r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7637
Expires: Fri, 27 Jan 2023 13:51:29 GMT
Date: Fri, 27 Jan 2023 11:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14070
Expires: Fri, 27 Jan 2023 15:38:42 GMT
Date: Fri, 27 Jan 2023 11:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2719
Expires: Fri, 27 Jan 2023 12:29:31 GMT
Date: Fri, 27 Jan 2023 11:44:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 11:35:21 GMT
content-type: application/json
age: 531
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wS0+S8DE5HMenQSeaptcd9v3EEn4bnp8QzZGy1vInxgYF1P/lwkt4M9N1u8KdP8Z+f8BVGR9a2Y=
x-amz-request-id: 0CCPZA8S18VMTWWX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 11:20:31 GMT
age: 1421
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 11:44:12 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
a.browserspeed.support/
52.88.206.136302 Moved Temporarily 49 B IP 52.88.206.136:0
File type HTML document, ASCII text
Hash 6ef60ba1cb1350ea155d7bb021c05f88
859cdc65c36677332cc4064b4448b2b3d118ea56
56ffc0a154ec5b79dfa63d116ed0a399b2457f62db9c4e48a6cf2f5003ed83e7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: a.browserspeed.support
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: awselb/2.0
Date: Fri, 27 Jan 2023 11:44:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 49
Connection: keep-alive
Set-Cookie: tuid=1ca2e0d2-64bc-4f55-a6f0-d3e557bba640; Path=/; Domain=a.usbrowserspeed.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
Location: https://www.speedtest.net/
www.speedtest.net/
104.16.209.12200 OK 35 kB IP 104.16.209.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22183)
Hash ead4bc1a578bce3f7fa8d98e099983ad
b181b493bb118876499eec284598e3459d7090fc
ec1808918af91209a04d94be7f06202370841cc775393a3eeeb0390e7c93d2e4
GET / HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:12 GMT
content-type: text/html; charset=utf-8
content-length: 34929
cache-control: private
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
etag: W/"1d4df-1PBM8s7p6g/P7ZtKB5eLGhpNlF4"
content-encoding: gzip
accept-ranges: bytes
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=av9UuLn7vD5wa5ymLZkiahgAWErGgbCdY_Ve00xH5dM-1674819852-0-AaT5eRVJs4tYSJ819iSsZv1ybbHO45OtnDQBIGNd9jkIwN6cr7LCQ2o+SObUHWM7tX54bQfEgpeab3V8RKheQik=; path=/; expires=Fri, 27-Jan-23 12:14:12 GMT; domain=.www.speedtest.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79013c2e4c74b505-OSL
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 10:49:03 GMT
age: 3309
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
zdstatic.speedtest.net/jst/zdconsent.js
23.36.77.224200 OK 16 kB URL HTTP/2 zdstatic.speedtest.net/jst/zdconsent.js
IP 23.36.77.224:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21276)
Hash ab55d66f48d1fb935e784810e3bb3540
f9cfcb4c82174f96083cbdd02963b4e1dd628211
00f72fda5fb8930721d625228c8c9767dc69de9569ccb2b9b05bd8fa87187c8c
GET /jst/zdconsent.js HTTP/1.1
Host: zdstatic.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
last-modified: Mon, 23 Jan 2023 19:09:55 GMT
etag: "d2895acc98940d7734b986a87ae91bb8"
accept-ranges: bytes
content-type: application/javascript
content-encoding: gzip
content-length: 15668
cache-control: max-age=1203
expires: Fri, 27 Jan 2023 12:04:15 GMT
date: Fri, 27 Jan 2023 11:44:12 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
b.cdnst.net/fonts/HCo_fonts.css
151.101.130.219200 OK 112 kB URL HTTP/2 b.cdnst.net/fonts/HCo_fonts.css
IP 151.101.130.219:0
File type ASCII text, with very long lines (35408)
Size 112 kB (111462 bytes)
Hash a058224608f9b70a4f0502d4dee2d4e0
bc6e3a5bf3439f67f8639361ecb35bd9cbcedafb
278a508174af4db3bae86cc5001fd8b3c7a9728c12db1c3f7e2504656cb6e204
GET /fonts/HCo_fonts.css HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"24005-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:12 GMT
vary: Origin, Accept-Encoding
content-length: 111462
X-Firefox-Spdy: h2
b.cdnst.net/images/group-black/groupblack-white_on_black-1x.png
151.101.130.219200 OK 1.9 kB URL HTTP/2 b.cdnst.net/images/group-black/groupblack-white_on_black-1x.png
IP 151.101.130.219:0
File type PNG image data, 114 x 47, 8-bit gray+alpha, non-interlaced\012- data
Hash 3cc9efdb28931e49be68fa4a0b46f406
b441662754ddf61d834775702f7a8cb1e6c6c4a4
b76abca4ceaaf1788e86a4c3f6794567c085cb1b44220876d8953fcc3df0ac06
GET /images/group-black/groupblack-white_on_black-1x.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"75b-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:12 GMT
content-length: 1883
X-Firefox-Spdy: h2
b.cdnst.net/javascript/ads/ad.js
151.101.130.219200 OK 45 B URL HTTP/2 b.cdnst.net/javascript/ads/ad.js
IP 151.101.130.219:0
File type ASCII text, with no line terminators
Hash e12a754e35639d5ed2a61f8b748b4f72
542f4ae4b82be75d0112e3f56a9b74b77d576722
5aa7a00356136259ec912f1b212a7782783e8a4488dabdc073a36ebcf706d73b
GET /javascript/ads/ad.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"19-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:12 GMT
vary: Origin, Accept-Encoding
content-length: 45
X-Firefox-Spdy: h2
b.cdnst.net/javascript/amazon.js
151.101.130.219200 OK 326 B URL HTTP/2 b.cdnst.net/javascript/amazon.js
IP 151.101.130.219:0
Hash 31a960a9b6caf9c52d50bf454a1f2ca8
b5d55701558c3eb68314fd7047205127067166fe
18760464a0ba60759418e348d6d059454c832ad9e6a1c8bf638b92c38be7dac3
GET /javascript/amazon.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"227-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:12 GMT
vary: Origin, Accept-Encoding
content-length: 326
X-Firefox-Spdy: h2
b.cdnst.net/styles/main.a272578758de0452a2dda11a5ad32a75.css
151.101.130.219200 OK 24 kB URL HTTP/2 b.cdnst.net/styles/main.a272578758de0452a2dda11a5ad32a75.css
IP 151.101.130.219:0
File type Unicode text, UTF-8 text, with very long lines (40636)
Hash 3f0c744e918d2a270762120479172f9e
e2b332e9244dd38b07e95d33e63cb946fc088918
e7af63fe5f85dc1f67d2ef07a0ecb7b753ac31e778c755e772baf4cfedfe16c1
GET /styles/main.a272578758de0452a2dda11a5ad32a75.css HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"229bf-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:12 GMT
vary: Origin, Accept-Encoding
content-length: 23635
X-Firefox-Spdy: h2
b.cdnst.net/javascript/speedtest-main.js?v=96a63a32d43de710581dd94aebae6938
151.101.130.219200 OK 856 kB URL HTTP/2 b.cdnst.net/javascript/speedtest-main.js?v=96a63a32d43de710581dd94aebae6938
IP 151.101.130.219:0
File type ASCII text, with very long lines (65464)
Size 856 kB (856394 bytes)
Hash 7bfa607ae94419476223e70c01507836
7a43560bc533f8a95a4c88b9c74c56d32c68af0b
118e5e9e2c62ac14c1d50c62cfe427534c1db403f36ec0b7b5cd1fc751a37d47
GET /javascript/speedtest-main.js?v=96a63a32d43de710581dd94aebae6938 HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:57:44 GMT
etag: W/"3137e7-185c6ac6140"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:12 GMT
vary: Origin, Accept-Encoding
content-length: 856394
X-Firefox-Spdy: h2
b.cdnst.net/fonts/gaugemono-regular-webfont.woff2
151.101.130.219200 OK 4.2 kB URL HTTP/2 b.cdnst.net/fonts/gaugemono-regular-webfont.woff2
IP 151.101.130.219:0
File type Web Open Font Format (Version 2), TrueType, length 4240, version 1.0\012- data
Hash ccd3711eb47a7fa5244eb22d02d4a605
df7fb091a8fd957509c81ba54144c8b123569cb8
1a00aa81f6ca32a692772c6a8bc908b62198154ce3eef1eeef346d80100b8e04
GET /fonts/gaugemono-regular-webfont.woff2 HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://b.cdnst.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"1090-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:12 GMT
access-control-allow-origin: *
content-length: 4240
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8557
Expires: Fri, 27 Jan 2023 14:06:50 GMT
Date: Fri, 27 Jan 2023 11:44:13 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b.cdnst.net/images/favicons/favicon-180.png
151.101.130.219200 OK 5.1 kB URL HTTP/2 b.cdnst.net/images/favicons/favicon-180.png
IP 151.101.130.219:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e7d2f2c233dea8628ae6fb92918762e
62a761a625607cca57df90ae792725544cce4e2a
a3448941adc8c86188d0e1b65d14cf605ece6296a17c5a7b257972cf22520398
GET /images/favicons/favicon-180.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"13ee-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
content-length: 5102
X-Firefox-Spdy: h2
b.cdnst.net/images/favicons/favicon.svg
151.101.130.219200 OK 554 B URL HTTP/2 b.cdnst.net/images/favicons/favicon.svg
IP 151.101.130.219:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1103), with no line terminators
Hash 6206763f0ab0b0dce7a176f3b28e1b7b
503796d615ec5b24a9f5dee25ed7a4d4c858efe5
ea61b2d54cadf8c8077396e8b4ef7ed7a4319b263bda2caf0ec84df0765659f7
GET /images/favicons/favicon.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"44f-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
vary: Accept-Encoding
content-length: 554
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/159017/2865/pwt.js
2.18.172.200200 OK 80 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/159017/2865/pwt.js
IP 2.18.172.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4faf89a7cdd5cf9fe2128742a667c276
eab04696fb93e47fd4680c9dc51fee62675bc96c
c3a9c7908fee321f54f16ef8a316f8336584a4e5b3c1ad9bc73558e3b4515518
GET /AdServer/js/pwt/159017/2865/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Tue, 17 Aug 2021 18:53:17 GMT
etag: "10e1230-3f41a-5c9c5d4a9bb4b"
unused62: 8096267
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: text/javascript
content-length: 80189
cache-control: max-age=81036
expires: Sat, 28 Jan 2023 10:14:49 GMT
date: Fri, 27 Jan 2023 11:44:13 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
b.cdnst.net/javascript/prebid.6.18.0.min.js
151.101.130.219200 OK 85 kB URL HTTP/2 b.cdnst.net/javascript/prebid.6.18.0.min.js
IP 151.101.130.219:0
File type ASCII text, with very long lines (65423)
Hash 0c181b01f40c7cfbf630a33bb1dc564f
4dabcf43f36a752173763bd317feb57fe95e883a
9c338a174f8a51846cedf933dbd41df93e6ba86714c247d331e503f42948cbba
GET /javascript/prebid.6.18.0.min.js HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"4422f-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
vary: Origin, Accept-Encoding
content-length: 84764
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/tag/js/gpt.js
142.250.74.2200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 142.250.74.2:0
File type ASCII text, with very long lines (39375)
Hash caf363ecfb209d92149bd96ea5b7b98f
67b556279ad4f25bd7df3f5da14a87ff58f290dc
4ade45d1ffa4e1a4f72484da95c87f2f827d8e5469496f6a6cd68e456baf9477
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27627
date: Fri, 27 Jan 2023 11:44:13 GMT
expires: Fri, 27 Jan 2023 11:44:13 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1464 / 435 of 1000 / last-modified: 1674778423"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
95.101.10.177200 OK 29 kB URL HTTP/2 cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
IP 95.101.10.177:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5b61ea1d49daf3cdaeab62e3f708e3a6
b23d51f8d0823f6607eb8ba78c6bb33e50130230
b07bfcce79b44237242e30eaac21280bca8cccfd50a27492d79390d4d4ad1493
GET /js/z0WVjCBSEeGLoxIxOQVEwQ.min.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NOhWm2OLDOcQnVcMDC5OcNt6JRAdbxtRZb4KVJXcn9jU7oQIqEhWzBaPyr6tYzbgeShaEep28Uc=
x-amz-request-id: EYR0927XD8JZ0MNJ
last-modified: Thu, 19 Jan 2023 13:29:22 GMT
x-amz-version-id: 3V0gBnvZzkCj42kmWJ6JnxuL.7jlNMYx
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Sat, 28 Jan 2023 11:44:13 GMT
date: Fri, 27 Jan 2023 11:44:13 GMT
content-length: 29368
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.speedtest.net
142.250.74.34200 OK 137 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.speedtest.net
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with very long lines (314), with no line terminators
Hash 75b5f8fdecfce25b8d40d00fa3602bcc
640749f699d50077146f3664c101fec330852d23
64a9acd3b744fbe94533919d01d8fd895cfc6d51fdc269997d1cde5073252d2b
GET /pagead/ppub_config?ippd=www.speedtest.net HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Fri, 27 Jan 2023 11:44:13 GMT
expires: Fri, 27 Jan 2023 11:44:13 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 137
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 27-Jan-2023 11:59:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2023012301.js?cb=31071978
142.250.74.34200 OK 133 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2023012301.js?cb=31071978
IP 142.250.74.34:0
File type ASCII text, with very long lines (65395)
Size 133 kB (133281 bytes)
Hash 9a4eaabcd1138400dd0b4b2aea79c85a
bbe4bc5827ae80648d76482243c36e9da7c2cfa8
96c38d3a2514ef03d455d60c807c207b87fa8c49d1599ed8a37ab324f746fe0f
GET /gpt/pubads_impl_2023012301.js?cb=31071978 HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133281
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 11:16:25 GMT
expires: Sat, 27 Jan 2024 11:16:25 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 23 Jan 2023 09:36:08 GMT
content-type: text/javascript
age: 1668
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.83.45.182101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.83.45.182:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AXD3+Iq0yqIbZSXNJ8hz3g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1/TJtR2pccbOv7zuZzJGy46+vLY=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9045fed8e5e321415e52d461e5f30065
55e249a754e83c5045442998945e7f956bd03f31
9004881d53b7693c5a1dfa2c70b35c862ec1403e1064057162898dd6d1c05d46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6444
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:13 GMT
Last-Modified: Fri, 27 Jan 2023 09:56:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
secure-us.imrworldwide.com/v60a.js
34.254.86.77301 Moved Permanently 134 B URL HTTP/2 secure-us.imrworldwide.com/v60a.js
IP 34.254.86.77:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /v60a.js HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Fri, 27 Jan 2023 11:44:13 GMT
content-type: text/html
content-length: 134
location: https://cdn-gl.imrworldwide.com:443/v60a.js
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-dl-multi-web.png
151.101.130.219200 OK 78 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-dl-multi-web.png
IP 151.101.130.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 8890e079e9f34641ac2e83e72fddb3e0
3bc76a8ea40f63494a0fdcbc5f31dedc501eb6cb
32b79f49ad238f7718e7ba9aa4cbb32e74a8a11a8a32dbcfdbfa926228c783f5
GET /images/gauge-gradient-dl-multi-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"132c5-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
content-length: 78533
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-ul-multi-web.png
151.101.130.219200 OK 74 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-ul-multi-web.png
IP 151.101.130.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 6751b2a4d9a7fb3ee0796273b9f3e37b
344d00d650da41f3ed0c454f93c3e07fb45475dd
0d23c759f4302ff762012a6ff00cbd124858dd9b387ea06eafa727c5e726fd77
GET /images/gauge-gradient-ul-multi-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"12248-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
content-length: 74312
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash a7dfc973099bfbda8eacf01ad048fc2b
5627423358a2d3367c39a8cd32b8efa34d1a278e
11c6167d8cf495d3f72bd28c8b0350a967e6b1775b0ccaffef94495d7395fb67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 11:44:13 GMT
Etag: "63d2eccf-1d7"
Last-Modified: Fri, 27 Jan 2023 10:52:34 GMT
Server: ECS (dcb/7F5D)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DBZacC-jvi9LfKioOTthVC0oJu84uaRELWGUoYzEwQQ8ncnUIlSB1Q==
Age: 3100
b.cdnst.net/images/gauge-gradient-dl-single-web.png
151.101.130.219200 OK 62 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-dl-single-web.png
IP 151.101.130.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 617f927ff5693553f31ed9f74627bc1c
6cd11711163f299a146614cddefea185de42c8c8
53ef39c91fa4b4f2d68d15483dcd7a2bc4b089c954e7b5a6808c6560740c887f
