gid=262171458.1665268354&_u=YEBAAUAAAAAAACAAI~&z=1982481621 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://go.techgeek.digital
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 08 Oct 2022 22:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 3.1 kB URL HTTP/2 de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Sat, 08 Oct 2022 22:32:34 GMT
expires: Sun, 08 Oct 2023 22:32:34 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022100401&st=env
142.250.74.2200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022100401&st=env
IP 142.250.74.2:0
File type JSON data\012- , ASCII text, with very long lines (14466), with no line terminators
Hash 0a6965499a32d8b9be0ede5fa4bbf526
cd48eebac8d6e9271fbdc8cfe15482bf9450ede5
6dfa7587544f805f0836f2e80a849d036820cb89d20fb34fd945118ca1f1717e
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022100401&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 08 Oct 2022 22:32:34 GMT
server: cafe
cache-control: private
content-length: 10986
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 130 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2831)
Size 130 kB (129615 bytes)
Hash 4a29f16b070a7d6e3172edb32b44f5fd
10bccbe1646e45002087979c99bb429c397fa4e4
f0c8bf6194217fdecf95572c6e862eb1135f1c60739a29fccd519e4d8f461b76
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 129615
date: Sat, 08 Oct 2022 22:32:34 GMT
expires: Sat, 08 Oct 2022 22:32:34 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cbece4f528536724dda32da0cce776e6
6d91ac32aa11a8b25ff9557f749712595888175b
4536023a98fff3e1183d86f7be99d3d255532f3c8ce5487997bd5a30ef6f4591
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 08 Oct 2022 22:32:34 GMT
expires: Sat, 08 Oct 2022 22:32:34 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
go.techgeek.digital/1dc3F1
104.21.54.123200 OK 36 kB URL HTTP/2 go.techgeek.digital/1dc3F1
IP 104.21.54.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59440)
Hash 381ae29c72814e904322517abb16a34b
c1982a33cc838c172a08e6fa8eba108096e2079d
43e2d20edf214d05412d66e84991f4735259ab636984312e25da6943791a48b2
GET /1dc3F1 HTTP/1.1
Host: go.techgeek.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:31 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
set-cookie: AppSession=3877f58a05d0a523cbac9da4b1c3fae4; path=/; HttpOnly
ref1dc3F1=YWMxMGM3OTZmOTllNTM2OGRhZmYwMGMxMmNiMTgwY2M3NTc5ODdkM2IxZWEyYjFiZDQ0NDc2ZjRmZmRhZDNmMEKJlTuv%2B2wlrzAEy0rgoOyLFNPoDo7yrC4LKGQbyRNo; expires=Sat, 08-Oct-2022 22:37:31 GMT; Max-Age=300; path=/; HttpOnly
csrfToken=da552a94017ec34e97cf38a39e3474e7553da331df69df1a5ac8224b70a08b20172c871d6c0302e9c06ad1e4c19e55485f2c4c8b89513342e80ed82788979f8e; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zj93rAfywjK3nOSJVc6VQZphFBEXSBVuzZUvBN8m%2B1OUnlrdyWVAPFSfj8Kj6Qe%2FRlUQz8lU0Xf%2BOL%2BW1HqFJhiQeSoj34nqznmMflEXEtiJ%2Fc%2FlEkJWr3os496YNZCABay9klFg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7572553cadb80b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1615a59f732d50dbd386c89f599fe0d5
ee4fae75b28e7a30ed404cf10e6f0830bd0b69f7
48574ec51753d230b28f90dd3cfd4862d307de1d507b2bb5a7bddf5a294876f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1615a59f732d50dbd386c89f599fe0d5
ee4fae75b28e7a30ed404cf10e6f0830bd0b69f7
48574ec51753d230b28f90dd3cfd4862d307de1d507b2bb5a7bddf5a294876f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
142.250.74.70200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Sat, 08 Oct 2022 22:32:34 GMT
expires: Sat, 08 Oct 2022 22:32:34 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1615a59f732d50dbd386c89f599fe0d5
ee4fae75b28e7a30ed404cf10e6f0830bd0b69f7
48574ec51753d230b28f90dd3cfd4862d307de1d507b2bb5a7bddf5a294876f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 22:32:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash b1274233b6d6bd7a1d6ec9e2fae07694
cbd7f1e1b638a2aa6757ca5830fe26799151c54f
7cf8eb9ae354d5558e647507cfbb98203e9995b7481cd4f459b40f4e736afe92
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 08 Oct 2022 22:32:35 GMT
date: Sat, 08 Oct 2022 22:32:35 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-0aR7nxe_Hlm3sVl9UMV9Wg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/xbbe/pixel?d=CIilIBCy-6TdAhilxZDOATAB&v=APEucNXfmbsWxC5PlX2c6kG8OoB335v-rFq7l2o2D64CNQOeXhrYXXZ0DgBfO6ZbMAdIJyWdud4g1PwxIZC4GcFC3kxd9cT0Pw
142.250.74.130200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CIilIBCy-6TdAhilxZDOATAB&v=APEucNXfmbsWxC5PlX2c6kG8OoB335v-rFq7l2o2D64CNQOeXhrYXXZ0DgBfO6ZbMAdIJyWdud4g1PwxIZC4GcFC3kxd9cT0Pw
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CIilIBCy-6TdAhilxZDOATAB&v=APEucNXfmbsWxC5PlX2c6kG8OoB335v-rFq7l2o2D64CNQOeXhrYXXZ0DgBfO6ZbMAdIJyWdud4g1PwxIZC4GcFC3kxd9cT0Pw HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 22:32:36 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 08 Oct 2022 22:32:36 GMT
cache-control: private
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3498)
Hash bd7876f9970dad86c8d29b630ec103c5
27e7a0d9bedb3e711708049fce7a8bb09b4721fc
37094988b85e9a49b6146ff7724d05aeb3cbb02efe4eeb68f095c8d2cdfc4453
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 45072
date: Sat, 08 Oct 2022 22:32:36 GMT
expires: Sat, 08 Oct 2022 22:32:36 GMT
cache-control: private, max-age=3000