GET /images/gauge-gradient-dl-single-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"f3d1-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
content-length: 62417
X-Firefox-Spdy: h2
b.cdnst.net/images/gauge-gradient-ul-single-web.png
151.101.130.219200 OK 65 kB URL HTTP/2 b.cdnst.net/images/gauge-gradient-ul-single-web.png
IP 151.101.130.219:0
File type PNG image data, 720 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash d1dc88ef5824cb2b83db61a7b40265d7
cad3a25dbf0c2a750df576f001ca16f780e89fea
d3c3db2b5256d7c5fa7f2502e752ced784853fe0fdd01d8a219bd9e041a579c7
GET /images/gauge-gradient-ul-single-web.png HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"ff47-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
content-length: 65351
X-Firefox-Spdy: h2
www.speedtest.net/images/English_get-it-from-MS_InvariantCulture_Default.png
104.16.209.12200 OK 14 kB URL HTTP/2 www.speedtest.net/images/English_get-it-from-MS_InvariantCulture_Default.png
IP 104.16.209.12:0
File type PNG image data, 864 x 312, 8-bit/color RGB, non-interlaced\012- data
Hash 597c2089aebc1c541a6a60c5eef7ed84
b1b8d807c9a55c164dc5fb1892bd946ddc675a69
2e0da7b78f6365146f0889b05e139587016e6b5e2e1a8d778dbc3272ad0a6278
GET /images/English_get-it-from-MS_InvariantCulture_Default.png HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: __cf_bm=av9UuLn7vD5wa5ymLZkiahgAWErGgbCdY_Ve00xH5dM-1674819852-0-AaT5eRVJs4tYSJ819iSsZv1ybbHO45OtnDQBIGNd9jkIwN6cr7LCQ2o+SObUHWM7tX54bQfEgpeab3V8RKheQik=; zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2; fu=1; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:13 GMT
content-type: image/png
content-length: 14457
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"3879-185c6a8b3d8"
cf-cache-status: HIT
age: 32742
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79013c369f3db505-OSL
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_insights.svg
151.101.130.219200 OK 632 B URL HTTP/2 b.cdnst.net/images/icg_insights.svg
IP 151.101.130.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (767)
Hash 1dd75d9f003576b4f7c16ce3db022fb6
45824c0b887ea969b5c06912460e04d9ed1e9038
cf5a635aa243a9fb2c645ceaacbe30a8b89f88acb03219bfdf8fe37812b3f173
GET /images/icg_insights.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"490-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
vary: Accept-Encoding
content-length: 632
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_globalindex.svg
151.101.130.219200 OK 854 B URL HTTP/2 b.cdnst.net/images/icg_globalindex.svg
IP 151.101.130.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1607)
Hash 955004aa76b7563342da8c5638e85917
9a4c7e53ef2f2fac734670596e4f13f420fb09d8
5d9b99de9761666f5b2f4d578610922522a4cf7754ea6d47c31488c1bcf07476
GET /images/icg_globalindex.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"80f-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
vary: Accept-Encoding
content-length: 854
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_5g.svg
151.101.130.219200 OK 1.1 kB URL HTTP/2 b.cdnst.net/images/icg_5g.svg
IP 151.101.130.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1879)
Hash 38a0887861d123e3073bc3b1e3619305
220537693625dc57d33f16f3ed184cc61e2c1919
dbd830272351c00f0b0b990e13ff70088d704bb1b8a1c2e62b265295a475ad08
GET /images/icg_5g.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"8e9-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
vary: Accept-Encoding
content-length: 1110
X-Firefox-Spdy: h2
b.cdnst.net/images/icg_enterprise.svg
151.101.130.219200 OK 499 B URL HTTP/2 b.cdnst.net/images/icg_enterprise.svg
IP 151.101.130.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1191)
Hash a5c920adb9ebfea363efb502b478e72e
b6edfa3fdd099cb9dfb592464903ddf5b7188999
6efc71b52a8ff0b5f2acef4bc4ab187521837977cd6732dc60944b4ae01bcfbc
GET /images/icg_enterprise.svg HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"66c-185c6a8b3d8"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
vary: Accept-Encoding
content-length: 499
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 2.6 kB URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
File type ASCII text, with very long lines (6482), with no line terminators
Hash 7c02d92c228e02f2ddfec1a48bdb044d
e4cc88b704d6cf3af8cd4949f5c5eee606a573a3
07f71d82eeb36040c2c3fe12bdc73cb8fe3e7e4890f05981842feb491f24020c
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 27 Jan 2023 06:27:02 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 23 Dec 2022 01:05:48 GMT
etag: W/"a4d296427fc806b21335359e398c025c"
cache-control: public, max-age=86400
x-amz-version-id: 1R3b4YI9dI20q9Y7Gq1DHxVUnq3Fp2gn
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 38LHtlHVsszsPjMCzYD9bAZE4QsUU14EMv8FipB3zh90JzDymeWwdg==
age: 19032
X-Firefox-Spdy: h2
b.cdnst.net/images/ad-free-125x101-fade-anim-1x.gif
151.101.130.219200 OK 9.8 kB URL HTTP/2 b.cdnst.net/images/ad-free-125x101-fade-anim-1x.gif
IP 151.101.130.219:0
File type GIF image data, version 89a, 125 x 101\012- data
Hash d70b4d345b2bc01280fff39975214d30
3743f84697b021b03405e9bc5e7887e67da25a94
9f30799e7ea5caddb7b79f074957baeaecccf1a31846993414008331c257d242
GET /images/ad-free-125x101-fade-anim-1x.gif HTTP/1.1
Host: b.cdnst.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
cache-control: public, max-age=86400
last-modified: Wed, 18 Jan 2023 20:53:43 GMT
etag: W/"266b-185c6a8b3d8"
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:13 GMT
content-length: 9835
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 879d092d31f92bf9380c96d8cb0eab89
bfe6ed8df2f0da8efb546189bbc7bd6261b34727
17e2d6fed162674f3b44057d526315e77a0e18fdcbe6cd7fb2bee37c7c75d94b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4973
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Last-Modified: Fri, 27 Jan 2023 10:21:21 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8f03a28533dcc088515c36019c642071
4843b6ea0a7685c0118f8cd6cf03e1da9bd26064
75415832bc21903dc1f3e31ea1a451c3ae7d91e13e32e7dd047d5ca2a7c6ed1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5632
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Last-Modified: Fri, 27 Jan 2023 10:10:22 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8f03a28533dcc088515c36019c642071
4843b6ea0a7685c0118f8cd6cf03e1da9bd26064
75415832bc21903dc1f3e31ea1a451c3ae7d91e13e32e7dd047d5ca2a7c6ed1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5632
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Last-Modified: Fri, 27 Jan 2023 10:10:22 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cc20adcd293cc2554643e15fd6c19a55
ac3ed84db082af11e840277b307c8598d0633a50
707f23a6da4897bda6fcfe14bd6ffa2b78dc44b88f8db601575e92b72c126d5a
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1695
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Last-Modified: Fri, 27 Jan 2023 11:15:59 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2302
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
cache-control: no-cache, no-store, must-revalidate
date: Fri, 27 Jan 2023 11:44:13 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8f03a28533dcc088515c36019c642071
4843b6ea0a7685c0118f8cd6cf03e1da9bd26064
75415832bc21903dc1f3e31ea1a451c3ae7d91e13e32e7dd047d5ca2a7c6ed1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5632
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Last-Modified: Fri, 27 Jan 2023 10:10:22 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 813e88b6786ea3ea2c655bf4c3be6026
5681790ae2ced979465b6eb2f41d88ca5348e821
3766beb334ccdb6a9c5d810dee1b3eb11d4c3840ae9483f0d2a55ed9eba598da
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 19:45:30 GMT
Expires: Tue, 31 Jan 2023 19:45:29 GMT
Etag: "5681790ae2ced979465b6eb2f41d88ca5348e821"
Cache-Control: max-age=373874,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79013c38bf280b59-OSL
ib.adnxs.com/ut/v3/prebid
185.89.210.46200 OK 249 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.210.46:0
File type JSON data\012- , ASCII text, with very long lines (581), with no line terminators
Hash 8c14a43711efa254a9447874afa393be
6960c3c0feaf7a4b92b307543242af177e2491e5
123c983d691a09699b0206361a7da206a87ebd2e6509ab3d01052a7b10712f38
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1649
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:14 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.speedtest.net
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: cf5989f6-a4c0-4629-a70b-6d05617a1ef7
Set-Cookie: icu=ChgIo9cnEAoYASABKAEwjvLOngY4AUABSAEQjvLOngYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 27-Apr-2023 11:44:14 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=7677311155342273772; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 27-Apr-2023 11:44:14 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
Content-Encoding: gzip
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d3f5cfbb-76c2-4642-807e-9f7b845337db&l_pb_bid_id=513c863cbcb12c3&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.48390292521210976
213.19.162.51200 OK 294 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d3f5cfbb-76c2-4642-807e-9f7b845337db&l_pb_bid_id=513c863cbcb12c3&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.48390292521210976
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 39db36195aa39ac034414e7895d44dd3
b88cce70f5e43a87c098323cd2e10557b8ab9f44
ed6cf3acc89d8c40e8bf74c0668f7f5c5a762685fcce93a0a43affbd3cea8c3a
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=9&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&tk_flint=pbjs_lite_v6.18.0&x_source.tid=d3f5cfbb-76c2-4642-807e-9f7b845337db&l_pb_bid_id=513c863cbcb12c3&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_skyscraper&slots=1&rand=0.48390292521210976 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDEGHY87-T-YIR; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqEcZ47kCoY1u9DtVM30fCgoNkwoqvkZprfOpNJsdIrWbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 294
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8517d5fd4b318ce135cb4845730df196
a7bda6e441c7af4bcbd8f472e8cb53ea11c22a21
71613695198cba7c51a7d3621693420208b2a01c077eebe185e7417f77a4631b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149974
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d35a7d-1d7"
Expires: Sun, 29 Jan 2023 05:23:48 GMT
Last-Modified: Fri, 27 Jan 2023 05:00:45 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vm5Snslt98EG8djfZ1j9_jaPR9I3cCt47HclRlQpi0K5T2kbuylbhw==
Age: 1383
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 9d759dc8a30d9e6ad9a2932843e5cb80
272cf9d9b0f0051c94527b4fb86f7d07c7dad8f0
1756d3d6e2a3a4809e2291ea7ee6907f466e54f9cabc7fb85ba7804b390bfe00
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96467
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d284e4-1d7"
Expires: Sat, 28 Jan 2023 14:32:01 GMT
Last-Modified: Thu, 26 Jan 2023 13:49:24 GMT
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fB4BstJWcE93Pu_JsYmMACVdgS2yAWov35iho_yh0uskasITr5ms7g==
Age: 2557
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=bff1a6bc-507b-4161-86ad-334f204408b8&l_pb_bid_id=54634b92495599b8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.1286433816525886
213.19.162.51200 OK 294 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=bff1a6bc-507b-4161-86ad-334f204408b8&l_pb_bid_id=54634b92495599b8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.1286433816525886
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1e04e4c23596951f1681cfa49b13cdc4
2c03801132697391b154a3ed075c737950b65c17
198506241217e301092a8cbc73d614c8f8ca029d466d41b73de1fdb118b1c74c
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=bff1a6bc-507b-4161-86ad-334f204408b8&l_pb_bid_id=54634b92495599b8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_lowerboard&slots=1&rand=0.1286433816525886 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDEGHY8G-J-2L5K; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qq+vpcZ/rfdre9DtVM30fCgoNkwoqvkZprfOpNJsdIrWbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 294
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=320381ad-6a86-449f-a4cd-21c0b88a849b&l_pb_bid_id=50edac853c267018&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&slots=1&rand=0.5807960926345873
213.19.162.51200 OK 295 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=320381ad-6a86-449f-a4cd-21c0b88a849b&l_pb_bid_id=50edac853c267018&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&slots=1&rand=0.5807960926345873
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0164f60edd5bb1c37a7f76ffe3db5e74
6a41eeb6b52799800f4f35c9274095c398a2ef9f
5011891d642d2d0aa3988017bac808c7f6133d6bd81535cb362f486d8a879626
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=2&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&tk_flint=pbjs_lite_v6.18.0&x_source.tid=320381ad-6a86-449f-a4cd-21c0b88a849b&l_pb_bid_id=50edac853c267018&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_leaderboard&slots=1&rand=0.5807960926345873 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDEGHY7T-O-JP6X; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrT7lCm82wiwe9DtVM30fCgoNkwoqvkZprfOpNJsdIrWbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 295
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8517d5fd4b318ce135cb4845730df196
a7bda6e441c7af4bcbd8f472e8cb53ea11c22a21
71613695198cba7c51a7d3621693420208b2a01c077eebe185e7417f77a4631b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149964
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d35a7d-1d7"
Expires: Sun, 29 Jan 2023 05:23:38 GMT
Last-Modified: Fri, 27 Jan 2023 05:00:45 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: r1hMbL4d6eS5QC5Kxcc_hfqCSLQ1wGzIcXY4ZHU84dGPVdAN0rNBPg==
Age: 1373
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8517d5fd4b318ce135cb4845730df196
a7bda6e441c7af4bcbd8f472e8cb53ea11c22a21
71613695198cba7c51a7d3621693420208b2a01c077eebe185e7417f77a4631b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149956
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d35a7d-1d7"
Expires: Sun, 29 Jan 2023 05:23:30 GMT
Last-Modified: Fri, 27 Jan 2023 05:00:45 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FU6kjq4YV2Xe5k6z7hM1ouXvq5cfeJsaUUyEKS7VKhmqUx1moAXkvA==
Age: 1365
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8517d5fd4b318ce135cb4845730df196
a7bda6e441c7af4bcbd8f472e8cb53ea11c22a21
71613695198cba7c51a7d3621693420208b2a01c077eebe185e7417f77a4631b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149963
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d35a7d-1d7"
Expires: Sun, 29 Jan 2023 05:23:37 GMT
Last-Modified: Fri, 27 Jan 2023 05:00:45 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YaeKbejOtWXwzMICn3Ksli-jSo9DFBNSO5h3i1vWGICgkYIcedPQtA==
Age: 1372
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 37c51d1be67c1e1c04009fc21c1cbfb4
f15484d9d86cae64264b84b0e480a9cfd5effff0
eb3f6ee1a431f458b703f9a39657f36700967a7061612b9b4e40a173015fe43b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 11:44:14 GMT
Last-Modified: Fri, 27 Jan 2023 11:31:24 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: x4-OfNeu_2Qv1ITE3P8rwMV2YoqYbY_wUscEwhDk8FtWhkDwsVom1g==
Age: 770
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.65.230.173204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.65.230.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 688
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:14 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.65.230.173204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.65.230.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 689
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:14 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id=
18.204.89.152200 OK 252 B URL HTTP/2 gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id=
IP 18.204.89.152:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6e981976733b3ea8636838d601de5bc9
b3b93231cab214d97bffd915b605cfd0c7549126
b613cdc43cea725f58ea96f9a0cde3b0564507368d102f1da3a7c6709fbef4e0
GET /info?url=https%3A%2F%2Fwww.speedtest.net%2F&fpx=1&lcl_id= HTTP/1.1
Host: gurgle.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
content-length: 252
access-control-allow-origin: null
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16685
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 11:44:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16685
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 11:44:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16685
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 11:44:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16685
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 11:44:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0fe44d9606e6a149a253423f312dfc5
78e442e8a9142311c25dafd01823a240f4acb0d6
9aad8938c1fda9641f95a4369f57ea57303a28e05f56e3bb1961e17cfbb123f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13175
x-amzn-requestid: 14ccf28a-a84a-4903-9edc-7659096cb3ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRxOCFrkIAMFt8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0958c-6a67f1aa65038439793808fd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:35:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6Af7rqnIDAKAw6O0CYUv1epQ8VxFyXBjtAtpovQZJ72aKEymQu_O8Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 06:24:48 GMT
age: 19166
etag: "78e442e8a9142311c25dafd01823a240f4acb0d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:20:00 GMT
age: 23054
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 69159
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b31e73071ee6af880d3939c698c0514
1ac5ee7d1398eb29a9484a1154b0c96556bb6bf4
bc5520882250fc495f2da3c114f83b8f690dc6d8dc67ac759a183c88581fb967
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5378
x-amzn-requestid: 907321d1-ba63-4c67-9e20-605a090da987
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxDHH_IAMFXxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a006-4cc2e9550d0b6b504bd09899;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EsKE5lHMRa9uiqkdhhiJyaDfr0rH9waQeKtbdoYpsHUR4Ywo0TxweQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:24:12 GMT
age: 62402
etag: "1ac5ee7d1398eb29a9484a1154b0c96556bb6bf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:49:48 GMT
age: 50066
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a85badd84c0542610b94f22c4f265511
5b490095b5e02d9fef4b762888353998b645dfc9
23d6d9848caf36f0556438c371f112b40dcbf9b08b8b27bd37d4d73960c701c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9482
x-amzn-requestid: 825c5e6b-8fda-445e-9ed3-f5d634943c00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIZd0HqkIAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ccd5f1-2b31fe3001a1b04a406ff7ff;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 06:21:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 13clEFrwHH0RFfYGMW5jPHcaa3ezdkHAes8FPn6yA5-pxqRaddDPqQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:42:19 GMT
age: 21715
etag: "5b490095b5e02d9fef4b762888353998b645dfc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.65.230.173204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.65.230.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 695
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:14 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.65.230.173204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.65.230.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 688
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:14 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
gurgle.speedtest.net/set_fpid/speedtest.net/c/2cea94285f394b6c8f4996df5357243d
18.204.89.152200 OK 32 B URL HTTP/2 gurgle.speedtest.net/set_fpid/speedtest.net/c/2cea94285f394b6c8f4996df5357243d
IP 18.204.89.152:0
File type ASCII text, with no line terminators
Hash d76e5c4cf41585f56e47cfc25a4013e1
5514218d3b388d2a887c1836b75392d717711ad5
59b8c4c0f0269ea64ba8cc51271d2bc50f3c086ac5752c528274dbe3543ba543
GET /set_fpid/speedtest.net/c/2cea94285f394b6c8f4996df5357243d HTTP/1.1
Host: gurgle.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2; _ga_KKLSRK6J1Z=GS1.1.1674819853.1.0.1674819853.60.0.0; _ga=GA1.1.2114653856.1674819854; st4-sid=s%3Ahm-o965pnlZ9oDY-fZhkHVN7IAHjr2ep.jciIiHuWYp9A3xCETGP0iwRNXsHPlrcr3rUqWkYkykI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: text/plain; charset=utf-8
content-length: 32
set-cookie: fpid=2cea94285f394b6c8f4996df5357243d; Path=/; Max-Age=15552000; Domain=speedtest.net; SameSite=None; Secure; HttpOnly
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.65.230.173204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.65.230.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 692
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:14 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 262a7aea1cb5e349bcedfd646a777f96
00d512e0c280b3e50d55ea918646bd2d5a4eed37
67f89d43a85e9e97d99bcbf46eb07437031a5b7508c7de16d0e66dcb73e51047
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6432
Cache-Control: max-age=167665
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d38bdf-1d7"
Expires: Sun, 29 Jan 2023 10:18:39 GMT
Last-Modified: Fri, 27 Jan 2023 08:31:27 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 2b9d6a8f22ad6a7864e4e2a1cc2df9b5
f559fe3289ea1d3402b9cbc8642dab361d5ae7f0
5adeb6358bd6a6e093deee90c75919736cea7519d9e214c66a8a1327fbfe5f2c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170297
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d39580-1d7"
Expires: Sun, 29 Jan 2023 11:02:31 GMT
Last-Modified: Fri, 27 Jan 2023 09:12:32 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zLHIK35mR_1TMcuIUzr-H33rSMYrsE5Gpx4C5DgZwj2kHi3hozzs3Q==
Age: 6599
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 262a7aea1cb5e349bcedfd646a777f96
00d512e0c280b3e50d55ea918646bd2d5a4eed37
67f89d43a85e9e97d99bcbf46eb07437031a5b7508c7de16d0e66dcb73e51047
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6432
Cache-Control: max-age=167665
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d38bdf-1d7"
Expires: Sun, 29 Jan 2023 10:18:39 GMT
Last-Modified: Fri, 27 Jan 2023 08:31:27 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 262a7aea1cb5e349bcedfd646a777f96
00d512e0c280b3e50d55ea918646bd2d5a4eed37
67f89d43a85e9e97d99bcbf46eb07437031a5b7508c7de16d0e66dcb73e51047
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4607
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Last-Modified: Fri, 27 Jan 2023 10:27:27 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 262a7aea1cb5e349bcedfd646a777f96
00d512e0c280b3e50d55ea918646bd2d5a4eed37
67f89d43a85e9e97d99bcbf46eb07437031a5b7508c7de16d0e66dcb73e51047
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6432
Cache-Control: max-age=167665
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Etag: "63d38bdf-1d7"
Expires: Sun, 29 Jan 2023 10:18:39 GMT
Last-Modified: Fri, 27 Jan 2023 08:31:27 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=fe143f3f-47d8-4e54-b9a9-49f2d38a5e39&zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=2cea94285f394b6c8f4996df5357243d&ppid=2cea94285f394b6c8f4996df5357243d
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=fe143f3f-47d8-4e54-b9a9-49f2d38a5e39&zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=2cea94285f394b6c8f4996df5357243d&ppid=2cea94285f394b6c8f4996df5357243d
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=fe143f3f-47d8-4e54-b9a9-49f2d38a5e39&zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=2cea94285f394b6c8f4996df5357243d&ppid=2cea94285f394b6c8f4996df5357243d HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=fe143f3f-47d8-4e54-b9a9-49f2d38a5e39&zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=2cea94285f394b6c8f4996df5357243d&ppid=2cea94285f394b6c8f4996df5357243d&_cc=1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: h_zdbb=2cea94285f394b6c8f4996df5357243d; Path=/; Max-Age=15552000; Domain=.zdbb.net; SameSite=None; Secure
csp=0; Path=/; Max-Age=2592000; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 0 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://www.speedtest.net/
Origin: https://www.speedtest.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-length: 0
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-KKLSRK6J1Z&cid=2114653856.1674819854>m=2oe1p0&aip=1
173.194.221.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-KKLSRK6J1Z&cid=2114653856.1674819854>m=2oe1p0&aip=1
IP 173.194.221.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KKLSRK6J1Z&cid=2114653856.1674819854>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.speedtest.net
date: Fri, 27 Jan 2023 11:44:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 84 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7752063b1a1843cd73023d4597730ba9
8000df5cb4ada89a0fe20160cb2a89795db925a8
f450fb875fd28f9fb1aedbaa68638c76c91cfdc70c21432a1cdd69d49f1a1490
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 895
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 84 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d1287d5a4cd74172510295ad63757c72
a365d4f23e413e2ef37be20cabe8ac71c34e2191
6d48934a111e8e49d7d552e06df3ecec2e7a6f741e79c7c909b07e4063ec96fe
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 893
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oe1p0&_p=642679877&_gaz=1&cid=2114653856.1674819854&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674819853&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1674819853690&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oe1p0&_p=642679877&_gaz=1&cid=2114653856.1674819854&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674819853&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1674819853690&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KKLSRK6J1Z>m=2oe1p0&_p=642679877&_gaz=1&cid=2114653856.1674819854&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674819853&sct=1&seg=0&dl=https%3A%2F%2Fwww.speedtest.net%2F&dt=Speedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&en=page_view&_fv=2&_nsi=1&_ss=1&ep.gtm_container=GTM-K7SNBZ&ep.gtm_version=249&ep.mobile_web_test=false&ep.hostname=https%3A%2F%2Fwww.speedtest.net&ep.adblock_status=False&ep.zdConsent_geoCC=&ep.zdConsent_consentGiven=true&ep.vpnUseDetected=false&epn.client_timestamp=1674819853690&up.user_type=anonymous&up.adFree=false&up.gaOptInStatus=true&up.googAdsOptInStatus=true HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.speedtest.net
date: Fri, 27 Jan 2023 11:44:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 84 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ae67b578487606697a39b28bfb0a6544
0776e04392bd6d153ed94ce855afff0a66d04984
8e442da88f078158463b4fda979b3faf55631e2c0722839ea915f78de536efaa
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 925
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 84 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3d448514562029494eb2eaf2d470c159
86e6a1a6f414dab7ff49ce6c5063d53bce116463
047766ade7f9feb1e8efb4dd2cbc1fd4f4fd65400996b970af6fa29ea669b7ee
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 898
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=fe143f3f-47d8-4e54-b9a9-49f2d38a5e39&zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=2cea94285f394b6c8f4996df5357243d&ppid=2cea94285f394b6c8f4996df5357243d&_cc=1
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=fe143f3f-47d8-4e54-b9a9-49f2d38a5e39&zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=2cea94285f394b6c8f4996df5357243d&ppid=2cea94285f394b6c8f4996df5357243d&_cc=1
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=fe143f3f-47d8-4e54-b9a9-49f2d38a5e39&zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2&zd_location=https%3A%2F%2Fwww.speedtest.net%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=2cea94285f394b6c8f4996df5357243d&ppid=2cea94285f394b6c8f4996df5357243d&_cc=1 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Cookie: h_zdbb=2cea94285f394b6c8f4996df5357243d; csp=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MmNlYTk0Mjg1ZjM5NGI2YzhmNDk5NmRmNTM1NzI0M2Q=
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_go=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
c2shb.pubgw.yahoo.com/bidRequest
35.157.246.167200 OK 84 B URL HTTP/2 c2shb.pubgw.yahoo.com/bidRequest
IP 35.157.246.167:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1a687cdc793e5a5c3df99be08f0d5a74
ae6fe8bd7cd7b821bd4ec68ae72fb40a19b925a8
14ff0c2282c82f1ff307fb9e1dc5b1be3b853f294fa2e487ed479842324fb193
POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 910
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.25
access-control-allow-origin: https://www.speedtest.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net
54.230.111.210200 OK 385 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with very long lines (385), with no line terminators
Hash b5fd7d5c611ff86d1676b6b21747caea
bdedbfd5e13c6e6e23b92e60fcee8d79364d7919
914c000aa08337760c704cc5feb9e74b9ec19e7da927332e8247297cec57fe88
GET /cdn/prod/config?src=3336&u=https%3A%2F%2Fwww.speedtest.net HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 385
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Fri, 27 Jan 2023 08:53:35 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FMro7Lm7X0d92in3IfwjHe823bDTBHKwscSsnL9n9x7Wc9X8I-dwVw==
age: 10239
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61b07ec18bd0517d727603f51ee96cbe
03caefc67f3485fcad58d669cd4e7c8b371acce5
604702d9942ca8804874e6923a37438ce46c913122ed7b700273f46f1029afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MmNlYTk0Mjg1ZjM5NGI2YzhmNDk5NmRmNTM1NzI0M2Q=
216.58.207.226302 Found 345 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MmNlYTk0Mjg1ZjM5NGI2YzhmNDk5NmRmNTM1NzI0M2Q=
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash cd2f8f809809512818b1d3bd1156faac
226fdf7614940d4fe40647da5b16a1a4df1ef277
272c07c729b8e55365612486e2fb09a9e7657040bdc97ddd1dfa53053ab46466
GET /pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MmNlYTk0Mjg1ZjM5NGI2YzhmNDk5NmRmNTM1NzI0M2Q= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=MmNlYTk0Mjg1ZjM5NGI2YzhmNDk5NmRmNTM1NzI0M2Q=&google_tc=
date: Fri, 27 Jan 2023 11:44:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 345
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 27-Jan-2023 11:59:14 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=GTM-MPW4L3J
142.250.74.110200 OK 46 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-MPW4L3J
IP 142.250.74.110:0
File type ASCII text, with very long lines (2066)
Hash f1b79d9b72efea887fede0e63ea833a3
857a31e84b26473456904fbd119d21dc58dbcc0b
1e9e8ecbe2750020792510449c4b4e4d08a478e84c5485d8eeb36880adf24acb
GET /gtm/optimize.js?id=GTM-MPW4L3J HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 11:44:14 GMT
expires: Fri, 27 Jan 2023 11:44:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45739
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=2114653856.1674819854>m=2oe1p0&aip=1&z=426733653
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=2114653856.1674819854>m=2oe1p0&aip=1&z=426733653
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KKLSRK6J1Z&cid=2114653856.1674819854>m=2oe1p0&aip=1&z=426733653 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 11:44:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure-us.imrworldwide.com/storageframe.html
34.254.86.77200 OK 3.5 kB URL HTTP/2 secure-us.imrworldwide.com/storageframe.html
IP 34.254.86.77:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 705dd5d6d8d6fd8165f3c0af8ad4c473
596a961f7024fa42b4e777fa6043000ec5040e3f
38e321832698437cbd4bf54a4314eddbee7850351a1d1b778b030c597948ec26
GET /storageframe.html HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:15 GMT
content-type: text/html
content-length: 3489
server: nginx
last-modified: Fri, 20 Jan 2023 14:49:55 GMT
etag: "63caaa13-da1"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61b07ec18bd0517d727603f51ee96cbe
03caefc67f3485fcad58d669cd4e7c8b371acce5