etag: "1664970042070988"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-Du3AVrjCPWGPVbTmXHQ_xvg9gNu7KXdt6as4lP9ohwkdJqD7xWi3cj8R5n8sXzRxSgihRaS0K8TPnyZ2b2LI7HRxh8-g&cry=1&dbm_d=AKAmf-De6g9aT54AaOEoSgSH4R1sj5ItWQcqtvy-P3NYDYUS-B_CEvm9ZZ-9vO2ciBYsCeT5yxKN8-nRvlxegosWXytXK6qKakQKyFZA2faRKcrBu3vP9AdGeLTmj4FnKXh5dk1iSOQh0dJ5OYc1ySqxUzNtSFvJhVVAiR9-DixD-Kb6I1kPbqtD7CEav2pwyokNnfj8BJlKihQF_9KERUQJTky-gAwXfzeAX3V0AyD6w2MeCQdkmUyrHTUJsuJappkXQrMbbJMpZHXn_iioQ_W13ZU8vwgv6wpCDd7cJ4iWeKbYrTZCe3zvx7QG91HEnEimkL4cTEWUlR8IxFuWVdIIlNgRKofQyJH_e5vVat1jc1z-d60s0IleSqv_cp64Sbqu3DK6KFq8sUb63v3AMEojK_yt6zJ3TqXyY8J7HzJZg1Yw8topCJKiMbCtLjAygxYT0ay_X50Br6Cgd__8hqeH51HBTmJyFHe4IZgiuQSsHrhAAj9W0nzh2g_WSrYX_HsYoSlj-Nd0H6IYTJr_hKHYLtTo60lYWFHCjM2Rum7QWlhbwYYDYf2rJfiv13jfuANRExqTHdXBseAVl_w-a-AWeEZGFd6NElj4NOHZOZry5nzNeZ8ER-O2iQEZ__31kdFJqLk9xdM0yJ08CtZEJcHhrpAZrm7eMTcq9wSO1URqmnNfNFBRHmnMy7Iit8uNCQDOCN1hZ2tNgXho1RR2y-Pal2fgQr3YWIxT1jfucItDeaXv1aUFNZYJAXU_w62D5EQQ7LQ9GZbiXBDzPYAFdiN3z-Ir8yoath_J3tMBRHC3XlWYaRBuC1XfjD8Hvj0y8nUxkHyK7VHCAm3xtWWvpMyM73X2A9vaGgNvpByfPs3Uq_plCGd7M_GXDyjyeoOfYVQ23S-4x4QkbDOX9kj41_N7Xn09AbjyytbkBMrlmXlT6uK-aZZKt0DT_N8IB7pkLOe_KjcHiSowhww6tTncC4Odnwu_WEyUpce9cazkpqfgEJIb4lStWophSnV_Hz8q2Gxml7ipHqDrEk7Bd2DqDHW67u3FGTITS_qeWWzHbIH7Sw6ETkz_lVF2kJql_vImd1ebUu5MZNpBZcYqgnlUn1zIwGPidXDzHMZgeOkx_sdHDrJko7sJX3BBYbzKLPlbWttJYBUscvJnlLMiyFv_GX2ksBSFbbEW9e2XhzJdWpVsIz1LNDx2Q24BXdqxL4eYlq2X0dzaa_qPCUdj5jdOtrhoW0_bZRDjzccViDuTH1K8hc-d26ckU-05G0dVIo6l2f849ekOXgEoB7y9jJGSFnw4TzmOo3OL9cxzJfEMtQ7eT4RznfS8dDmBPQ2gNjFqim3KRST5VlfC1dI3j3XCOWRsbDajCUiOZn1h1ZWgJuFSb4hgQcqoS_555Rv4wUFGnBR0X5Oo31pipbPM443E6Dyqc4NgwRBRpfYQeRMQeXQ842AcFwFcl_k0zVewUdWLqnahrcafFPNsKnUHO7GatZ878LSyi2GBgB3S8s8GVhrgxoWgu2AXWmpMlggeQA2Th-_XhFvS9s5QeSupZk-gOC8Z2-mllOcOolP1ICAguMs8GcBx0LUZVFb2jtfR4d_u6XX8dSGp8-WXdhEQBKQu_MacCCn8k5oP2PKDUNlwJUwcKdlYrs68lMO7-gbS4wgSPSup-57uoBxro0jcChqB_KVRB3LP_q9_CLgV97wh0yRRT6ySBdelNkFTxaDP1FafY0wxcq0ZfWUONZZtYpUgPa_uekVOE4NpolY0XaAahFB58MMd5yDAMGc44nOP2zSZfxlNNbDPsznWNtXBbiCVhHn0CtEzFch5Afk_bdqVD9zD4qa5IHsCzSR7OEjObac0GTtY5B7JL6Nn6B8O0TIxjL18H-OCWllbWAT-db8S9VfN6W7-NcV85mCuIWe9kWhsf7vDsxQM80mGmSCacE9aag2qLipBzl1XRmirQtnwD9Kz3qRHjo2oQHI_6B_RlPHInrXrn89kq7p0Xsm__REPKYcUwpDvMWSW3TjuqALVVKWy34wKjUdMh0v4Fvh3KEORC3UNvSTAm2BipymbU7ZPPWH1qz7o3QexBOoy35PFzZxaB7f9PC8rJgBFMKJ_cX31mnVPz7Gl_Dt7Y8i6GuM35v9JVww7vFXold6OOOxU7Y9rnx6z3FYZz82SG4HYNmKX6C_CltDBgdaOmZjv4pC9KLznYw12eOvP2oEb8sRhFsZc3pIvKN_kkj2j82ZVb5_mZN5hVAGNcEgCuVfG76cvmgKVnPSfL3Md37hHzxvPCymX93SovWW4nJqz7L5QDMmH3-1n2PIrtMok-z2SvvItn3V5sqWdf6EXUR6HsHx-zqQ0Uzkv5Q3srvyk4p10vTcgLLkZAxO4sOI9KqPn8Hm0-9Q3_Q4O6VRQdfFlS0nYBmvcQLEVRakQR7DlGZ9B2vrECMJJVUwKUczPaYQc_U73fJzFu9Ew7i9NnkattYDkgQh8_eFjfSqw0CF_iJarbi21QCuJapsRSFjazb-ee0qX0TXRWGgYcvQqaNrdMxr17xOvpKtD8nCG2gTE7gOvDFRRsPE9D4NayH9k-M_-yuZxnucTj1MLEuBzsCuHDX3sXtfYjz8tewr4IDspxv7S3qYdQAoE-IpTIdXqlrKuU01kEQb0O0qSB-rvTC3DDx8YGWbQw_2lZBnRiN9XWhRrbu5B_FxjbwClXVKMIM88kSDBSjwQ-tRXL_lX61s0fgHBwhexxK0Sc5wGxZ7AhFludbYN3nR8-XREvJJWQU2FTTd7OJHiWR7lP6ILkjDTcdYJkKIGtZwqvzGy9N5w3L-JUtzOMH2HvhWe4cp0W8UbxU1ccf5ULZDAOjdPx6BVBsjGNwhIdT3icjQLRKjpHyEC-aEBrmEB8LMCH2Odtu0Y8vrRED-5xDKnA8FWXyBDHd2rP9a4UQobnYKbotFq0vWZmhm7nbeWfjQi24L0aPh8uNpUJTpCjqNjjZR94gm5ikjWwkIhRHCP_zroZTc3cdL-cah0HSh4YVWvpwhaTN62n6jSHOecSB_sxt2kC2e_-gI-cwp_6Qb1GxI2R_DaTPfTNSwJMOmyBCYI-SoPO2saxLyQIfgNULZKt6OfwICUfVL7Z6ToeMzmsU-cyp7vuHZXnCPtHZadayNXYQ-Gn3mX8RAXRIaowTlNVIdMAxN6tFvUHziFzSdedN8HnB7xxLh4KSGr4F5I3B3YJxAUgBL6ObqEGh5S-66ptp7PuOLiIg9bFP13sq5jOTEGIBV2dWzpM6hME7WL2bBzTXjMJ1fKS63AllIymAeGnS1VZ26SgmJsJJbcMWJLr4nFg-KNh3ZMvzstzDhJvWkuaakwPClFlZBBVlmoPEh76UNHkHepAZVMGDo2E5HqjBKdPJParn2xXTPiDIHuw39ohPx3F6rpCfPS4kZ6zJEdqtv94A&cid=CAAST-Ro8DpFBaPgObBcZxAx5PyK3berLLbimvp6CDiJOCc2DKPNRF1yCaktkNbDD462KtH-thqHFHx0LJN9DyZ8WPRTAKlOwnqyQaBAxSlFtsk&rfl=1%2Chttps%253A%252F%252Fgo.techgeek.digital%252F%240
142.250.74.130200 OK 30 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-Du3AVrjCPWGPVbTmXHQ_xvg9gNu7KXdt6as4lP9ohwkdJqD7xWi3cj8R5n8sXzRxSgihRaS0K8TPnyZ2b2LI7HRxh8-g&cry=1&dbm_d=AKAmf-De6g9aT54AaOEoSgSH4R1sj5ItWQcqtvy-P3NYDYUS-B_CEvm9ZZ-9vO2ciBYsCeT5yxKN8-nRvlxegosWXytXK6qKakQKyFZA2faRKcrBu3vP9AdGeLTmj4FnKXh5dk1iSOQh0dJ5OYc1ySqxUzNtSFvJhVVAiR9-DixD-Kb6I1kPbqtD7CEav2pwyokNnfj8BJlKihQF_9KERUQJTky-gAwXfzeAX3V0AyD6w2MeCQdkmUyrHTUJsuJappkXQrMbbJMpZHXn_iioQ_W13ZU8vwgv6wpCDd7cJ4iWeKbYrTZCe3zvx7QG91HEnEimkL4cTEWUlR8IxFuWVdIIlNgRKofQyJH_e5vVat1jc1z-d60s0IleSqv_cp64Sbqu3DK6KFq8sUb63v3AMEojK_yt6zJ3TqXyY8J7HzJZg1Yw8topCJKiMbCtLjAygxYT0ay_X50Br6Cgd__8hqeH51HBTmJyFHe4IZgiuQSsHrhAAj9W0nzh2g_WSrYX_HsYoSlj-Nd0H6IYTJr_hKHYLtTo60lYWFHCjM2Rum7QWlhbwYYDYf2rJfiv13jfuANRExqTHdXBseAVl_w-a-AWeEZGFd6NElj4NOHZOZry5nzNeZ8ER-O2iQEZ__31kdFJqLk9xdM0yJ08CtZEJcHhrpAZrm7eMTcq9wSO1URqmnNfNFBRHmnMy7Iit8uNCQDOCN1hZ2tNgXho1RR2y-Pal2fgQr3YWIxT1jfucItDeaXv1aUFNZYJAXU_w62D5EQQ7LQ9GZbiXBDzPYAFdiN3z-Ir8yoath_J3tMBRHC3XlWYaRBuC1XfjD8Hvj0y8nUxkHyK7VHCAm3xtWWvpMyM73X2A9vaGgNvpByfPs3Uq_plCGd7M_GXDyjyeoOfYVQ23S-4x4QkbDOX9kj41_N7Xn09AbjyytbkBMrlmXlT6uK-aZZKt0DT_N8IB7pkLOe_KjcHiSowhww6tTncC4Odnwu_WEyUpce9cazkpqfgEJIb4lStWophSnV_Hz8q2Gxml7ipHqDrEk7Bd2DqDHW67u3FGTITS_qeWWzHbIH7Sw6ETkz_lVF2kJql_vImd1ebUu5MZNpBZcYqgnlUn1zIwGPidXDzHMZgeOkx_sdHDrJko7sJX3BBYbzKLPlbWttJYBUscvJnlLMiyFv_GX2ksBSFbbEW9e2XhzJdWpVsIz1LNDx2Q24BXdqxL4eYlq2X0dzaa_qPCUdj5jdOtrhoW0_bZRDjzccViDuTH1K8hc-d26ckU-05G0dVIo6l2f849ekOXgEoB7y9jJGSFnw4TzmOo3OL9cxzJfEMtQ7eT4RznfS8dDmBPQ2gNjFqim3KRST5VlfC1dI3j3XCOWRsbDajCUiOZn1h1ZWgJuFSb4hgQcqoS_555Rv4wUFGnBR0X5Oo31pipbPM443E6Dyqc4NgwRBRpfYQeRMQeXQ842AcFwFcl_k0zVewUdWLqnahrcafFPNsKnUHO7GatZ878LSyi2GBgB3S8s8GVhrgxoWgu2AXWmpMlggeQA2Th-_XhFvS9s5QeSupZk-gOC8Z2-mllOcOolP1ICAguMs8GcBx0LUZVFb2jtfR4d_u6XX8dSGp8-WXdhEQBKQu_MacCCn8k5oP2PKDUNlwJUwcKdlYrs68lMO7-gbS4wgSPSup-57uoBxro0jcChqB_KVRB3LP_q9_CLgV97wh0yRRT6ySBdelNkFTxaDP1FafY0wxcq0ZfWUONZZtYpUgPa_uekVOE4NpolY0XaAahFB58MMd5yDAMGc44nOP2zSZfxlNNbDPsznWNtXBbiCVhHn0CtEzFch5Afk_bdqVD9zD4qa5IHsCzSR7OEjObac0GTtY5B7JL6Nn6B8O0TIxjL18H-OCWllbWAT-db8S9VfN6W7-NcV85mCuIWe9kWhsf7vDsxQM80mGmSCacE9aag2qLipBzl1XRmirQtnwD9Kz3qRHjo2oQHI_6B_RlPHInrXrn89kq7p0Xsm__REPKYcUwpDvMWSW3TjuqALVVKWy34wKjUdMh0v4Fvh3KEORC3UNvSTAm2BipymbU7ZPPWH1qz7o3QexBOoy35PFzZxaB7f9PC8rJgBFMKJ_cX31mnVPz7Gl_Dt7Y8i6GuM35v9JVww7vFXold6OOOxU7Y9rnx6z3FYZz82SG4HYNmKX6C_CltDBgdaOmZjv4pC9KLznYw12eOvP2oEb8sRhFsZc3pIvKN_kkj2j82ZVb5_mZN5hVAGNcEgCuVfG76cvmgKVnPSfL3Md37hHzxvPCymX93SovWW4nJqz7L5QDMmH3-1n2PIrtMok-z2SvvItn3V5sqWdf6EXUR6HsHx-zqQ0Uzkv5Q3srvyk4p10vTcgLLkZAxO4sOI9KqPn8Hm0-9Q3_Q4O6VRQdfFlS0nYBmvcQLEVRakQR7DlGZ9B2vrECMJJVUwKUczPaYQc_U73fJzFu9Ew7i9NnkattYDkgQh8_eFjfSqw0CF_iJarbi21QCuJapsRSFjazb-ee0qX0TXRWGgYcvQqaNrdMxr17xOvpKtD8nCG2gTE7gOvDFRRsPE9D4NayH9k-M_-yuZxnucTj1MLEuBzsCuHDX3sXtfYjz8tewr4IDspxv7S3qYdQAoE-IpTIdXqlrKuU01kEQb0O0qSB-rvTC3DDx8YGWbQw_2lZBnRiN9XWhRrbu5B_FxjbwClXVKMIM88kSDBSjwQ-tRXL_lX61s0fgHBwhexxK0Sc5wGxZ7AhFludbYN3nR8-XREvJJWQU2FTTd7OJHiWR7lP6ILkjDTcdYJkKIGtZwqvzGy9N5w3L-JUtzOMH2HvhWe4cp0W8UbxU1ccf5ULZDAOjdPx6BVBsjGNwhIdT3icjQLRKjpHyEC-aEBrmEB8LMCH2Odtu0Y8vrRED-5xDKnA8FWXyBDHd2rP9a4UQobnYKbotFq0vWZmhm7nbeWfjQi24L0aPh8uNpUJTpCjqNjjZR94gm5ikjWwkIhRHCP_zroZTc3cdL-cah0HSh4YVWvpwhaTN62n6jSHOecSB_sxt2kC2e_-gI-cwp_6Qb1GxI2R_DaTPfTNSwJMOmyBCYI-SoPO2saxLyQIfgNULZKt6OfwICUfVL7Z6ToeMzmsU-cyp7vuHZXnCPtHZadayNXYQ-Gn3mX8RAXRIaowTlNVIdMAxN6tFvUHziFzSdedN8HnB7xxLh4KSGr4F5I3B3YJxAUgBL6ObqEGh5S-66ptp7PuOLiIg9bFP13sq5jOTEGIBV2dWzpM6hME7WL2bBzTXjMJ1fKS63AllIymAeGnS1VZ26SgmJsJJbcMWJLr4nFg-KNh3ZMvzstzDhJvWkuaakwPClFlZBBVlmoPEh76UNHkHepAZVMGDo2E5HqjBKdPJParn2xXTPiDIHuw39ohPx3F6rpCfPS4kZ6zJEdqtv94A&cid=CAAST-Ro8DpFBaPgObBcZxAx5PyK3berLLbimvp6CDiJOCc2DKPNRF1yCaktkNbDD462KtH-thqHFHx0LJN9DyZ8WPRTAKlOwnqyQaBAxSlFtsk&rfl=1%2Chttps%253A%252F%252Fgo.techgeek.digital%252F%240
IP 142.250.74.130:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6e06918bd0dbcce550eb556184988705
680136e29b09882e917d2955c5f9a54b9f8e4e9e
6d9f1ced472dc7ec9c6be9e368e8b9edd0dade026781248e1d756f1eb300e8c4
GET /dbm/ad?dbm_c=AKAmf-Du3AVrjCPWGPVbTmXHQ_xvg9gNu7KXdt6as4lP9ohwkdJqD7xWi3cj8R5n8sXzRxSgihRaS0K8TPnyZ2b2LI7HRxh8-g&cry=1&dbm_d=AKAmf-De6g9aT54AaOEoSgSH4R1sj5ItWQcqtvy-P3NYDYUS-B_CEvm9ZZ-9vO2ciBYsCeT5yxKN8-nRvlxegosWXytXK6qKakQKyFZA2faRKcrBu3vP9AdGeLTmj4FnKXh5dk1iSOQh0dJ5OYc1ySqxUzNtSFvJhVVAiR9-DixD-Kb6I1kPbqtD7CEav2pwyokNnfj8BJlKihQF_9KERUQJTky-gAwXfzeAX3V0AyD6w2MeCQdkmUyrHTUJsuJappkXQrMbbJMpZHXn_iioQ_W13ZU8vwgv6wpCDd7cJ4iWeKbYrTZCe3zvx7QG91HEnEimkL4cTEWUlR8IxFuWVdIIlNgRKofQyJH_e5vVat1jc1z-d60s0IleSqv_cp64Sbqu3DK6KFq8sUb63v3AMEojK_yt6zJ3TqXyY8J7HzJZg1Yw8topCJKiMbCtLjAygxYT0ay_X50Br6Cgd__8hqeH51HBTmJyFHe4IZgiuQSsHrhAAj9W0nzh2g_WSrYX_HsYoSlj-Nd0H6IYTJr_hKHYLtTo60lYWFHCjM2Rum7QWlhbwYYDYf2rJfiv13jfuANRExqTHdXBseAVl_w-a-AWeEZGFd6NElj4NOHZOZry5nzNeZ8ER-O2iQEZ__31kdFJqLk9xdM0yJ08CtZEJcHhrpAZrm7eMTcq9wSO1URqmnNfNFBRHmnMy7Iit8uNCQDOCN1hZ2tNgXho1RR2y-Pal2fgQr3YWIxT1jfucItDeaXv1aUFNZYJAXU_w62D5EQQ7LQ9GZbiXBDzPYAFdiN3z-Ir8yoath_J3tMBRHC3XlWYaRBuC1XfjD8Hvj0y8nUxkHyK7VHCAm3xtWWvpMyM73X2A9vaGgNvpByfPs3Uq_plCGd7M_GXDyjyeoOfYVQ23S-4x4QkbDOX9kj41_N7Xn09AbjyytbkBMrlmXlT6uK-aZZKt0DT_N8IB7pkLOe_KjcHiSowhww6tTncC4Odnwu_WEyUpce9cazkpqfgEJIb4lStWophSnV_Hz8q2Gxml7ipHqDrEk7Bd2DqDHW67u3FGTITS_qeWWzHbIH7Sw6ETkz_lVF2kJql_vImd1ebUu5MZNpBZcYqgnlUn1zIwGPidXDzHMZgeOkx_sdHDrJko7sJX3BBYbzKLPlbWttJYBUscvJnlLMiyFv_GX2ksBSFbbEW9e2XhzJdWpVsIz1LNDx2Q24BXdqxL4eYlq2X0dzaa_qPCUdj5jdOtrhoW0_bZRDjzccViDuTH1K8hc-d26ckU-05G0dVIo6l2f849ekOXgEoB7y9jJGSFnw4TzmOo3OL9cxzJfEMtQ7eT4RznfS8dDmBPQ2gNjFqim3KRST5VlfC1dI3j3XCOWRsbDajCUiOZn1h1ZWgJuFSb4hgQcqoS_555Rv4wUFGnBR0X5Oo31pipbPM443E6Dyqc4NgwRBRpfYQeRMQeXQ842AcFwFcl_k0zVewUdWLqnahrcafFPNsKnUHO7GatZ878LSyi2GBgB3S8s8GVhrgxoWgu2AXWmpMlggeQA2Th-_XhFvS9s5QeSupZk-gOC8Z2-mllOcOolP1ICAguMs8GcBx0LUZVFb2jtfR4d_u6XX8dSGp8-WXdhEQBKQu_MacCCn8k5oP2PKDUNlwJUwcKdlYrs68lMO7-gbS4wgSPSup-57uoBxro0jcChqB_KVRB3LP_q9_CLgV97wh0yRRT6ySBdelNkFTxaDP1FafY0wxcq0ZfWUONZZtYpUgPa_uekVOE4NpolY0XaAahFB58MMd5yDAMGc44nOP2zSZfxlNNbDPsznWNtXBbiCVhHn0CtEzFch5Afk_bdqVD9zD4qa5IHsCzSR7OEjObac0GTtY5B7JL6Nn6B8O0TIxjL18H-OCWllbWAT-db8S9VfN6W7-NcV85mCuIWe9kWhsf7vDsxQM80mGmSCacE9aag2qLipBzl1XRmirQtnwD9Kz3qRHjo2oQHI_6B_RlPHInrXrn89kq7p0Xsm__REPKYcUwpDvMWSW3TjuqALVVKWy34wKjUdMh0v4Fvh3KEORC3UNvSTAm2BipymbU7ZPPWH1qz7o3QexBOoy35PFzZxaB7f9PC8rJgBFMKJ_cX31mnVPz7Gl_Dt7Y8i6GuM35v9JVww7vFXold6OOOxU7Y9rnx6z3FYZz82SG4HYNmKX6C_CltDBgdaOmZjv4pC9KLznYw12eOvP2oEb8sRhFsZc3pIvKN_kkj2j82ZVb5_mZN5hVAGNcEgCuVfG76cvmgKVnPSfL3Md37hHzxvPCymX93SovWW4nJqz7L5QDMmH3-1n2PIrtMok-z2SvvItn3V5sqWdf6EXUR6HsHx-zqQ0Uzkv5Q3srvyk4p10vTcgLLkZAxO4sOI9KqPn8Hm0-9Q3_Q4O6VRQdfFlS0nYBmvcQLEVRakQR7DlGZ9B2vrECMJJVUwKUczPaYQc_U73fJzFu9Ew7i9NnkattYDkgQh8_eFjfSqw0CF_iJarbi21QCuJapsRSFjazb-ee0qX0TXRWGgYcvQqaNrdMxr17xOvpKtD8nCG2gTE7gOvDFRRsPE9D4NayH9k-M_-yuZxnucTj1MLEuBzsCuHDX3sXtfYjz8tewr4IDspxv7S3qYdQAoE-IpTIdXqlrKuU01kEQb0O0qSB-rvTC3DDx8YGWbQw_2lZBnRiN9XWhRrbu5B_FxjbwClXVKMIM88kSDBSjwQ-tRXL_lX61s0fgHBwhexxK0Sc5wGxZ7AhFludbYN3nR8-XREvJJWQU2FTTd7OJHiWR7lP6ILkjDTcdYJkKIGtZwqvzGy9N5w3L-JUtzOMH2HvhWe4cp0W8UbxU1ccf5ULZDAOjdPx6BVBsjGNwhIdT3icjQLRKjpHyEC-aEBrmEB8LMCH2Odtu0Y8vrRED-5xDKnA8FWXyBDHd2rP9a4UQobnYKbotFq0vWZmhm7nbeWfjQi24L0aPh8uNpUJTpCjqNjjZR94gm5ikjWwkIhRHCP_zroZTc3cdL-cah0HSh4YVWvpwhaTN62n6jSHOecSB_sxt2kC2e_-gI-cwp_6Qb1GxI2R_DaTPfTNSwJMOmyBCYI-SoPO2saxLyQIfgNULZKt6OfwICUfVL7Z6ToeMzmsU-cyp7vuHZXnCPtHZadayNXYQ-Gn3mX8RAXRIaowTlNVIdMAxN6tFvUHziFzSdedN8HnB7xxLh4KSGr4F5I3B3YJxAUgBL6ObqEGh5S-66ptp7PuOLiIg9bFP13sq5jOTEGIBV2dWzpM6hME7WL2bBzTXjMJ1fKS63AllIymAeGnS1VZ26SgmJsJJbcMWJLr4nFg-KNh3ZMvzstzDhJvWkuaakwPClFlZBBVlmoPEh76UNHkHepAZVMGDo2E5HqjBKdPJParn2xXTPiDIHuw39ohPx3F6rpCfPS4kZ6zJEdqtv94A&cid=CAAST-Ro8DpFBaPgObBcZxAx5PyK3berLLbimvp6CDiJOCc2DKPNRF1yCaktkNbDD462KtH-thqHFHx0LJN9DyZ8WPRTAKlOwnqyQaBAxSlFtsk&rfl=1%2Chttps%253A%252F%252Fgo.techgeek.digital%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 08 Oct 2022 22:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 30285
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_MCM_1.1_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4417491928103849&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3562875322&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356134&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=3975568835175416&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_MCM_1.1_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4417491928103849&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3562875322&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356134&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=3975568835175416&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_MCM_1.1_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=4417491928103849&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3562875322&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356134&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=3975568835175416&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Sat, 08 Oct 2022 22:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_MCM_0.94_11.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C335x200%7C400x225%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1948003318125522&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3978061497&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356218&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=310585787959413&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