604702d9942ca8804874e6923a37438ce46c913122ed7b700273f46f1029afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trc.taboola.com/1288978/log/3/unip?en=SpeedTestViewContent>mcb=1170853009
151.101.65.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1288978/log/3/unip?en=SpeedTestViewContent>mcb=1170853009
IP 151.101.65.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1288978/log/3/unip?en=SpeedTestViewContent>mcb=1170853009 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:15 GMT
via: 1.1 varnish
x-served-by: cache-bma1670-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674819855.945893,VS0,VE92
x-vcl-time-ms: 92
X-Firefox-Spdy: h2
bee.imrworldwide.com/v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/
54.230.111.27200 OK 99 B URL HTTP/2 bee.imrworldwide.com/v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/
IP 54.230.111.27:0
File type JSON data\012- , ASCII text
Hash 827663c3ae513eca472814365881c8b3
4d21f2e496f047ed5080e5ca71a34bf1af8cb68c
6ccb1c07628f71f0ae7af1483aae0894bb7febafb80691f30d94d6f3e31e8494
GET /v1/clients/match?client_id=ziffdavis&url=https://www.speedtest.net/ HTTP/1.1
Host: bee.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 99
date: Fri, 27 Jan 2023 02:39:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: max-age=3600
content-encoding: gzip
strict-transport-security: max-age=25920000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zdt6evGmbFIs622jmgkAqqWSxzvNtOO4JqjXTo0nTNp8SADfusKcWg==
age: 32692
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=860886ed-4aff-4d8b-a198-94d209636a7b&l_pb_bid_id=534ceed93ed4e84&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.7204571457725196
213.19.162.51200 OK 4.7 kB URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=860886ed-4aff-4d8b-a198-94d209636a7b&l_pb_bid_id=534ceed93ed4e84&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.7204571457725196
IP 213.19.162.51:0
Hash 5befbad6cdefd9f07fbd50a24041e230
0ecb16166fb20e440401e82994e28a789dd0505d
b0e03bc67e659d3cdd86142392f8e26fe807cba750cc1beacb6d60ec884322b9
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373682&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=860886ed-4aff-4d8b-a198-94d209636a7b&l_pb_bid_id=534ceed93ed4e84&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle&slots=1&rand=0.7204571457725196 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDEGHY9R-26-69IZ; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qp6hVPSOa9VXe9DtVM30fCgoNkwoqvkZprfOpNJsdIrWbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/qI109lRAEeGCiBIxORcFRw/?google_error=3 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Cookie: h_zdbb=2cea94285f394b6c8f4996df5357243d; csp=0; zd_cs_go=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Fri, 27 Jan 2023 11:44:15 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://aa.agkn.com/adscores/g.pixel?sid=9212302198
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_ns=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 492d03b6c1a0e73fb127623d0e1618d3
b162afe517d930681f78a5435e4a698c54b552c5
acc6d55af7b0b68b0dab453548667f030e4d20a239a74af40555a357ef9603eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ACC6D55AF7B0B68B0DAB453548667F030E4D20A239A74AF40555A357EF9603EB"
Last-Modified: Wed, 25 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10978
Expires: Fri, 27 Jan 2023 14:47:13 GMT
Date: Fri, 27 Jan 2023 11:44:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 492d03b6c1a0e73fb127623d0e1618d3
b162afe517d930681f78a5435e4a698c54b552c5
acc6d55af7b0b68b0dab453548667f030e4d20a239a74af40555a357ef9603eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ACC6D55AF7B0B68B0DAB453548667F030E4D20A239A74AF40555A357EF9603EB"
Last-Modified: Wed, 25 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10978
Expires: Fri, 27 Jan 2023 14:47:13 GMT
Date: Fri, 27 Jan 2023 11:44:15 GMT
Connection: keep-alive
lb.eu-1-id5-sync.com/lb/v1
162.19.138.118200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d3785a3f77b6a80a92a2cc031e263c87
7faf1f8b1a4b0491eae06e04595b3f30c23b9cb1
3ad84662b9ee43b68332d38b202355bd6e0203b7c33fbb9d00bd239506c810c3
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.speedtest.net
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 27 Jan 2023 11:44:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
lbs.eu-1-id5-sync.com/lbs/v1
162.19.138.118200 OK 34 B URL HTTP/1.1 lbs.eu-1-id5-sync.com/lbs/v1
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 091a13fb143bbfb3e33f364b809c6f7c
f6791d48d831602a63a1584141ccab7e2619e25f
382570df7302a5f8997eaedace61937b8739f2384b1207a38f994f8fc52bc99e
GET /lbs/v1 HTTP/1.1
Host: lbs.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 27 Jan 2023 11:44:15 GMT
access-control-allow-origin: https://www.speedtest.net
vary: Origin
content-type: application/json
content-length: 34
strict-transport-security: max-age=63072000; includeSubDomains; preload
cdn-gl.imrworldwide.com/conf/config250.js
54.230.111.95200 OK 4.3 kB URL HTTP/2 cdn-gl.imrworldwide.com/conf/config250.js
IP 54.230.111.95:0
File type ASCII text, with very long lines (4720)
Hash b1104693a04d7c55f70a37a948f50caa
421a5fb541be9d8b1379a4f07f9fd62a17a290e0
b1df3d2c8dbb1401155dd52817860d5aa3cdc4b36e70eee41c916b7daf120d6e
GET /conf/config250.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 09:21:49 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: quLPIOvPtRGHiGIG89lM5P7mrINUDRKF
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 11:13:01 GMT
cache-control: max-age=86400,s-maxage=86400
etag: W/"14760e6e55b1793998ffc56a01c6f755"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PIidGp54q64wqGdKCDCUWjXVg1uqebqXNfZ6uuWOW4yBX3E5lYRRZA==
age: 1882
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 186f0c1e59e39e08bb1b0f1a6fca6389
cc1b3bb7a36f032ef3bea566b5055f2ad0646e64
a8f0acd6939f33ebc4d9283059f48f028bd2c1a33d804f4f4c4552df16719ffe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4398
Cache-Control: max-age=158390
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:15 GMT
Etag: "63d36f97-2d7"
Expires: Sun, 29 Jan 2023 07:44:05 GMT
Last-Modified: Fri, 27 Jan 2023 06:30:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 727
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
52.94.222.140200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t
IP 52.94.222.140:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_n-sharethrough_pm-db5_rbd_n-emx_n-vmg_rx_ox-db5_sovrn_3lift&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Fri, 27 Jan 2023 11:44:15 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: WDHWF53KHD9YXES3FPW8
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
secure-us.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,NA&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&c16=sdkv,bj.6.0.0&uoo=&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&retry=0
34.254.86.77200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,NA&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&c16=sdkv,bj.6.0.0&uoo=&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&retry=0
IP 34.254.86.77:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=session&c9=devid,&c13=asid,NA&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&c16=sdkv,bj.6.0.0&uoo=&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&retry=0 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:15 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=ecfe6bc0-9e37-11ed-bf34-6584d271320a; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Wed, 21-Feb-2024 11:44:15 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4fed69565ceab3f7d13caae0921dcbc7
6619cd41cc183cbebd9eb0de90105bd7437fd8a3
06339124aa4a93d8811614cac0418fdbdc60cad00afc74ad798e257d10990e90
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06339124AA4A93D8811614CAC0418FDBDC60CAD00AFC74AD798E257D10990E90"
Last-Modified: Wed, 25 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11031
Expires: Fri, 27 Jan 2023 14:48:06 GMT
Date: Fri, 27 Jan 2023 11:44:15 GMT
Connection: keep-alive
zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=LDVAKiYl9u%2BZjSrBDuM6HTM1SDKcb%2BQyPqmISYjX2i0%3D
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=LDVAKiYl9u%2BZjSrBDuM6HTM1SDKcb%2BQyPqmISYjX2i0%3D
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=LDVAKiYl9u%2BZjSrBDuM6HTM1SDKcb%2BQyPqmISYjX2i0%3D HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Cookie: h_zdbb=2cea94285f394b6c8f4996df5357243d; csp=0; zd_cs_go=1; zd_cs_ns=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Fri, 27 Jan 2023 11:44:15 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://stags.bluekai.com/site/31875?limit=0&id=2cea94285f394b6c8f4996df5357243d&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_ns=1; Path=/; Max-Age=2592000; Domain=.zdbb.net; SameSite=None; Secure
zd_cs_bk=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
id5-sync.com/g/v2/718.json
141.95.98.64200 216 B URL HTTP/1.1 id5-sync.com/g/v2/718.json
IP 141.95.98.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a6b26f071aad6ae80075104a00cfe458
bb0ea68a55e6fc84a261592b4a32de45bc21c1ad
621cda9b771bdb094c4362785aa09a2a3254d589fa0ff47d84aca4cc31956082
POST /g/v2/718.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 436
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 27 Jan 2023 11:44:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
jdnmwdbrbnjdne5138vrrupzbuqew1674819855.nuid.imrworldwide.com/
54.230.111.89200 OK 35 B URL HTTP/2 jdnmwdbrbnjdne5138vrrupzbuqew1674819855.nuid.imrworldwide.com/
IP 54.230.111.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET / HTTP/1.1
Host: jdnmwdbrbnjdne5138vrrupzbuqew1674819855.nuid.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Tue, 11 Sep 2018 17:05:20 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 27 Jan 2023 01:05:46 GMT
etag: "c2196de8ba412c60c22ab491af7b1409"
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p46jv5OttM7BrXBMkEdNQ8HBAl-oGxpjbPcYd9V6ayZ1fE6ZupTUjw==
age: 38310
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9a156f9e1eec43fbfc3ea11e27aa3091
280292e0c5a0896c45598aa00e3fb607edf0b3a7
419b77a2c7ed19e8d086c82e3c9096d6ed2ab3032bba31afce0499ee83bc233a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-389482-3&cid=2114653856.1674819854&jid=2031401556&_u=YADAAEAAQAAAACAGK~&z=495640454
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-389482-3&cid=2114653856.1674819854&jid=2031401556&_u=YADAAEAAQAAAACAGK~&z=495640454
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-389482-3&cid=2114653856.1674819854&jid=2031401556&_u=YADAAEAAQAAAACAGK~&z=495640454 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 11:44:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9212302198
52.29.22.150302 Found 62 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212302198
IP 52.29.22.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /adscores/g.pixel?sid=9212302198 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:15 GMT
location: https://zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=LDVAKiYl9u%2BZjSrBDuM6HTM1SDKcb%2BQyPqmISYjX2i0%3D
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3A%2Ff1jd1sh0miR%2Fooc%2BbC3AiaN9U2si%2FPG; Path=/; Domain=.agkn.com; Expires=Sat, 27-Jan-2024 11:44:15 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
95.101.10.177200 OK 844 B URL HTTP/2 cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
IP 95.101.10.177:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (844), with no line terminators
Hash 3680b6923e0351483626ef1572e223a5
2e67500c109734f99d699aadf37293d70a62e69c
1331ce07d67579b7a85c3f1deb9479460b198356c6d1aee8de72daa1d5e377b2
GET /js/zd-core-olt.min.js?v=5 HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=2cea94285f394b6c8f4996df5357243d; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 6YMi1S5Zb8bAnX5Wk3SkDjgTkzAom0QrgEm0FjnP3O50j1/40DRCX7NtBRZT63qz34xBz8EBOF4=
x-amz-request-id: EYRCZC4KWAE6VRHX
last-modified: Thu, 19 Jan 2023 13:29:22 GMT
x-amz-version-id: ksyZCiHd6F9Sr6LKgHf4Gb78GFVc90Y1
accept-ranges: bytes
content-type: application/javascript
content-length: 844
cache-control: max-age=604800
expires: Fri, 03 Feb 2023 11:44:15 GMT
date: Fri, 27 Jan 2023 11:44:15 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 61f119c4b6311c87501f54da9ad62e7e
479c65a3be3e77ff0af6f26118389cac97852c74
e00fa0353240654d541e2aee878c14feb77837a1b5a4a12fa326ec2cc5a92e59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.static.zdbb.net/js/krux-coretag.js
95.101.10.177200 OK 335 B URL HTTP/2 cdn.static.zdbb.net/js/krux-coretag.js
IP 95.101.10.177:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (335), with no line terminators
Hash 3d110e5f9fe1c46158e922103020ac0c
86c84d7b546a8a1eae685c4434abdbefe8058ef1
4f30bdeed794aeb92d85e55d901c0bdb634df32432010792e3b569ea73cae443
GET /js/krux-coretag.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=2cea94285f394b6c8f4996df5357243d; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: w2LhBszU9OuDtc9WFrqZCYQopugcY4oSdrFQIhyuB2xz30g229PxmeRXdbY7qRtQ4TY/3KRRohc=
x-amz-request-id: EYRD9AQ792A10BHZ
last-modified: Thu, 19 Jan 2023 13:29:21 GMT
x-amz-version-id: bjYX9xzM_g.4U.3MMmOL7uV3FbdBsTwE
accept-ranges: bytes
content-type: application/javascript
content-length: 335
cache-control: max-age=86400
expires: Sat, 28 Jan 2023 11:44:15 GMT
date: Fri, 27 Jan 2023 11:44:15 GMT
X-Firefox-Spdy: h2
cdn.krxd.net/controltag/spgdj7g8u.js
151.101.194.133200 OK 22 B URL HTTP/2 cdn.krxd.net/controltag/spgdj7g8u.js
IP 151.101.194.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 49fced5a15e8763d46199088fad93fca
8b3f69bdb1250e55ab9968a157416c8968369ec3
09819ee7c805183bdc1c2cb02e46b868c31b426baa5bbede8b56ae6163af04be
GET /controltag/spgdj7g8u.js HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-app-cache: MISS
cache-control: public, max-age=1200
x-response-time: 0
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_config_service_ash_prod
via: 1.1 varnish, 1.1 varnish
x-do-esi: esi
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:16 GMT
age: 955
x-served-by: config-service-a003-ash-prod.krxd.net, cache-iad-kjyo7100110-IAD, cache-bma1666-BMA
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 42, 56
x-timer: S1674819856.057995,VS0,VE0
vary: Accept-Encoding
content-length: 22
X-Firefox-Spdy: h2
tags.bkrtx.com/js/bk-coretag.js
23.13.254.202200 OK 16 kB URL HTTP/2 tags.bkrtx.com/js/bk-coretag.js
IP 23.13.254.202:0
File type ASCII text, with very long lines (42581)
Hash 1d6730c68cb783c9b157fece2471f7b7
9c176c938a3567b446e02ccf1f919bf5bbccc921
32098d2ec6839522764c3c6c83b8427d8dca6bd041118e367b0ea6c7e1f05375
GET /js/bk-coretag.js HTTP/1.1
Host: tags.bkrtx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 21 May 2021 19:14:21 GMT
etag: W/"60a8068d-cbc2"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 16078
cache-control: max-age=604800
expires: Fri, 03 Feb 2023 11:44:16 GMT
date: Fri, 27 Jan 2023 11:44:16 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 61f119c4b6311c87501f54da9ad62e7e
479c65a3be3e77ff0af6f26118389cac97852c74
e00fa0353240654d541e2aee878c14feb77837a1b5a4a12fa326ec2cc5a92e59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.speedtest.net
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.speedtest.net
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.speedtest.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 27 Jan 2023 11:44:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.speedtest.net
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.speedtest.net
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.speedtest.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 27 Jan 2023 11:44:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jogger.zdbb.net/check?href=https%3A%2F%2Fwww.speedtest.net%2F
54.243.216.36200 OK 5 B URL HTTP/2 jogger.zdbb.net/check?href=https%3A%2F%2Fwww.speedtest.net%2F
IP 54.243.216.36:0
File type ASCII text, with no line terminators
Hash 946003f97ccc52d5d3b54ac0ec31bbfc
0ed2d7b5cdb77627bc46c6fac5026ec27b694d42
4e523a5ae5b4636c75901b79fafbd3912e41dc7987414e688b09d4b436ff22b3