216.58.211.2200 OK 801 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_MCM_0.94_11.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C335x200%7C400x225%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1948003318125522&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3978061497&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356218&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=310585787959413&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
IP 216.58.211.2:0
Hash 5fa3b65c062ff235f2cda840935a8a48
d52bba635c98b723d28392b05477a0fd62e60c8c
5fb083806daca90b019c7205aebc92a189f64799287be95f82f58d3c7c8083d1
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_MCM_0.94_11.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C335x200%7C400x225%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=1948003318125522&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=3978061497&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356218&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=310585787959413&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Sat, 08 Oct 2022 22:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.9_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2554579348026199&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2505613463&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356192&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=2267809882004690&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.9_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2554579348026199&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2505613463&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356192&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=2267809882004690&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.9_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2554579348026199&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=2505613463&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356192&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=2267809882004690&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Sat, 08 Oct 2022 22:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 269908
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 269908
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.75_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2886680393913416&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=1775827797&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356287&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=3187813797865449&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.75_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2886680393913416&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=1775827797&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356287&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=3187813797865449&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2Fnoweconomy.live_PS_TGT_MCM_0.75_07.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C300x250%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=2886680393913416&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=1775827797&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356287&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=3187813797865449&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Sat, 08 Oct 2022 22:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 289504
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_MCM_0.75_11.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C335x200%7C400x225%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=3300460223110169&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=782214176&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356319&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=512610564514259&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
216.58.211.2200 OK 113 B URL HTTP/2 pubads.g.doubleclick.net/gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_MCM_0.75_11.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C335x200%7C400x225%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=3300460223110169&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=782214176&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356319&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=512610564514259&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491
IP 216.58.211.2:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 9e5d36292a75aef07bdde5891b2e4a7b
8d69904b7df5e550f1884e06c139bd9661eb2917
92ffc3ec51e068750c23ae95041fd670aa4aa60ce3a5295ad27d2179d0780168
GET /gampad/ads?iu=%2F22059416475%2C22668010951%2FAV_noweconomy.live_PS_MCM_0.75_11.01.2022&description_url=https%3A%2F%2Fnoweconomy.live%2F&tfcd=0&npa=0&ad_type=audio_video&sz=1x1%7C335x200%7C400x225%7C400x300%7C640x480&gdfp_req=1&output=xml_vast4&unviewed_position_start=1&env=vp&correlator=3300460223110169&sdkv=h.3.538.0&osd=2&frm=0&vis=1&sdr=1&hl=en&afvsz=200x200%2C250x250%2C300x250%2C336x280%2C450x50%2C468x60%2C480x70&is_amp=0&u_so=l&ctv=0&sdki=445&ptt=20&adk=782214176&sdk_apis=2%2C7%2C8&omid_p=Google1%2Fh.3.538.0&sid=550A5E00-1C69-4309-8237-03C96EE0A146&nel=0&eid=44748969%2C44760950%2C44765701&url=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&dt=1665268356319&cookie=ID%3D715e70d94386d822-22395eb03fce0047%3AT%3D1665268354%3AS%3DALNI_Mb_dlCbCEQF_d0eXMxMfVtc0P9oCA&cookie_enabled=1&scor=512610564514259&ged=ve4_td1_tt1_pd1_la1000_er1046.320.1203.620_vi0.0.939.1280_vp0_ts0_eb16491 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://imasdk.googleapis.com
google-lineitem-id: -2
google-creative-id: -2
google-mediationgroup-id: -2
google-mediationtag-id: -2
date: Sat, 08 Oct 2022 22:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cd5d928f4940498cb0388c0b0e50f9a2
139.45.197.242200 OK 27 kB URL HTTP/2 nanouwho.com/9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cd5d928f4940498cb0388c0b0e50f9a2
IP 139.45.197.242:0
File type JSON data\012- , ASCII text, with very long lines (58865)
Hash dbd6ddf31f2dbf8c4bf45efece95b1d3
4c64b41cc9b2211e71cf0d7443d6ca15a72d5bba
5106a625fa7f1d7fa1e9c94e1cf799d60658aeec0b335df9ca2673b0e87d67d5
Analyzer Verdict Alert quad9 Sinkholed
POST /9?z=4986256&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cd5d928f4940498cb0388c0b0e50f9a2 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 43
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=810fffbabb034c9282c19a9de680b668; oaidts=1665268352
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: ae7cde70520dbb84e792c0ce320d9c76
access-control-expose-headers: X-Sc
set-cookie: OAID=cd5d928f4940498cb0388c0b0e50f9a2; expires=Sun, 08 Oct 2023 22:32:33 GMT; secure; SameSite=None
oaidts=1665268352; expires=Sun, 08 Oct 2023 22:32:33 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvqKeZk4bhHgMT6wDvz6kb_ErKUHcOWmXMBq9ZCnpQodljIyDNHVMiTPXyHS-zzDvOQcsTUvNFLjWU4c99VzV9y_QwzVpr1sVdc9S8K7b2q7ntIGfFaadD6hM5CCWmF4MffxN1z9_CVj4XTdlug1L7QHJu_lgjNd5XVVhhYJ6wxcB0EsP7__T6ft8QiB7H9J-73JG7rC5Eb5BC95u8S-XPBv96deCAvyJ1RXYwZuc7gyODZZbbgxHVVLNB_3hBcL1vvByhG37ZXqIcE5MgYtnKFSLc54p8ufYF7awlFy6EfREzay-nECiV_X4dzm7YXkTK3GMfGUFrcxGLaeUJOyDXp-IO33j82TEszcOMUi8Hjhl1LYHiPAv6a4E0mK12E-ZOJuoeoElpI7SJZK4uSMyeVDa7LbSkwwMLHD1DDdZDu23qQbZOPUZA5x0iLa7ImFsNTBdcavMP7jm8t2L9VRUDA-32-yDTqdK7OKahMchmr8ti4FmkYb8k6VzkggOOdw2waAnqjZ4WeW4RuxMKrQ9Crk6_6tAlbCqrwI2QirOK4s2VNQEmofyYZqaxTZf3pVJ5A6pW89RWoj_gA9-IhUndI22I4A7Tng3NCgLEjLEKYpyGZY7QNgb7D0MqKoiJNERNjwz9COA9pYsU1sr02UosqhXIkGS3RfliDjd_xJ-IrMzRch6fAhkmT1PgOm0ivO4CB1BmBO8pWjRuzubpcIvZKKn74xbuUKT_jfUcpONTFvcoltUxhvYclB6eSiHukPLUGjPe7sfNspfHBaJwknVxYDmreUMKrKoKEWoOsvTR1gRbbi1aP5m80Ea95Gszqp4vb0IZp9DOpC8kxI4O1yImVkB4klJeHTcMErLF5sSR-TAvJqDVHzhM9xpFmc53U6spSSjp7X2m3CuA42EVMV4yl_1dTm0k62_9NN7nPxyTr3bptXBtIYqAaeY-UewYoEexVCQ1TJhz_MklOn2y4utpP11Q23uZJxUoDvXTeCkRigBYCwM2JqcGR1jRyGz6mTeuc_RSFg0TMiRMo1tRpDesj_33Dg0Kfh_nUuYIw_R3RyZBeJ60bHlyrpRsIoDjfuU6D013FgURcL4QTC-i3c0tTEWzeMAcYUS72Qg8bFoxDMWBoj2dBikP7EqFQur2twEi6APGcZ8FB3-JwVkVN9ZJocSvkAwn9QJD5xarlC6aeuw7UuoKzsWefOeZWNwDDK8R1jKuBhA7qjc9MoIVVjoGyCYekrLQYBn-sT4rH&sai=AMfl-YRbUyQxMYiPrusrXFzwIuN9YuqsMr4MoyUZayeY8N5bU7pwkVbLxYeVMr1BWneFlOdSJGJoWC3A93Y9QwcMXqx5HoJkxgoBoIYGbfn1XioMyA2GWoU3SVESwbJf-mgq3IVMYYsHuzvXpkXnoXlJqN2WC60yIWRscT7x7QM260_PbqEeVwuy99otf_4O25NJMf16tSGm-3Kzf5JNKSd5T-goOGcShktZrn3SWenx-aZcqKwZqRdTXxY21iop9-VhvPK8Syk4x-C_nJ8MpssZFQdU543zm9K99KQdIoc&sig=Cg0ArKJSzAPHn1kThyFoEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20221003.82874&adurl=
142.250.74.162200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvqKeZk4bhHgMT6wDvz6kb_ErKUHcOWmXMBq9ZCnpQodljIyDNHVMiTPXyHS-zzDvOQcsTUvNFLjWU4c99VzV9y_QwzVpr1sVdc9S8K7b2q7ntIGfFaadD6hM5CCWmF4MffxN1z9_CVj4XTdlug1L7QHJu_lgjNd5XVVhhYJ6wxcB0EsP7__T6ft8QiB7H9J-73JG7rC5Eb5BC95u8S-XPBv96deCAvyJ1RXYwZuc7gyODZZbbgxHVVLNB_3hBcL1vvByhG37ZXqIcE5MgYtnKFSLc54p8ufYF7awlFy6EfREzay-nECiV_X4dzm7YXkTK3GMfGUFrcxGLaeUJOyDXp-IO33j82TEszcOMUi8Hjhl1LYHiPAv6a4E0mK12E-ZOJuoeoElpI7SJZK4uSMyeVDa7LbSkwwMLHD1DDdZDu23qQbZOPUZA5x0iLa7ImFsNTBdcavMP7jm8t2L9VRUDA-32-yDTqdK7OKahMchmr8ti4FmkYb8k6VzkggOOdw2waAnqjZ4WeW4RuxMKrQ9Crk6_6tAlbCqrwI2QirOK4s2VNQEmofyYZqaxTZf3pVJ5A6pW89RWoj_gA9-IhUndI22I4A7Tng3NCgLEjLEKYpyGZY7QNgb7D0MqKoiJNERNjwz9COA9pYsU1sr02UosqhXIkGS3RfliDjd_xJ-IrMzRch6fAhkmT1PgOm0ivO4CB1BmBO8pWjRuzubpcIvZKKn74xbuUKT_jfUcpONTFvcoltUxhvYclB6eSiHukPLUGjPe7sfNspfHBaJwknVxYDmreUMKrKoKEWoOsvTR1gRbbi1aP5m80Ea95Gszqp4vb0IZp9DOpC8kxI4O1yImVkB4klJeHTcMErLF5sSR-TAvJqDVHzhM9xpFmc53U6spSSjp7X2m3CuA42EVMV4yl_1dTm0k62_9NN7nPxyTr3bptXBtIYqAaeY-UewYoEexVCQ1TJhz_MklOn2y4utpP11Q23uZJxUoDvXTeCkRigBYCwM2JqcGR1jRyGz6mTeuc_RSFg0TMiRMo1tRpDesj_33Dg0Kfh_nUuYIw_R3RyZBeJ60bHlyrpRsIoDjfuU6D013FgURcL4QTC-i3c0tTEWzeMAcYUS72Qg8bFoxDMWBoj2dBikP7EqFQur2twEi6APGcZ8FB3-JwVkVN9ZJocSvkAwn9QJD5xarlC6aeuw7UuoKzsWefOeZWNwDDK8R1jKuBhA7qjc9MoIVVjoGyCYekrLQYBn-sT4rH&sai=AMfl-YRbUyQxMYiPrusrXFzwIuN9YuqsMr4MoyUZayeY8N5bU7pwkVbLxYeVMr1BWneFlOdSJGJoWC3A93Y9QwcMXqx5HoJkxgoBoIYGbfn1XioMyA2GWoU3SVESwbJf-mgq3IVMYYsHuzvXpkXnoXlJqN2WC60yIWRscT7x7QM260_PbqEeVwuy99otf_4O25NJMf16tSGm-3Kzf5JNKSd5T-goOGcShktZrn3SWenx-aZcqKwZqRdTXxY21iop9-VhvPK8Syk4x-C_nJ8MpssZFQdU543zm9K99KQdIoc&sig=Cg0ArKJSzAPHn1kThyFoEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20221003.82874&adurl=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvqKeZk4bhHgMT6wDvz6kb_ErKUHcOWmXMBq9ZCnpQodljIyDNHVMiTPXyHS-zzDvOQcsTUvNFLjWU4c99VzV9y_QwzVpr1sVdc9S8K7b2q7ntIGfFaadD6hM5CCWmF4MffxN1z9_CVj4XTdlug1L7QHJu_lgjNd5XVVhhYJ6wxcB0EsP7__T6ft8QiB7H9J-73JG7rC5Eb5BC95u8S-XPBv96deCAvyJ1RXYwZuc7gyODZZbbgxHVVLNB_3hBcL1vvByhG37ZXqIcE5MgYtnKFSLc54p8ufYF7awlFy6EfREzay-nECiV_X4dzm7YXkTK3GMfGUFrcxGLaeUJOyDXp-IO33j82TEszcOMUi8Hjhl1LYHiPAv6a4E0mK12E-ZOJuoeoElpI7SJZK4uSMyeVDa7LbSkwwMLHD1DDdZDu23qQbZOPUZA5x0iLa7ImFsNTBdcavMP7jm8t2L9VRUDA-32-yDTqdK7OKahMchmr8ti4FmkYb8k6VzkggOOdw2waAnqjZ4WeW4RuxMKrQ9Crk6_6tAlbCqrwI2QirOK4s2VNQEmofyYZqaxTZf3pVJ5A6pW89RWoj_gA9-IhUndI22I4A7Tng3NCgLEjLEKYpyGZY7QNgb7D0MqKoiJNERNjwz9COA9pYsU1sr02UosqhXIkGS3RfliDjd_xJ-IrMzRch6fAhkmT1PgOm0ivO4CB1BmBO8pWjRuzubpcIvZKKn74xbuUKT_jfUcpONTFvcoltUxhvYclB6eSiHukPLUGjPe7sfNspfHBaJwknVxYDmreUMKrKoKEWoOsvTR1gRbbi1aP5m80Ea95Gszqp4vb0IZp9DOpC8kxI4O1yImVkB4klJeHTcMErLF5sSR-TAvJqDVHzhM9xpFmc53U6spSSjp7X2m3CuA42EVMV4yl_1dTm0k62_9NN7nPxyTr3bptXBtIYqAaeY-UewYoEexVCQ1TJhz_MklOn2y4utpP11Q23uZJxUoDvXTeCkRigBYCwM2JqcGR1jRyGz6mTeuc_RSFg0TMiRMo1tRpDesj_33Dg0Kfh_nUuYIw_R3RyZBeJ60bHlyrpRsIoDjfuU6D013FgURcL4QTC-i3c0tTEWzeMAcYUS72Qg8bFoxDMWBoj2dBikP7EqFQur2twEi6APGcZ8FB3-JwVkVN9ZJocSvkAwn9QJD5xarlC6aeuw7UuoKzsWefOeZWNwDDK8R1jKuBhA7qjc9MoIVVjoGyCYekrLQYBn-sT4rH&sai=AMfl-YRbUyQxMYiPrusrXFzwIuN9YuqsMr4MoyUZayeY8N5bU7pwkVbLxYeVMr1BWneFlOdSJGJoWC3A93Y9QwcMXqx5HoJkxgoBoIYGbfn1XioMyA2GWoU3SVESwbJf-mgq3IVMYYsHuzvXpkXnoXlJqN2WC60yIWRscT7x7QM260_PbqEeVwuy99otf_4O25NJMf16tSGm-3Kzf5JNKSd5T-goOGcShktZrn3SWenx-aZcqKwZqRdTXxY21iop9-VhvPK8Syk4x-C_nJ8MpssZFQdU543zm9K99KQdIoc&sig=Cg0ArKJSzAPHn1kThyFoEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20221003.82874&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 22:32:37 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 08-Oct-2022 22:47:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 08 Oct 2022 22:32:37 GMT