GET /check?href=https%3A%2F%2Fwww.speedtest.net%2F HTTP/1.1
Host: jogger.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:16 GMT
content-type: text/plain; charset=utf-8
content-length: 5
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
cache-control: max-age=604800
X-Firefox-Spdy: h2
stags.bluekai.com/site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=26235303
184.24.45.23200 OK 71 B URL HTTP/2 stags.bluekai.com/site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=26235303
IP 184.24.45.23:0
File type HTML document text\012- HTML document, ASCII text
Hash 988428fdc0079b85e995b96b0ed4b565
27aece4f871a936951d17de604853cddc9bfb5ec
53350525edba0b889e87ea52a16ed843a928a2557e9f8d6747acd7ff991c95c3
GET /site/30629?ret=html&phint=site%3Dspeedtest.net&phint=referer%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=bbseg%3D6830&phint=__bk_t%3DSpeedtest%20by%20Ookla%20-%20The%20Global%20Broadband%20Speed%20Test&phint=__bk_k%3Dookla%2Cspeed%2Ctest%2Cspeedtest%2Cspeed%20test%2Cbandwidth%20speed%20test%2Cinternet%20speed%20test%2Cbroadband%20speed%20test%2Cspeakeasy%2Cflash%2Ccnet%2Cinternet%2Cnetwork%2Cconnection%2Cbroadband%2Cbandwidth%2Clatency%2Cping%2Cthroughput%2Cdownload%2Cupload%2Cconnection%2Cdsl%2Cadsl%2Ccable%2Ct1%2Cisp%2Cvoip%2Cip%2Cip%20address%2Ctcp&phint=__bk_l%3Dhttps%3A%2F%2Fwww.speedtest.net%2F&phint=__bk_v%3D3.1.10&limit=10&r=26235303 HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 71
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
bk-server: 75d0
date: Fri, 27 Jan 2023 11:44:16 GMT
x-n: S
X-Firefox-Spdy: h2
ceb01f6ac0644ad3f13c0c7be721af72.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 ceb01f6ac0644ad3f13c0c7be721af72.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: ceb01f6ac0644ad3f13c0c7be721af72.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Fri, 27 Jan 2023 11:44:16 GMT
expires: Sat, 27 Jan 2024 11:44:16 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023012301&st=env
216.58.207.226200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023012301&st=env
IP 216.58.207.226:0
File type JSON data\012- , ASCII text, with very long lines (14741), with no line terminators
Hash 9f66c33f90945dbb10924d182b575090
79149df27a450537f23e2c6a4c00ae9299aea800
d87693ef573d2fd2dc7bf0b4b1b865ec1b2363bf4ba2c1eb23140a9d0ad599f8
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023012301&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 27 Jan 2023 11:44:16 GMT
server: cafe
content-length: 11126
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7b8dcc42710b2f68c0ec782d2b2a3ae3
b865da423aa26e774270b8e3942b6fbe76793133
2da0fcf67d020f7c563946fca7ade89803cbe7cfe484f123640f8a9950b3f2b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d2ee17b9786db7297e462176ffa58c85
9f1564c2a2c4d0603d98d285be494eac48278d2e
fff18cbbb8a6bd627a2a6636a14857897bb28766f925ffc0a4f2bdcf4ab2f6cf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
216.58.207.193200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 27 Jan 2023 11:44:16 GMT
expires: Fri, 27 Jan 2023 11:44:16 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
216.58.207.193200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 20:43:30 GMT
expires: Fri, 26 Jan 2024 20:43:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 54046
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zdbb.net/check_c
63.35.93.170200 OK 32 B IP 63.35.93.170:0
File type ASCII text, with no line terminators
Hash d76e5c4cf41585f56e47cfc25a4013e1
5514218d3b388d2a887c1836b75392d717711ad5
59b8c4c0f0269ea64ba8cc51271d2bc50f3c086ac5752c528274dbe3543ba543
GET /check_c HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: h_zdbb=2cea94285f394b6c8f4996df5357243d; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:16 GMT
content-type: text/plain; charset=utf-8
content-length: 32
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b139ef842e1ece23a2fb6810cbb79f0b
75eb76995244c2e1841e0f3283f126cf13a77b04
7287866e126fff5e98015a2750cfe2889271f4f7e4084668e69e939a951243be
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 13:42:55 GMT
Expires: Wed, 01 Feb 2023 13:42:54 GMT
Etag: "75eb76995244c2e1841e0f3283f126cf13a77b04"
Cache-Control: max-age=438517,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79013c498e6b0b59-OSL
idsync.rlcdn.com/425686.gif?partner_uid=2cea94285f394b6c8f4996df5357243d
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/425686.gif?partner_uid=2cea94285f394b6c8f4996df5357243d
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /425686.gif?partner_uid=2cea94285f394b6c8f4996df5357243d HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Fri, 27 Jan 2023 11:44:16 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 818538738a2b0c65dff298c8c085f734
65e3210d1bdc5f75331b92627d5836ca8583b8ba
bffc2c7d0f31f4d98cdd35d41a96262b5480828378a3e64ab58e988f548ee470
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4613
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:16 GMT
Last-Modified: Fri, 27 Jan 2023 10:27:23 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=2cea94285f394b6c8f4996df5357243d
52.48.206.130204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=2cea94285f394b6c8f4996df5357243d
IP 52.48.206.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=zdbb&partner_uid=2cea94285f394b6c8f4996df5357243d HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:17 GMT
set-cookie: _kuid_=PV_fyVsd; Expires=Wed, 26-Jul-23 11:44:17 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n003-dub-prod.krxd.net
x-request-time: D=31 t=1674819857
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 989fb9327b2601972eef5721628f6bad
83455ba2532c2f02266a96361bf72b1a5f168671
74282f54498ca09c54298d74f49cbc2058505e78c2545b9d5a8d000f04dab973
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 989fb9327b2601972eef5721628f6bad
83455ba2532c2f02266a96361bf72b1a5f168671
74282f54498ca09c54298d74f49cbc2058505e78c2545b9d5a8d000f04dab973
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 989fb9327b2601972eef5721628f6bad
83455ba2532c2f02266a96361bf72b1a5f168671
74282f54498ca09c54298d74f49cbc2058505e78c2545b9d5a8d000f04dab973
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 989fb9327b2601972eef5721628f6bad
83455ba2532c2f02266a96361bf72b1a5f168671
74282f54498ca09c54298d74f49cbc2058505e78c2545b9d5a8d000f04dab973
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012301112346000/amp4ads-v0.mjs
216.58.207.193200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/amp4ads-v0.mjs
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 27cf438fb43d91ae188ec660779545d6
8b9a4cafe884163806af638d24d38b3d3ebc9a4b
fbad1bda779d108b137b7ef98564a9538f866d3c20208c5c3f59f30be33e43ad
GET /rtv/012301112346000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61771
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:05 GMT
expires: Tue, 23 Jan 2024 18:11:05 GMT
cache-control: public, max-age=31536000
etag: "004684fcaffa7679"
content-type: text/javascript; charset=UTF-8
age: 322392
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301112346000/v0/amp-ad-exit-0.1.mjs
216.58.207.193200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-ad-exit-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (14751)
Hash 8d4f7148a157a31d69df198119f15f6c
869d2edb3409f82d8da8690b3b6c7c4212466bf1
9e17a0f37428d7db29cea9973f978d4716aaa7581c2480e9c337efcc84def4bf
GET /rtv/012301112346000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5217
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:05 GMT
expires: Tue, 23 Jan 2024 18:11:05 GMT
cache-control: public, max-age=31536000
etag: "cee5c64b71634b65"
content-type: text/javascript; charset=UTF-8
age: 322392
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301112346000/v0/amp-analytics-0.1.mjs
216.58.207.193200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-analytics-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (65534)
Hash 7c4e76629bf5f57043e927954d19a19d
a144b16ad4d7168628eaed4f4b26e00a8f4364e3
310354d1c8f1db61fdfb182e107c8eb8a2e7986d1f4e95a2664df2cbdc1f7ccf
GET /rtv/012301112346000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28839
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:05 GMT
expires: Tue, 23 Jan 2024 18:11:05 GMT
cache-control: public, max-age=31536000
etag: "22d781f17bba60c1"
content-type: text/javascript; charset=UTF-8
age: 322392
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301112346000/v0/amp-fit-text-0.1.mjs
216.58.207.193200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-fit-text-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (5021)
Hash 7fe5c160dceb250b352d5e11b7586036
0903f40a74a5805f6391a371509369de8e2e1c50
eaec033417fdbf02ec62fc0bf45d0bee3538e3e1722660a312cbe3e4dd60068f
GET /rtv/012301112346000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1907
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:08 GMT
expires: Tue, 23 Jan 2024 18:11:08 GMT
cache-control: public, max-age=31536000
etag: "5788572ff662ddbc"
content-type: text/javascript; charset=UTF-8
age: 322389
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301112346000/v0/amp-form-0.1.mjs
216.58.207.193200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-form-0.1.mjs
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (41068)
Hash dac0049d10fef1c315153ac07254ffda
6282a0a8727d76cb0fe8267c7f1aac6646302ebc
e7d78a90fc0d890bd6da55f94658d31a587cca0247d81364b7a39a7f142772d1
GET /rtv/012301112346000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12955
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:08 GMT
expires: Tue, 23 Jan 2024 18:11:08 GMT
cache-control: public, max-age=31536000
etag: "ba03cd6134fdf15c"
content-type: text/javascript; charset=UTF-8
age: 322389
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b139ef842e1ece23a2fb6810cbb79f0b
75eb76995244c2e1841e0f3283f126cf13a77b04
7287866e126fff5e98015a2750cfe2889271f4f7e4084668e69e939a951243be
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 13:42:55 GMT
Expires: Wed, 01 Feb 2023 13:42:54 GMT
Etag: "75eb76995244c2e1841e0f3283f126cf13a77b04"
Cache-Control: max-age=438516,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79013c4a4f050b59-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 989fb9327b2601972eef5721628f6bad
83455ba2532c2f02266a96361bf72b1a5f168671
74282f54498ca09c54298d74f49cbc2058505e78c2545b9d5a8d000f04dab973
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c6c64fc014f993e296f124e4b2f0f175
68d3e62fcd25c05d19894a28f4490cf1d04a44c1
7cee6b4b9234d595e6abd78d1bc14febaf314cdab54cc18e07f92e0b24fe1e79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
142.250.74.67200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 14:34:21 GMT
expires: Fri, 26 Jan 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 76196
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.106200 OK 8.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.106:0
Hash b0d0adae8845bd4c73d227758e10f207
9b7b0490835a31a23846aa8164e705335cec1ec9
513b25ec04d6adf92f8ee4be7b98afd126615ca7f3a753ca1c50d4a2d4f48596
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.speedtest.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 11:44:17 GMT
date: Fri, 27 Jan 2023 11:44:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c6c64fc014f993e296f124e4b2f0f175
68d3e62fcd25c05d19894a28f4490cf1d04a44c1
7cee6b4b9234d595e6abd78d1bc14febaf314cdab54cc18e07f92e0b24fe1e79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de1ce1472f360bfdf03f16285d87afb1
8d66a92d67c015560d994ebb92243833afe21a6a
20056cf21ebb6b84a9e6bc2675baa121e9c4cc9456a8c2dbd0c8dcad7595af0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/ads/studio/cached_libs/createjs_2019.11.15_min.js
172.217.21.166200 OK 64 kB URL HTTP/2 s0.2mdn.net/ads/studio/cached_libs/createjs_2019.11.15_min.js
IP 172.217.21.166:0
File type ASCII text, with very long lines (32043)
Hash d515d6bc712ab2550aa6d7131c8383ab
0af98d7d426d6d6513dbc7a9be5e46d56449ef68
2a8b445262abbb4ba7712e0877acb65efa322dd8bbecf8cf18cf5ac082bc66f6
GET /ads/studio/cached_libs/createjs_2019.11.15_min.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 64275
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 11:44:17 GMT
expires: Fri, 27 Jan 2023 11:44:17 GMT
cache-control: public, max-age=0
last-modified: Fri, 15 Nov 2019 19:16:20 GMT
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de1ce1472f360bfdf03f16285d87afb1
8d66a92d67c015560d994ebb92243833afe21a6a
20056cf21ebb6b84a9e6bc2675baa121e9c4cc9456a8c2dbd0c8dcad7595af0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/ads/studio/cached_libs/gsap_3.9.1_min.js
172.217.21.166200 OK 25 kB URL HTTP/2 s0.2mdn.net/ads/studio/cached_libs/gsap_3.9.1_min.js
IP 172.217.21.166:0
File type ASCII text, with very long lines (63851)
Hash 839c0f19f071a97b420bf573dc1102f5
9654cad2cc914ec1905d30fcc75b3a7aeb4e4ada
5517b90cb50d0e4de8872772dfd8433fe865d147bb6dfe909fa480b9552c1402
GET /ads/studio/cached_libs/gsap_3.9.1_min.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 25329
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 11:44:17 GMT
expires: Fri, 27 Jan 2023 11:44:17 GMT
cache-control: public, max-age=0
last-modified: Wed, 29 Dec 2021 19:08:26 GMT
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16748198551646758&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1674819858&rnd=115623
34.254.86.77200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16748198551646758&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1674819858&rnd=115623
IP 34.254.86.77:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16748198551646758&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1674819858&rnd=115623 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:18 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=eec5be41-9e37-11ed-a277-1d79b6cb25a7; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Wed, 21-Feb-2024 11:44:18 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstsZmmalrRib4jF-6JCit6qrJJOH0k9yIJN0KMEYeq8JiCzZi89Sc5mO6W-E7MDkejMwQsLNtvsZFOaMBR9t7E8A05iACkSMHJO3ZT_IW_iAcDzMiVWOeHTM1_s6Zs79NIWEsDEew&sai=AMfl-YSLaQSobwwNMZtmECIEioDrlV8lt6HS30QUkqkRLOwxRncJOxQfPPMCM0cXfip6cIdmEyE-L-LI--KjJw1eY_Tl1qsCg1HDcd93EW6E-mxNiOAfik9nQaSy7Yym_Y9fjiEwRIRzUkjy1WMcJNU&sig=Cg0ArKJSzMmnb7MMkthOEAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1185&p=345,946,595,1246&mtos=1185,1185,1185,1185,1185&tos=1185,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=1178321438&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856789&rpt=762&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
216.58.207.226200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstsZmmalrRib4jF-6JCit6qrJJOH0k9yIJN0KMEYeq8JiCzZi89Sc5mO6W-E7MDkejMwQsLNtvsZFOaMBR9t7E8A05iACkSMHJO3ZT_IW_iAcDzMiVWOeHTM1_s6Zs79NIWEsDEew&sai=AMfl-YSLaQSobwwNMZtmECIEioDrlV8lt6HS30QUkqkRLOwxRncJOxQfPPMCM0cXfip6cIdmEyE-L-LI--KjJw1eY_Tl1qsCg1HDcd93EW6E-mxNiOAfik9nQaSy7Yym_Y9fjiEwRIRzUkjy1WMcJNU&sig=Cg0ArKJSzMmnb7MMkthOEAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1185&p=345,946,595,1246&mtos=1185,1185,1185,1185,1185&tos=1185,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=1178321438&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856789&rpt=762&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP 216.58.207.226:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstsZmmalrRib4jF-6JCit6qrJJOH0k9yIJN0KMEYeq8JiCzZi89Sc5mO6W-E7MDkejMwQsLNtvsZFOaMBR9t7E8A05iACkSMHJO3ZT_IW_iAcDzMiVWOeHTM1_s6Zs79NIWEsDEew&sai=AMfl-YSLaQSobwwNMZtmECIEioDrlV8lt6HS30QUkqkRLOwxRncJOxQfPPMCM0cXfip6cIdmEyE-L-LI--KjJw1eY_Tl1qsCg1HDcd93EW6E-mxNiOAfik9nQaSy7Yym_Y9fjiEwRIRzUkjy1WMcJNU&sig=Cg0ArKJSzMmnb7MMkthOEAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1185&p=345,946,595,1246&mtos=1185,1185,1185,1185,1185&tos=1185,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=1178321438&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856789&rpt=762&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ceb01f6ac0644ad3f13c0c7be721af72.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 27 Jan 2023 11:44:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvijepBaTVWf7y1cGzX4mdbr5VWU632C1Q-3FKVZKWI613PMBf4Or5jwBy9vET5X-bEjnVpQzgE34Eebz2C0bb0IlnhflzQYfAxcw2TsqAguhAIX5mCZ_Q-yoRj7hqeNNTrziOFcw&sai=AMfl-YRacKUR_JY2EW7O6riIVSV38S8BYWf3PqrbmsPb-TFMZVgbEv8AzZT3nOnoqOwRyn5FCZ_3w46w9yCxkLC7KYMLgqnPbkrajA2itERrKfYv2oXCgCqvTHaBml-eOW6pCxP8Q5zbjaPmvV7ezFI&sig=Cg0ArKJSzFy5eKO_Psz0EAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1066&p=77,946,327,1246&mtos=1066,1066,1066,1066,1066&tos=1066,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=2311931128&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856777&rpt=995&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