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=osv&puid=1~l90hs7b8&c=5410441893492&slotId=2705220946746&qqid=CKbW74XY0foCFarIOwIdKWsFSg&fb=outstream-lima&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=outstream
216.58.213.3204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=osv&puid=1~l90hs7b8&c=5410441893492&slotId=2705220946746&qqid=CKbW74XY0foCFarIOwIdKWsFSg&fb=outstream-lima&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=outstream
IP 216.58.213.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=osv&puid=1~l90hs7b8&c=5410441893492&slotId=2705220946746&qqid=CKbW74XY0foCFarIOwIdKWsFSg&fb=outstream-lima&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=outstream HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://de6173e969ecea0cbdea70e9d353e23b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 08 Oct 2022 22:32:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2481
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:37 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2491
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:40 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1665268360070&asid=6215f24fc5339015154d3144%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C61dd3cfdaba5ac776422c86a%2C621608fa964cdd04dc3e2f6b%2C620e1d517f4f540812237178%2C61dd3ddf4d1f07692963d4e6&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1665268360070&asid=6215f24fc5339015154d3144%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C61dd3cfdaba5ac776422c86a%2C621608fa964cdd04dc3e2f6b%2C620e1d517f4f540812237178%2C61dd3ddf4d1f07692963d4e6&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=request&cb=1665268360070&asid=6215f24fc5339015154d3144%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C61dd3cfdaba5ac776422c86a%2C621608fa964cdd04dc3e2f6b%2C620e1d517f4f540812237178%2C61dd3ddf4d1f07692963d4e6&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:40 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1665268360069&asid=61d828eebcd2bb5c4a7fea6a%2C6241bdfbac818e4e634ef395%2C61dd3c7395974400712518ae&ofpr=%2C%2C&fpo=%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1665268360069&asid=61d828eebcd2bb5c4a7fea6a%2C6241bdfbac818e4e634ef395%2C61dd3c7395974400712518ae&ofpr=%2C%2C&fpo=%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=request&cb=1665268360069&asid=61d828eebcd2bb5c4a7fea6a%2C6241bdfbac818e4e634ef395%2C61dd3c7395974400712518ae&ofpr=%2C%2C&fpo=%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:40 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=bid&cb=1665268360094&asid=61d828eebcd2bb5c4a7fea6a%2C6241bdfbac818e4e634ef395%2C61dd3c7395974400712518ae&ofpr=%2C%2C&fpo=%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=bid&cb=1665268360094&asid=61d828eebcd2bb5c4a7fea6a%2C6241bdfbac818e4e634ef395%2C61dd3c7395974400712518ae&ofpr=%2C%2C&fpo=%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f48aca6be712af437efb&pasid=6215f4f2666297307a7c5bc8&e=bid&cb=1665268360094&asid=61d828eebcd2bb5c4a7fea6a%2C6241bdfbac818e4e634ef395%2C61dd3c7395974400712518ae&ofpr=%2C%2C&fpo=%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:40 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=bid&cb=1665268360095&asid=6215f24fc5339015154d3144%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C61dd3cfdaba5ac776422c86a%2C621608fa964cdd04dc3e2f6b%2C620e1d517f4f540812237178%2C61dd3ddf4d1f07692963d4e6&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
3.212.104.254200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=bid&cb=1665268360095&asid=6215f24fc5339015154d3144%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C61dd3cfdaba5ac776422c86a%2C621608fa964cdd04dc3e2f6b%2C620e1d517f4f540812237178%2C61dd3ddf4d1f07692963d4e6&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C
IP 3.212.104.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Linux&r=go.techgeek.digital&rs=go.techgeek.digital&sid=31807&t=1665268354&cip=91.90.42.154&sn=&tgt=0&osv=&bv=96.0&brn=Firefox&wi=640&he=361&app=&AV_PUBLISHERID=61d82ad1753313534b21dc37&test=&aafaid=&proto=https&uid=1665268354257-973762463256-008981-010-008162&cha=0.7&stagid=61d82c9e7046f6350c28b124&stplid=61d82bbb88b0e565f939d729&d35=&d36=6.2.56&cb=45015913505&d39=&d65=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=640&AV_HEIGHT=361&&ppid=61d82ad1753313534b21dc37&nid=5e7b9048180bd02ded4b0937&pcid=61d82b27ba35a623517b0be5&ncid=6215f2b972679c5c7a1f81dc&pasid=6215f32a86b15f21914b4777&e=bid&cb=1665268360095&asid=6215f24fc5339015154d3144%2C61dd3e146f354a105a422888%2C61d828e3b7ec9124560ae3c7%2C61d82a04639d091184147b06%2C61dd3cfdaba5ac776422c86a%2C621608fa964cdd04dc3e2f6b%2C620e1d517f4f540812237178%2C61dd3ddf4d1f07692963d4e6&ofpr=%2C%2C%2C%2C%2C%2C%2C&fpo=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:40 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb691d24b-df85-4807-a45e-6f1df3dae19e.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb691d24b-df85-4807-a45e-6f1df3dae19e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd33e72bf6e13474c0de9416183abaca
983fd9399b9c0185397df731d8ca947ea7fb9297
5b6be8262aa496beac391c5dbf4b754dc4bc5356107a3dce1217030e698f9021