216.58.207.226200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvijepBaTVWf7y1cGzX4mdbr5VWU632C1Q-3FKVZKWI613PMBf4Or5jwBy9vET5X-bEjnVpQzgE34Eebz2C0bb0IlnhflzQYfAxcw2TsqAguhAIX5mCZ_Q-yoRj7hqeNNTrziOFcw&sai=AMfl-YRacKUR_JY2EW7O6riIVSV38S8BYWf3PqrbmsPb-TFMZVgbEv8AzZT3nOnoqOwRyn5FCZ_3w46w9yCxkLC7KYMLgqnPbkrajA2itERrKfYv2oXCgCqvTHaBml-eOW6pCxP8Q5zbjaPmvV7ezFI&sig=Cg0ArKJSzFy5eKO_Psz0EAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1066&p=77,946,327,1246&mtos=1066,1066,1066,1066,1066&tos=1066,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=2311931128&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856777&rpt=995&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP 216.58.207.226:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsvijepBaTVWf7y1cGzX4mdbr5VWU632C1Q-3FKVZKWI613PMBf4Or5jwBy9vET5X-bEjnVpQzgE34Eebz2C0bb0IlnhflzQYfAxcw2TsqAguhAIX5mCZ_Q-yoRj7hqeNNTrziOFcw&sai=AMfl-YRacKUR_JY2EW7O6riIVSV38S8BYWf3PqrbmsPb-TFMZVgbEv8AzZT3nOnoqOwRyn5FCZ_3w46w9yCxkLC7KYMLgqnPbkrajA2itERrKfYv2oXCgCqvTHaBml-eOW6pCxP8Q5zbjaPmvV7ezFI&sig=Cg0ArKJSzFy5eKO_Psz0EAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1066&p=77,946,327,1246&mtos=1066,1066,1066,1066,1066&tos=1066,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=2311931128&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856777&rpt=995&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ceb01f6ac0644ad3f13c0c7be721af72.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 27 Jan 2023 11:44:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvGMotRcSxop87nNIyKnIooiII2UBn8LvjEVgpQJIPr4wqW3GIJNhxHDptxf3PNXS-pZS0YBWSHMIuBqkNA9UyO1ePGK7Tqjr7XTvzmsZ2K3v8xD1kpVLPbpIHqBUq9K-yMI5NyWA&sai=AMfl-YRZtsCvB6k9y14oWUDU50Y_duVoNRoaYo3zPBmYj0lw27dk8YGW_dPKESxCB3Xur-JFTNcwba7p5n54qZR0WJUGYARCUbTFmOck-6fNVpfQ_0pFJ7M-VMo4H8bCO1E2ShjMs29vmrM2BGGKAGc&sig=Cg0ArKJSzHiw1R17zeUxEAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1264&p=77,22,677,182&mtos=1264,1264,1264,1264,1264&tos=1264,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=490556826&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856764&rpt=911&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
216.58.207.226200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvGMotRcSxop87nNIyKnIooiII2UBn8LvjEVgpQJIPr4wqW3GIJNhxHDptxf3PNXS-pZS0YBWSHMIuBqkNA9UyO1ePGK7Tqjr7XTvzmsZ2K3v8xD1kpVLPbpIHqBUq9K-yMI5NyWA&sai=AMfl-YRZtsCvB6k9y14oWUDU50Y_duVoNRoaYo3zPBmYj0lw27dk8YGW_dPKESxCB3Xur-JFTNcwba7p5n54qZR0WJUGYARCUbTFmOck-6fNVpfQ_0pFJ7M-VMo4H8bCO1E2ShjMs29vmrM2BGGKAGc&sig=Cg0ArKJSzHiw1R17zeUxEAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1264&p=77,22,677,182&mtos=1264,1264,1264,1264,1264&tos=1264,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=490556826&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856764&rpt=911&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP 216.58.207.226:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsvGMotRcSxop87nNIyKnIooiII2UBn8LvjEVgpQJIPr4wqW3GIJNhxHDptxf3PNXS-pZS0YBWSHMIuBqkNA9UyO1ePGK7Tqjr7XTvzmsZ2K3v8xD1kpVLPbpIHqBUq9K-yMI5NyWA&sai=AMfl-YRZtsCvB6k9y14oWUDU50Y_duVoNRoaYo3zPBmYj0lw27dk8YGW_dPKESxCB3Xur-JFTNcwba7p5n54qZR0WJUGYARCUbTFmOck-6fNVpfQ_0pFJ7M-VMo4H8bCO1E2ShjMs29vmrM2BGGKAGc&sig=Cg0ArKJSzHiw1R17zeUxEAE&cid=CAQSSwDUE5ymcCMWHrTfh4v9iXJ7NW9QOZ9phl7zFVqdNKxtF6lUwShxV0sAnya_gYd0Q9CEUEXZiUcKi9Vfw3QYcV_LxkCA60ETIt7WcRgBIBM&id=lidar2&mcvt=1264&p=77,22,677,182&mtos=1264,1264,1264,1264,1264&tos=1264,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=2&adk=490556826&rs=4&la=0&cr=0&vs=4&r=v&rst=1674819856764&rpt=911&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ceb01f6ac0644ad3f13c0c7be721af72.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 27 Jan 2023 11:44:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=159017&us_privacy=1YNY HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=80967
expires: Sat, 28 Jan 2023 10:13:46 GMT
date: Fri, 27 Jan 2023 11:44:19 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
u.openx.net/w/1.0/pd?us_privacy=1YNY
35.244.159.8200 OK 20 B URL HTTP/2 u.openx.net/w/1.0/pd?us_privacy=1YNY
IP 35.244.159.8:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /w/1.0/pd?us_privacy=1YNY HTTP/1.1
Host: u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: text/html
content-length: 20
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?us_privacy=1YNY
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?us_privacy=1YNY
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?us_privacy=1YNY HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 27 Jan 2023 11:44:19 GMT
Connection: keep-alive
Vary: Accept-Encoding
acdn.adnxs.com/dmp/async_usersync.html
23.38.200.189200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 23.38.200.189:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: "623de86a-cf34"
Server: nginx/1.18.0 (Ubuntu)
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Encoding: gzip
Content-Length: 17053
Cache-Control: max-age=86402
Expires: Sat, 28 Jan 2023 11:44:21 GMT
Date: Fri, 27 Jan 2023 11:44:19 GMT
Connection: keep-alive
Vary: Accept-Encoding
contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY
23.38.200.22200 OK 8.5 kB URL HTTP/2 contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Hash 37a63016a76993b408138ebeef912603
47f92c63cdb27d640e5397ccc8c697d5bc1ea487
96f31028309efb52cf3a4b3fc0a1661f415953238e25458c0c1064ae4139d314
GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUYEJ1S6&prvid=2033%2C193%2C2030%2C273%2C111%2C157%2C2027%2C159%2C2026%2C236%2C117%2C51%2C97%2C55%2C99%2C56%2C59%2C3012%2C3010%2C122%2C3008%2C201%2C3007%2C169%2C246%2C4%2C126%2C203%2C326%2C9%2C172%2C173%2C294%2C174%2C251%2C175%2C132%2C178%2C255%2C3018%2C3017%2C214%2C3016%2C3015%2C139%2C3014%2C338%2C70%2C76%2C33%2C77%2C38%2C184%2C261%2C141%2C186%2C188%2C145%2C222%2C147%2C225%2C226%2C10000%2C80%2C108%2C229%2C109%2C41&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=1&usp_consent=1&uspstring=1YNY HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
set-cookie: usp_status=1; Expires=Mon, 31 Jul 2023 11:44:19 GMT; domain=.media.net; Path=/;
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Sun, 29 Jan 2023 11:44:19 GMT
date: Fri, 27 Jan 2023 11:44:19 GMT
content-length: 8465
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cc20adcd293cc2554643e15fd6c19a55
ac3ed84db082af11e840277b307c8598d0633a50
707f23a6da4897bda6fcfe14bd6ffa2b78dc44b88f8db601575e92b72c126d5a
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4449
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:19 GMT
Last-Modified: Fri, 27 Jan 2023 10:30:10 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YNY&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=80967
expires: Sat, 28 Jan 2023 10:13:46 GMT
date: Fri, 27 Jan 2023 11:44:19 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18573)
Hash 1e09680575b17cdc7914eca4632c71bf
8059638216a76abae4099e6d183d7c07fed693da
fc2694a1f056159ec8f73654d536c73f597e14f1f74fa49b00614189941a2f2c
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?us_privacy=1YNY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Fri, 27 Jan 2023 05:17:48 GMT
Content-Encoding: gzip
Content-Length: 10037
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=63221
Expires: Sat, 28 Jan 2023 05:18:00 GMT
Date: Fri, 27 Jan 2023 11:44:19 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash f1d55ab20f757f7fd0b51462c7f4a9b0
e1ec60e23dda34f6bebe9654e9fbcee9374e7d4b
4bc645f135acb91082641116f38ba1a2371b49c50df7dc2527c6fc62601482df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1550
Cache-Control: max-age=95063
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:19 GMT
Etag: "63d2835c-138"
Expires: Sat, 28 Jan 2023 14:08:42 GMT
Last-Modified: Thu, 26 Jan 2023 13:42:52 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
js-sec.indexww.com/um/ixmatch.html
172.64.151.162200 OK 1.4 kB URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 172.64.151.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2920), with no line terminators
Hash 5afd6e52a87d99b7b9be7c2fc0b1a091
b6331e837ab190a6a2c616f940e56ef8e357aa77
8e48f6997aa3f9b4c3b853c8974843341b34ee4b50f9e84ac69ddf531b244158
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:26 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 222
expires: Fri, 27 Jan 2023 15:44:19 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 79013c586f2eb51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 27 Jan 2023 11:44:19 GMT
Connection: keep-alive
Vary: Accept-Encoding
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
172.64.154.237302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
IP 172.64.154.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js-sec.indexww.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:19 GMT
content-length: 0
location: /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
cf-ray: 79013c5989f00afe-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9O5E31Nk4JL5cnCKVIQXQAA; Path=/; Domain=casalemedia.com; Expires=Sat, 27 Jan 2024 11:44:19 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=720; Path=/; Domain=casalemedia.com; Expires=Thu, 27 Apr 2023 11:44:19 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=720; Path=/; Domain=casalemedia.com; Expires=Thu, 27 Apr 2023 11:44:19 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wlfdZFJs9PUOUnpYs0RA5eeRV0h3aSx7%2F8ttkOp86EJMj083aMwMmevos9CkZ6vIkmP6MEYebGEk2K3Ofv4F9ewr0gL27OlszFoCsZuYWsEco%2Fo5w2iR4CTdFs%2FpCSCTRk9A4LeI57qD1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
185.64.190.78200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 185.64.190.78:0
File type ASCII text, with no line terminators
Hash 0d18b0f020e7f770335eeb21a1c005f8
28f9b678ac9b4663643d158df4263cba897e85b2
1f88f1bfa645987f774b0bed9728dcfd506a41f8f6ff128dad696bd42e59f1ae
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Thu, 27 Apr 2023 04:09:22 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Fri, 27 Jan 2023 11:44:19 GMT
content-length: 60
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YNY&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
172.64.154.237302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
IP 172.64.154.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:19 GMT
content-length: 0
location: /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
cf-ray: 79013c5999ff0afe-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9O5E--CSzTGUc3XAfJ.GwAA; Path=/; Domain=casalemedia.com; Expires=Sat, 27 Jan 2024 11:44:19 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=670; Path=/; Domain=casalemedia.com; Expires=Thu, 27 Apr 2023 11:44:19 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=670; Path=/; Domain=casalemedia.com; Expires=Thu, 27 Apr 2023 11:44:19 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H34LKgAicAUS%2FM9r5%2FdA3DGji09t3YNTBw01ScrWgvdGogCJL5UxAR9ehuHbpow1gWeneUIXnh3dVawWJwRPb1mv9SddIM23spNEGaNjYqQwygkVTgkG6gordcAFokCT%2BeKBX%2FOQuHFHRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
185.89.210.46307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
AN-X-Request-Uuid: 69a464f5-2bad-457d-ab92-df677d9182bd
Set-Cookie: uuid2=5281656840457963611; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 27-Apr-2023 11:44:19 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e35f4a6f9d98f853e4e5aba92a31485d
7ef91ae192a3b94d44e04faa3c8b324713092c53
14ac8927ca9cf3baac45ae0beccd735bc336722d619d3bbb5a442539f53d3bda
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14AC8927CA9CF3BAAC45AE0BECCD735BC336722D619D3BBB5A442539F53D3BDA"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8933
Expires: Fri, 27 Jan 2023 14:13:12 GMT
Date: Fri, 27 Jan 2023 11:44:19 GMT
Connection: keep-alive
ib.adnxs.com/async_usersync?cbfn=queuePixels
185.89.210.46307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: f00097ee-a16a-4b13-a707-e3ce7ba44c9c
Set-Cookie: uuid2=8347635088739549224; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 27-Apr-2023 11:44:19 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YNY&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Fri, 27 Jan 2023 11:44:19 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=2b1e05ee-b447-470d-8eb0-6ed610d38bd8&gdpr=0&gdpr_consent=&us_privacy=1YNY
server: envoy
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d43ddde09051712cd131049d11a233b
3888a6ef0d682aa5569b3b33e20d3dfc7b6a8ef4
00ea34741348f1b01e7d2bf74b17ad34e7d35310e2dd2b00d12ebfc9d3d81208
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5449
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:19 GMT
Last-Modified: Fri, 27 Jan 2023 10:13:31 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
185.89.210.46302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ads.servenobid.com/sync?pid=312&uid=0
AN-X-Request-Uuid: 23053d75-45af-4689-b714-799948c10669
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d43ddde09051712cd131049d11a233b
3888a6ef0d682aa5569b3b33e20d3dfc7b6a8ef4
00ea34741348f1b01e7d2bf74b17ad34e7d35310e2dd2b00d12ebfc9d3d81208
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2667
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:19 GMT
Last-Modified: Fri, 27 Jan 2023 10:59:52 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0fac328da1f996105915b748eb891f8a
ab1a16a852751b35d9b47fd5f525d9f21e47369b
6e1d7fa8bed7873094d94d20a35537e0e2f4c15b08c51c0633ca867075724380
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 01:55:53 GMT
Expires: Wed, 01 Feb 2023 01:55:52 GMT
Etag: "ab1a16a852751b35d9b47fd5f525d9f21e47369b"
Cache-Control: max-age=396092,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79013c5a6eb90b59-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 7e2e9eedbc7c377b91aba218629ce8c0
2ecd9a7212e635a8d9fcc6be96f25e302a20c2d9
9da29cbf467816156275e72f616cee4543cd477ea5fbb690dd18dc8e73222950
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130914
Date: Fri, 27 Jan 2023 11:44:19 GMT
Etag: "63d312c1-1d7"
Expires: Sun, 29 Jan 2023 00:06:13 GMT
Last-Modified: Thu, 26 Jan 2023 23:54:41 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 31t5cu6vmfZg1ilikP8MpQCt18JPBFsJuKjWvT-oLuDJVjzgY0kAbQ==
Age: 692
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.210.46200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: f2ecf03b-a328-4b86-929a-229f9e063be7
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/58559/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:19 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58559/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBO502MCEK-HS5ERK1o1sSgdm2mDKUMFEgEBAQEK1WPdYwAAAAAA_eMAAA&S=AQAAAhtHINVR9_QB8PONZmoHW4c; Expires=Sat, 27 Jan 2024 17:44:19 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D
54.230.111.16200 OK 0 B URL HTTP/2 cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D
IP 54.230.111.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D HTTP/1.1
Host: cs-rtb.minutemedia-prebid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Fri, 27 Jan 2023 11:44:19 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF,X-Requested-With
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://public.servenobid.com/
x-reason: could not perform CS due to GDPR policy: gdpr is not applied
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oa7Yax6we6XZK6dJhU29nUZuKt8q_wpha10MmUy9MnOZK_Ln9l7w3A==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 2776b612963ea1a87357f2bd18c022d1
35b6dfa8e63ce6a04b090e4e66a1eceef09fb7e9
78b439a033288692eb484ebdcf4afd5e5adfa0c0998236cae29d1877c363adba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4486
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:19 GMT
Last-Modified: Fri, 27 Jan 2023 10:29:33 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ups.analytics.yahoo.com/ups/58632/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:19 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58632/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBO502MCEKE0mPK4KlSB62UEQmQgyoUFEgEBAQEK1WPdYwAAAAAA_eMAAA&S=AQAAAoDkAJdZU_GO9k8kjauEjqs; Expires=Sat, 27 Jan 2024 17:44:19 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 77d978757d6657d8b60fda5fb85406b6
b30cb7f2022b6d7677fe1ff6e04a632516ef17af
4af31f6250099b795ff34dcef20d30afe42fa5c7073719692429457ed097f51b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 02:15:45 GMT
Expires: Wed, 01 Feb 2023 02:15:44 GMT
Etag: "b30cb7f2022b6d7677fe1ff6e04a632516ef17af"
Cache-Control: max-age=397284,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79013c5aef390b59-OSL
ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
185.86.137.122200 OK 922 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
IP 185.86.137.122:0
ASN #201081 SmartAdServer SAS
File type HTML document text\012- HTML document, ASCII text
Hash 062106c7b9d217aecdba5a044ce42fbc
27bd14fefbd45d9b0b9c7170fba263dda05f5fda
e0d2f4309ae6d8921a1ddc17cdc857124bba1bd7646d0ff24d28cb2053edd99c
GET /api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 922
content-type: text/html
date: Fri, 27 Jan 2023 11:44:19 GMT
set-cookie: pid=6390107177250062405; expires=Tue, 27 Feb 2024 11:43:19 GMT; domain=smartadserver.com; path=/; secure; samesite=none
p.rfihub.com/cm?pub=44007&in=1
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=44007&in=1
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=44007&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 27 Jan 2023 11:44:19 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MTQyNLAwMjY2MTYxMrE0MBXiM9S1zMnLj3fN9C92dUwFAAvVh4YlAAAA; Path=/; Domain=.rfihub.com; Expires=Wed, 21 Feb 2024 11:44:19 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MTQyNLAwMjY2MTYxMrE0MBXiM9S1zMnLj3fN9C92dUwFAAvVh4YlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_zslzmtoZm5iYWhpYWppbmIGACSQqvsQAAAA; Path=/; Domain=.rfihub.com; Expires=Wed, 21 Feb 2024 11:44:19 GMT; Secure; SameSite=None
Location: https://ads.servenobid.com/sync?pid=324&uid=5141210823343424905
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 87e5d4f2f909a542e051c7359d5ae16f
64a221abc80f1104369dd9d192dba52b6d0e3306
7f043b2686ae55cf436675dac0572c6de9de38afa0fc3e76181a6594203ad651
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 21:29:32 GMT
Expires: Fri, 27 Jan 2023 21:29:32 GMT
ETag: "64a221abc80f1104369dd9d192dba52b6d0e3306"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 096bba74bcc8900b183f6598fdb8e2b3
239e2b6a60b8c30f1394db37641e3027ece6edcd
3ae0e2d660bb92bed6ab61daa7a5302107ee8e068b684f2bfcf677d089eba905
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93485
Date: Fri, 27 Jan 2023 11:44:19 GMT
Etag: "63d26b77-1d7"
Expires: Sat, 28 Jan 2023 13:42:24 GMT
Last-Modified: Thu, 26 Jan 2023 12:00:55 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UygYngZGeYQtCYUPNyUYVCJniJ2BCg-R97eFCqKubvHnDy3TpH0zcg==
Age: 6089
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 4d439cdb076585ce0d3826467c4f8a29
bd438f2868bcf81808cdf0812ce7b9c63afb5ff7
5fd526d3010099026131b19e929c19a1ad58b719a2585d94e3c7e398bb59335c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 21:10:17 GMT
Expires: Fri, 27 Jan 2023 21:10:17 GMT
ETag: "bd438f2868bcf81808cdf0812ce7b9c63afb5ff7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ads.servenobid.com/sync?pid=327&uid=2b1e05ee-b447-470d-8eb0-6ed610d38bd8&gdpr=0&gdpr_consent=&us_privacy=1YNY
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=327&uid=2b1e05ee-b447-470d-8eb0-6ed610d38bd8&gdpr=0&gdpr_consent=&us_privacy=1YNY
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=2b1e05ee-b447-470d-8eb0-6ed610d38bd8&gdpr=0&gdpr_consent=&us_privacy=1YNY HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:19 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
216.52.2.30302 Found 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
IP 216.52.2.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 27 Jan 2023 11:44:19 GMT
Set-Cookie: ljt_reader=GDmAuRZHG7N8So62S8642bAO; Path=/; Domain=.lijit.com; Expires=Sat, 27-Jan-2024 11:44:19 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
Location: https://ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
Content-Length: 0
X-Sovrn-Pod: ad_ap6ams1
cdn.indexww.com/ht/htw-pixel.gif?0
104.18.36.94200 OK 43 B URL HTTP/2 cdn.indexww.com/ht/htw-pixel.gif?0
IP 104.18.36.94:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /ht/htw-pixel.gif?0 HTTP/1.1
Host: cdn.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 24 Jan 2017 19:36:04 GMT
etag: "da1f1d-2b-546dc3a097100"
cache-control: public, max-age=86400
expires: Sat, 28 Jan 2023 11:44:19 GMT
edge-control: cache-maxage=1h
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 39804
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79013c5c6d81b4e8-OSL
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=333&uid=0
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=333&uid=0
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=333&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_333=0; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:19 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
54.76.30.105200 OK 7.0 kB URL HTTP/2 g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
IP 54.76.30.105:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (15903)
Hash 337211cdca636c097dddf28919c10830
5c6559eea223db994ff4919211f82026ed98ab82
8fb9fab81cce8c4ae2aff6f3d5761f042e29bf261d4e295fe7a89de066171812
GET /usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: text/html;charset=UTF-8
server: nginx
set-cookie: vst=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b; Domain=.gumgum.com; Expires=Sat, 27 Jan 2024 11:44:19 GMT; Path=/; Secure; SameSite=None
etag: W/"07d71acc164aa166f0b7ed99165fd26f2"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
69.166.1.12302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
IP 69.166.1.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 27 Jan 2023 11:44:19 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-76
X-Xss-Protection: 0
Location: https://ads.servenobid.com/sync?pid=332&uid=34d8f4a5-ef4a-45a0-a8fa-2acbaa3abb5d
Server: sonobi-go
Set-Cookie: __uis=34d8f4a5-ef4a-45a0-a8fa-2acbaa3abb5d; expires=Sun, 26 Feb 2023 11:44:19 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s8756|Y9O5F; path=/; domain=.go.sonobi.com; SameSite=None; secure
ups.analytics.yahoo.com/ups/58632/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:19 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBO502MCEL_KCNgDxqnVC8242Srw2PMFEgEBAQEK1WPdYwAAAAAA_eMAAA&S=AQAAAuLHkHwTHVpiZK_YmIqgxYk; Expires=Sat, 27 Jan 2024 17:44:19 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58559/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:44:19 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBBO502MCEN1MjQ79yZfPv0OgG235KH4FEgEBAQEK1WPdYwAAAAAA_eMAAA&S=AQAAAucfKHoRfaVck4qjLsWIr-Q; Expires=Sat, 27 Jan 2024 17:44:19 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=309&uid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=309&uid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=309&uid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_309=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:19 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=312&uid=0
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=312&uid=0
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=312&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_312=0; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:19 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
172.64.154.237200 OK 99 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
IP 172.64.154.237:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 990b1d11b6472fef206cbc2e26fc617a
1d109030d2114db3e798f7818fa8f3062a29ffaa
9ad3d2544b1164023749d1672caa0a50ef151ef6fd517943de754eb572e5da10
GET /usermatch?d=https%3A%2F%2Fwww.speedtest.net%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js-sec.indexww.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: text/html
cf-ray: 79013c5a0a810afe-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fr8zr2OlXRiv11dgbOdRVDStzZc%2BtguxJ4I7tqDtfAseYSCKNRa4BJs1vDGxcmOli9TWcbjNPWg0TIdpytdYxhpfAiVFZmWCRoXfB4FVZPiuRyLiCvYrPbKWR5zspS2S4UW5oQAesc29fA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=gumgum HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=gumgum
date: Fri, 27 Jan 2023 11:44:19 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=159017&sc=1&u=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY
198.47.127.20200 OK 1.3 kB URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=159017&sc=1&u=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY
IP 198.47.127.20:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720)
Hash 6ed4753c1b008582cb3127151e57c399
60052913af2a6e1cfc6ef66aaabba61934ced376
f45935e62d3cd33516a010dc4ffcfb9b55a610c8c38b4170db81e066d185e600
GET /AdServer/SPug?o=1&p=159017&sc=1&u=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 11:44:18 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DA18CAD8B-59EE-4779-8CCE-F19C8FA742E5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DA18CAD8B-59EE-4779-8CCE-F19C8FA742E5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DA18CAD8B-59EE-4779-8CCE-F19C8FA742E5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache/2.2.15 (CentOS)
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=70286
expires: Sat, 28 Jan 2023 07:15:46 GMT
date: Fri, 27 Jan 2023 11:44:20 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=316&uid=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=316&uid=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=316&uid=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8; pid_333=0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: text/html;charset=ISO-8859-1
content-length: 0
set-cookie: pid_316=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:20 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=317&uid=6390107177250062405&gdpr=0&gdpr_consent=
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=317&uid=6390107177250062405&gdpr=0&gdpr_consent=
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=317&uid=6390107177250062405&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8; pid_333=0; pid_309=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b; pid_312=0; pid_324=5141210823343424905
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_317=6390107177250062405; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:20 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
185.86.137.122302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
IP 185.86.137.122:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Fri, 27 Jan 2023 11:44:19 GMT
location: https://usersync.gumgum.com/usersync?b=sad&i=7377773235253412089
set-cookie: pid=7377773235253412089; expires=Tue, 27 Feb 2024 11:43:20 GMT; domain=smartadserver.com; path=/; secure; samesite=none
ads.servenobid.com/sync?pid=332&uid=34d8f4a5-ef4a-45a0-a8fa-2acbaa3abb5d
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=332&uid=34d8f4a5-ef4a-45a0-a8fa-2acbaa3abb5d
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=332&uid=34d8f4a5-ef4a-45a0-a8fa-2acbaa3abb5d HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8; pid_333=0; pid_309=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b; pid_312=0; pid_324=5141210823343424905; pid_316=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_332=34d8f4a5-ef4a-45a0-a8fa-2acbaa3abb5d; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:20 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2e531d4eee4908df77d6bb6b4437a993
f2f7ad84c7ecaff978314efbe6a17a2b1715b3a7
036ee581f8ad88cbed652aa5fe67ff92e89f7096f35836c3ae86f2be29fbd0df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1572
Cache-Control: max-age=140093
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d3332d-1d7"
Expires: Sun, 29 Jan 2023 02:39:14 GMT
Last-Modified: Fri, 27 Jan 2023 02:13:01 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
216.52.2.30204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
IP 216.52.2.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Fri, 27 Jan 2023 11:44:20 GMT
Set-Cookie: ljt_reader=GDmAuRZHB-r-jCzkQMqH-PFk; Path=/; Domain=.lijit.com; Expires=Sat, 27-Jan-2024 11:44:20 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap6ams1
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
54.156.196.33302 Found 0 B URL HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP 54.156.196.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-length: 0
location: https://cs.iqzone.com/a6da5bf591376177b08e1eb90117169d.gif?puid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a&gdpr=&gdpr_consent=&us_privacy=&redir=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D18%26buyeruid%3D%5BUID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhoMOAE=
cache-control: no-store
pragma: no-cache
expires: 0
set-cookie: zeta-ssp-user-id=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a; Max-Age=31536000; Expires=Sat, 27 Jan 2024 11:44:19 GMT; Path=/; Domain=disqus.com; Secure; SameSite=None
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=321&uid=OPTOUT
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=321&uid=OPTOUT
IP 54.76.94.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=321&uid=OPTOUT HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=2b1e05ee-b447-470d-8eb0-6ed610d38bd8; pid_333=0; pid_309=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b; pid_312=0; pid_324=5141210823343424905; pid_316=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_321=OPTOUT; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Feb 2023 11:44:20 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 46764f61d2479335e0ac9c00bbdaf70e
45812e34983717dff1798f1065998d2590610e0b
024abf10d34731ac633821d19639c8c6c2168d849b64eac89d265d65e72df45a
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 31 Jan 2023 09:20:37 GMT
ETag: "45812e34983717dff1798f1065998d2590610e0b"
Last-Modified: Fri, 27 Jan 2023 09:20:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1749
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79013c5e7f4fb51b-OSL
ib.adnxs.com/getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID
185.89.210.46307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID
AN-X-Request-Uuid: ab0cb384-8761-41e9-9de2-ad7f603d3a8f
Set-Cookie: uuid2=4877477070199099847; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 27-Apr-2023 11:44:20 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
creativecdn.com/cm-notify?pi=gumgum
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm-notify?pi=gumgum HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=3vHwvERXfWwxGxYpVXOe;Path=/;Domain=.creativecdn.com;Expires=Sat, 27-Jan-2024 11:44:20 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1674819860;Path=/;Domain=.creativecdn.com;Expires=Sat, 27-Jan-2024 11:44:20 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/cm-notify?pi=gumgum&tc=1
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e009f205a3c8f37616db12920b692ec5
601a31bf6ed1a2b49c3b4139c3db10cfdec2bf29
fbace7fa76f622e12998eaa9ed4a5d7071730fda23e7b62bfb281b0c63fd2cc2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6459
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:20 GMT
Last-Modified: Fri, 27 Jan 2023 09:56:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