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb691d24b-df85-4807-a45e-6f1df3dae19e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6069
x-amzn-requestid: fec1f21d-1f6e-4575-9866-ea4af1b1468e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHbeGh2IAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec49-3cb0ec0c5b42d0b620e9ddb6;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:31:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3b-dFJTUJ_FNQfN1RGEWfDgCrICUctYJBeO-Rdfz83wyOzynrloT_w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:18 GMT
age: 2902
etag: "983fd9399b9c0185397df731d8ca947ea7fb9297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.84.149200 OK 0 B IP 104.21.84.149:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1546
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8%2BLDu%2FqzghRYaNhdl7KlwP2%2BeFyaxFdPyJRbudCkK%2FVpjnbnjA04%2BgB1r6ccioAA3LyKQx%2BKhy5KuvHar83SsewkihXjEpz6gFSwOYjo4va1D1NKmUmoEqC%2Fjm12oQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75725544ad271c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
betotodilea.com/500/4986248?excludes=&oaid=cd5d928f4940498cb0388c0b0e50f9a2&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/500/4986248?excludes=&oaid=cd5d928f4940498cb0388c0b0e50f9a2&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
GET /500/4986248?excludes=&oaid=cd5d928f4940498cb0388c0b0e50f9a2&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: OAID=ac5e998b9af04e74be4b1dac326be841
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: application/javascript
x-trace-id: 56f19dd54354840a5b655b760d3bf13b
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://go.techgeek.digital
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=cd5d928f4940498cb0388c0b0e50f9a2; expires=Sun, 08 Oct 2023 22:32:33 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
static.adshort.co/link/css/bootstrap.css
104.21.1.248200 OK 0 B URL HTTP/2 static.adshort.co/link/css/bootstrap.css
IP 104.21.1.248:0
GET /link/css/bootstrap.css HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: text/css
cf-bgj: minify
last-modified: Mon, 24 Feb 2020 16:45:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=260KSWLfD8l0TdPNq9URV6bKmS2d0A6cFb2vviBacDkDGI89%2Bf7XjARn5psEuamVfipjVM4FimKWxqqsHsfM8j3mfEYnHQ8U6Y4W3W%2F23vkLJ%2FK7NBEglZTEvIAYxgxUij4z7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572554139731c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
interstitial-07.com/?l=p8NYtlbFpV62T4w&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1140793793%26z%3D4986256%26b%3D14566424%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DBaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3De2c2b265-51e1-420e-b206-9eae99c0fe45%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F1dc3F1%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.151200 OK 0 B URL HTTP/2 interstitial-07.com/?l=p8NYtlbFpV62T4w&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1140793793%26z%3D4986256%26b%3D14566424%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DBaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3De2c2b265-51e1-420e-b206-9eae99c0fe45%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F1dc3F1%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.151:0
GET /?l=p8NYtlbFpV62T4w&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D1140793793%26z%3D4986256%26b%3D14566424%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DBaaL_IoC4k8ohL8LVTBVRORAboOBmVPziEAmSlLmXAdsAeo3w6vRcHbih1CRoQgWjYWg_YkcYGgmQAlKoTGAHH0hhk-NL2Rx43kADnPLxY5rwvwoVwY3FP0ZnTclIsp32cy1YYmMqVqPc6U-nFM_TNfabOvtp-T4Pq6bRqcjEM3WD-c3Qf_NqhKCyFr9vSW4EStCIzBebuaMZHRPbIp9VqfyJmcKiTq4-XvX1-3yCvL_zZKPRgJh2Nv4jkQZNHZQdmyQ4-usABRiMvjAsRpqz4gAMr0hAHrIKwwhippg6rcicpXlR_o4kqfhC9X39rOzUDaHIF50IjWjMulSUZbYNtCHSlVDG-m2uZa8CnjeUZrabFP4QJyYstc0UoqQwmEsvnWVaVSBHfGijsSrtiu4ShKHM7TWGnJlyMU1-X6ekHgFXzQuiFtIJw3Zi-9arbDnA0vSxROxDicw5JL3O0M46hYWFS_cXCIwkT53QiJSjbNL0h1XIXdjebE8ZMMMVmYKElGgpv4n-QiP3Ym7MxTf4dYCx7ZjIKBJRp6xQpX_jDq5mL6P_Idv5OI0V6C78HI4SjrwIM8vkUtFJP4zYekEgBkY9BJ9Wqp22aucudJm8dO7dq_IyuCtVDxDTpIKRk1SRcDf2h4kj5FWoUKlmROkIOU41NYPF0zf2A8SuFy2o-z2C-0YjhQokw%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3De2c2b265-51e1-420e-b206-9eae99c0fe45%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgo.techgeek.digital%252F1dc3F1%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
set-cookie: reverse=B-OLnWyQZi1sryQZ7kwDAGYISyxvCApjqT09yFQIRi8; expires=Sat, 08-Oct-2022 23:32:33 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
unphionetor.com/fv.js?t=72747&cb=1114852274
139.45.197.236200 OK 0 B URL HTTP/2 unphionetor.com/fv.js?t=72747&cb=1114852274
IP 139.45.197.236:0
Analyzer Verdict Alert quad9 Sinkholed
GET /fv.js?t=72747&cb=1114852274 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:33 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: b240151d16c94cf627fa0be3b5d60856
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adshort.media/adx/fixed_adxv2t_606.js
172.67.179.25200 OK 0 B URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_606.js
IP 172.67.179.25:0
GET /adx/fixed_adxv2t_606.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Wed, 09 Feb 2022 09:47:17 GMT
cache-control: max-age=2592000
expires: Mon, 07 Nov 2022 21:07:59 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5073
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5tWgLXI1yLcd%2Fh5eaN8szW3rfK2eLQWbzkHwFaY0I0coKI5n2jfe4KBDeM2tVhqokngz%2FXTMFVJZPhm%2FMe6ZxDm6XKe5mpN3mKbq21A2VoahtSd%2BfFgSni1keR%2F5HGWGQEVJAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 757255418a141c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.adshort.media/adx/fixed_adxv2t_605.js
172.67.179.25200 OK 0 B URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_605.js
IP 172.67.179.25:0
GET /adx/fixed_adxv2t_605.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Mon, 07 Feb 2022 17:48:17 GMT
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 23:24:01 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 342511
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ocV%2Fu3T5Uig0A7yVDzhPOW0sxEkt2QV5Z8OuGMrXauImISH%2B1vfkMNgcf%2BF8Ai9rtEoD3tQfuacbUB6N74Tg%2BkhNePSKRPRQUpleEGp9JDmZLZMY4EfXL57AF%2Fxz60htrenX2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 757255418a131c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.adshort.co/link/css/link.css
104.21.1.248200 OK 0 B URL HTTP/2 static.adshort.co/link/css/link.css
IP 104.21.1.248:0
GET /link/css/link.css HTTP/1.1
Host: static.adshort.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: text/css
cf-bgj: minify
cf-polished: status=cannot_optimize
last-modified: Mon, 24 Feb 2020 16:45:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bJcCac8gXNwPoItZqfnHeTflS9waX7uZ5zMqHfWSinqFIWLNfCv27HLWif4j7aFziGV3ZmSLSOu8EyWydjmpfhrH5NMbQow1tcWV7wcO0Xcc9yKvok08qbiZGNw5A4hP1iVa6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572554119631c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go1.aniview.com/api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.56&responsive=1&sver=2&avtoken=353737&omv=1.0.1&clsid=2e3d3cf9-60ca-46a7-b240-1b4f61f07c72&rando=41&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1665268353832&wfc=1
54.157.211.237200 OK 0 B URL HTTP/2 go1.aniview.com/api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.56&responsive=1&sver=2&avtoken=353737&omv=1.0.1&clsid=2e3d3cf9-60ca-46a7-b240-1b4f61f07c72&rando=41&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1665268353832&wfc=1
IP 54.157.211.237:0
GET /api/adserver/tag/?AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fgo.techgeek.digital%2F1dc3F1&AV_PUBLISHERID=61d82ad1753313534b21dc37&AV_CHANNELID=61d82b27ba35a623517b0be5&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=go.techgeek.digital&AV_DADPOS=3&AV_TAG=61d82c9e7046f6350c28b124&AV_TEMPLATE=61d82bbb88b0e565f939d729&d36=6.2.56&responsive=1&sver=2&avtoken=353737&omv=1.0.1&clsid=2e3d3cf9-60ca-46a7-b240-1b4f61f07c72&rando=41&AV_WIDTH=640&AV_HEIGHT=361&AV_DNT=0&cb=1665268353832&wfc=1 HTTP/1.1
Host: go1.aniview.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:34 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1665268354257-973762463256-008981-010-008162; Expires=Fri, 28-Oct-22 22:32:34 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
aniC=; Expires=Fri, 28-Oct-22 22:32:34 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-origin: https://go.techgeek.digital
expires: Tue, 27 Sep 2022 08:45:54 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
nanouwho.com/1?z=4986256
139.45.197.242200 OK 0 B IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
GET /1?z=4986256 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: dd1c287d9a53ec320bd541eed0d101fd
access-control-expose-headers: X-Sc
x-sc: wDZ4jMztfgvij-s2NENAogSQI4Qf5Vaeuf4CuFArTSC0Cj8aOSmIThR6lHc2x167Rhx-DHhzwrm4dRPEqSV16rI0HYo=
set-cookie: scm=1; expires=Sun, 08 Oct 2023 22:32:32 GMT; secure; SameSite=None
OAID=810fffbabb034c9282c19a9de680b668; expires=Sun, 08 Oct 2023 22:32:32 GMT; secure; SameSite=None
oaidts=1665268352; expires=Sun, 08 Oct 2023 22:32:32 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Questrial
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Questrial
IP 142.250.74.10:0
GET /css?family=Questrial HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 08 Oct 2022 22:32:32 GMT
date: Sat, 08 Oct 2022 22:32:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
zunsoach.com/5/4503973/?oo=1&aab=1
139.45.197.248200 OK 0 B URL HTTP/2 zunsoach.com/5/4503973/?oo=1&aab=1
IP 139.45.197.248:0
GET /5/4503973/?oo=1&aab=1 HTTP/1.1
Host: zunsoach.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.techgeek.digital
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/json
x-trace-id: 11f3285c50080125eb5a113da44d2103
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://go.techgeek.digital
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=cd5d928f4940498cb0388c0b0e50f9a2; expires=Sun, 08 Oct 2023 22:32:32 GMT; path=/; secure; SameSite=None
oaidts=1665268352; expires=Sun, 08 Oct 2023 22:32:32 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
nanouwho.com/27/8895279539f8e7258627d3f113c8e00a
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/27/8895279539f8e7258627d3f113c8e00a
IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
GET /27/8895279539f8e7258627d3f113c8e00a HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Cookie: scm=1; OAID=810fffbabb034c9282c19a9de680b668; oaidts=1665268352
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 06 Oct 2022 06:46:02 GMT
expires: Thu, 05 Nov 2082 06:46:02 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adshort.media/adx/fixed_adxv2t_607.js
172.67.179.25200 OK 0 B URL HTTP/2 ads.adshort.media/adx/fixed_adxv2t_607.js
IP 172.67.179.25:0
GET /adx/fixed_adxv2t_607.js HTTP/1.1
Host: ads.adshort.media
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Wed, 09 Feb 2022 09:40:28 GMT
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 23:24:01 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 342511
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YozUvgcwKzqy4M7iYX4LJoFh9ZSMEXETYMfALcL0%2BODruVV%2BSHHWLJno%2FxBcfb0kA76KXpdETgzpFGyHSqC8shuvomGeayqfIIRGGSkl1WFFNm4jCbH8gTYLfrU7flsWcJIwWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 757255417a041c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
betotodilea.com/400/4986248
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/400/4986248
IP 139.45.197.237:0
GET /400/4986248 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.techgeek.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 22:32:32 GMT
content-type: application/javascript
x-trace-id: 75152d643fba8f3c3a0a36964b898725
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=ac5e998b9af04e74be4b1dac326be841; expires=Sun, 08 Oct 2023 22:32:32 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2