185.89.210.90307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
IP 185.89.210.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
AN-X-Request-Uuid: d640ae38-835d-4549-b4f4-a73c3e8138d6
Set-Cookie: uuid2=292077522547656081; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 27-Apr-2023 11:44:20 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID
185.89.210.46302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0
AN-X-Request-Uuid: 501287f8-6ff7-43e3-9ff9-5f04990d8f26
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
eus.rubiconproject.com/usync.html?p=gumgum
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=gumgum
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=gumgum HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 27 Jan 2023 11:44:20 GMT
Connection: keep-alive
Vary: Accept-Encoding
pixel-us-east.rubiconproject.com/exchange/sync.php?p=duration_media
8.43.72.97204 No Content 0 B URL HTTP/1.1 pixel-us-east.rubiconproject.com/exchange/sync.php?p=duration_media
IP 8.43.72.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=duration_media HTTP/1.1
Host: pixel-us-east.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: e1bf03b8e0c0366715a8d9abd31b9f35
Content-Type: image/gif
creativecdn.com/cm-notify?pi=gumgum&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=gumgum&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
54.74.152.215200 OK 43 B URL HTTP/2 pr-bh.ybp.yahoo.com/sync/gumgum?gdpr=0&gdpr_consent=
IP 54.74.152.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 13e1c7a2184e36d7ae519e99b1aa226f
355ccad4eac39838e1cc76fd0b670fd2ea1e5aa3
48a33ca9f42b91902d57ad8ac52e1ce32b92c8c10c732f2dbb6fe960ebfd9438
GET /sync/gumgum?gdpr=0&gdpr_consent= HTTP/1.1
Host: pr-bh.ybp.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
content-length: 43
age: 0
strict-transport-security: max-age=31536000
server: ATS
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
X-Firefox-Spdy: h2
sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
151.101.2.49302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
IP 151.101.2.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y9O5FAAAAWSabwAb; Path=/; Domain=.everesttech.net; Expires=Sat, 27-Jan-2024 11:44:20 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y9O5FAAAAWSabwAb
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:20 GMT
via: 1.1 varnish
x-served-by: cache-bma1667-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674819860.292490,VS0,VE91
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
185.89.210.90302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
IP 185.89.210.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://usersync.gumgum.com/usersync?b=apn&i=0
AN-X-Request-Uuid: 0b5a28c5-08bb-4080-9055-f445ab0fad63
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y9O5FAAAAWSabwAb
151.101.2.49200 OK 85 B URL HTTP/2 sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y9O5FAAAAWSabwAb
IP 151.101.2.49:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a
GET /ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y9O5FAAAAWSabwAb HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:44:20 GMT
via: 1.1 varnish
age: 2524
x-served-by: cache-bma1667-BMA
x-cache: HIT
x-cache-hits: 7509
x-timer: S1674819860.419953,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1674819860042
213.19.147.44302 Found 471 B URL HTTP/2 sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1674819860042
IP 213.19.147.44:0
Hash 8082d7d2570c894dc220effe8f67b033
2f0ad3cbbcf56c841830032143960a0a512c3ed7
4dfabe9095d87348f1826eda3e936e82723b13d0e1f7bf4a3416da56a0a5f006
GET /usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1674819860042 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
185.89.210.46307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 3a77df65-ef5d-4c03-8b5b-12ec8251fdfd
Set-Cookie: uuid2=4412115669846838462; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 27-Apr-2023 11:44:20 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash a91cb0071488de4007d29f5cc6f84664
9d7043aebbe37143c407bf208fcd93c2b7aa07b8
b815b78476588bcfc5e52f0ad9d1fbba0dd451c0f337587c7c3c295f3f28d35b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 27 Jan 2023 02:28:12 GMT
Expires: Sat, 28 Jan 2023 02:28:12 GMT
ETag: "9d7043aebbe37143c407bf208fcd93c2b7aa07b8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
IP 213.19.147.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-a2ae036d-442d-4668-8df5-a4502c2085a8-003%22%2C%22zdxidn%22%3A%222069.26%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D%22%7D; path=/; expires=Sat, 27 Jan 2024 11:44:19 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1674819859670
etag: RXa2ae036d442d46688df5a4502c2085a8003
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY
198.47.127.20200 OK 712 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY
IP 198.47.127.20:0
Hash 2f90ef3b0785a336decccb784e861421
60788796a671689e598053c7af59b95ce28952a5
ad6564e40d577ee60a75e64a96694dd84d72337fc737ba18a8d22c9d7fd668f3
GET /AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=A18CAD8B-59EE-4779-8CCE-F19C8FA742E5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YNY HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 11:44:18 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.210.46200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.210.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: ffc72849-442e-4c3f-9e36-1c5788400411
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 44369a627241523e4c1072642d968ce1
bbc608ce23c6fca27865967858b9a28438ab8b69
69e91b1c46a29147ba3c3dde85e011b5f9834599a98488e47c9b86db8abc8877
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 13:56:49 GMT
Expires: Tue, 31 Jan 2023 13:56:48 GMT
Etag: "bbc608ce23c6fca27865967858b9a28438ab8b69"
Cache-Control: max-age=352947,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79013c5eeb0e0b59-OSL
id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
141.95.98.64200 43 B URL HTTP/1.1 id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
IP 141.95.98.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Fri, 27-Jan-2023 11:49:20 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Fri, 27-Jan-2023 11:49:20 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Fri, 27-Jan-2023 11:49:20 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Fri, 27-Jan-2023 11:49:20 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Fri, 27-Jan-2023 11:49:20 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Fri, 27-Jan-2023 11:49:20 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Fri, 27 Jan 2023 11:44:19 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x.bidswitch.net/sync?ssp=gumgum2&user_id=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---
52.28.17.51302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=gumgum2&user_id=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---
IP 52.28.17.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=gumgum2&user_id=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=608de55b-c616-4ddb-897d-d0ffceca9c4b; path=/; expires=Sat, 27-Jan-2024 11:44:20 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674819860; path=/; expires=Sat, 27-Jan-2024 11:44:20 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1674819860; path=/; expires=Sat, 27-Jan-2024 11:44:20 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674819860; path=/; expires=Sat, 27-Jan-2024 11:44:20 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 17c2198c2b7d73a1d7ab241abfdac926
7970c40b52a4a17a1ad36c54bce12f33a3b37967
c5930fff1aad8d9b89e3ddc1077623d731fb1e92092ab12ac27f56de156d326f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136503
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d31cb6-1d7"
Expires: Sun, 29 Jan 2023 01:39:23 GMT
Last-Modified: Fri, 27 Jan 2023 00:37:10 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1jEVNDeizCPJEbgZ22x7omgAQuLV7ieM1_dhf4JYYDf6Ipwj59WlHQ==
Age: 3733
pixel.rubiconproject.com/exchange/sync.php?p=a9us
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=a9us
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=a9us HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 3bafef7aa4e37890defcd73f0a080481
Content-Type: image/gif
cs.admanmedia.com/sync/gumgum?puid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Daad%26i%3D%5BDSP_USER_ID%5D&gdpr=0&gdpr_consent=&ccpa=1---
80.77.87.162204 No Content 0 B URL HTTP/1.1 cs.admanmedia.com/sync/gumgum?puid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Daad%26i%3D%5BDSP_USER_ID%5D&gdpr=0&gdpr_consent=&ccpa=1---
IP 80.77.87.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/gumgum?puid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Daad%26i%3D%5BDSP_USER_ID%5D&gdpr=0&gdpr_consent=&ccpa=1--- HTTP/1.1
Host: cs.admanmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 27 Jan 2023 11:44:20 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3cea6d4c9d4222d824ca4359d0aed5ae
950602c7d02a9a7b5489680b0dc6ec63e853649c
f36a39442dda7930a3f41e11386a9b9140af580a69dee0bf0987f212773e8579
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5670
Cache-Control: max-age=107814
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d2a514-1d7"
Expires: Sat, 28 Jan 2023 17:41:14 GMT
Last-Modified: Thu, 26 Jan 2023 16:06:44 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 48f1fcf216d10667d1250125cf2a43d1
229dd561cec5873f166302d46794abe67cd800fd
e5ea7f3badc7f53fdb8a5f2523db5a2c40866149722d3b10b36b0ab7d785ae20
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 11:44:20 GMT
Last-Modified: Fri, 27 Jan 2023 11:23:16 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: F3qXt9mSrEsmJp7gKGu8DhonhFIVoG8iTDfh-GRon6CTXgFopWILoQ==
Age: 1265
x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---
52.28.17.51200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---
IP 52.28.17.51:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=gumgum2&user_id=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
18.195.73.173302 Found 0 B URL HTTP/2 ad.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
IP 18.195.73.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
set-cookie: tuuid=b401f799-3863-46a8-aeb2-c516fbd21e8b; Expires=Thu, 27 Apr 2023 11:44:20 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1674819860; Expires=Thu, 27 Apr 2023 11:44:20 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
token.rubiconproject.com/token?pid=36584
69.173.144.139204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=36584
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=36584 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f401770a0dc6844d473b40ca8285ab1e
4ec35310d4ee2a57d2c93f22c6424fc6e88ebec7
875f703fdd8efefad2f4180004c1fbd13cb0dde6565a8c8f9bf5ad7ad7b35316
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5876
Cache-Control: max-age=144775
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d334a7-1d7"
Expires: Sun, 29 Jan 2023 03:57:15 GMT
Last-Modified: Fri, 27 Jan 2023 02:19:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8afb29f48ff5be88ff99405ca35ff491
223a058524694aaa72d0bfe60f9f809c97d2f899
39e03bfe70e005ee825d5a784dd9fb98707ea2f29e30ffedbbc3bc11ce69576f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89979
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d26311-1d7"
Expires: Sat, 28 Jan 2023 12:43:59 GMT
Last-Modified: Thu, 26 Jan 2023 11:25:05 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kjl6i2KBaTnyhM98GHcZQ_ijhKW3LHXL-37Cz-IUpL6GB8tbiHhAmA==
Age: 4734
ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
18.195.73.173200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D
IP 18.195.73.173:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Didi%26i%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
token.rubiconproject.com/token?pid=2974&pt=n&a=1
69.173.144.139204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2974&pt=n&a=1
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2974&pt=n&a=1 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
token.rubiconproject.com/token?pid=25470
69.173.144.139204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=25470
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=25470 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 611afce88997db6fdd35eb213e662871
x.bidswitch.net/sync?ssp=rubicon
52.28.17.51200 OK 43 B URL HTTP/2 x.bidswitch.net/sync?ssp=rubicon
IP 52.28.17.51:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?ssp=rubicon HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/rubicon
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/rubicon
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/rubicon HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c4232dd929a8c10d54d96484186f6df
7b29bb29c0cdf176c4c088d6104a3992ebedc0b5
6435754eef349ddcfa2aed8aa0c54f6739107196ac49a9cc9753160ef40ca308
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6532
Cache-Control: max-age=121980
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d2d90c-1d7"
Expires: Sat, 28 Jan 2023 21:37:20 GMT
Last-Modified: Thu, 26 Jan 2023 19:48:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=
52.94.222.140302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=
IP 52.94.222.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id= HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: XHAQHKZNGHJSTVBVVDJ4
Set-Cookie: ad-id=A1ta-OdLSUITn-gm2_ez-RQ|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 11:44:20 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
216.52.2.48204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID
IP 216.52.2.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YNY&&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Fri, 27 Jan 2023 11:44:20 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap5ams1
sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
64.202.112.191302 Found 0 B URL HTTP/1.1 sync.outbrain.com/redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D
IP 64.202.112.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectObuid?platformId=GUMGU18H7EL9NI653I7DPEH51&gdpr=0&gdprConsent=&platformRdUrl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dobn%26i%3D%7BOB_UID%7D%26r%3D%7BobRdUrl%7D HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Length: 0
Connection: close
set-cookie: obuid=0b223110-5c8a-4d2d-bd8e-aa81113dae67; Max-Age=7776000; Expires=Thu, 27 Apr 2023 11:44:20 GMT; Path=/; Domain=.outbrain.com
Location: https://usersync.gumgum.com/usersync?b=obn&i=ENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29
X-TraceId: a03cefd5923850c5097d82d6d17edecc
match.prod.bidr.io/cookie-sync/rp?bee_sync_partners=rp
52.211.150.89303 See Other 0 B URL HTTP/1.1 match.prod.bidr.io/cookie-sync/rp?bee_sync_partners=rp
IP 52.211.150.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync/rp?bee_sync_partners=rp HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Fri, 27 Jan 2023 11:44:20 GMT
location: https://match.prod.bidr.io/cookie-sync/rp?bee_sync_partners=rp&_bee_ppp=1
Server: gunicorn
set-cookie: checkForPermission=ok; Domain=bidr.io; expires=Fri, 27 Jan 2023 11:54:20 GMT; Path=/; SameSite=None; Secure
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
rtb-csync.smartadserver.com/redir/?issi=1&partnerid=76&partneruserid=GOOGLE_HOSTED_SI&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=0&gdpr_consent=
185.86.139.57302 Found 0 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?issi=1&partnerid=76&partneruserid=GOOGLE_HOSTED_SI&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=0&gdpr_consent=
IP 185.86.139.57:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redir/?issi=1&partnerid=76&partneruserid=GOOGLE_HOSTED_SI&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=0&gdpr_consent= HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
content-length: 0
date: Fri, 27 Jan 2023 11:44:20 GMT
cache-control: no-cache,no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=smartrtb_dbm&google_cm&google_sc&google_hm=NTQ0MDc2MzUxODk5NjA1NDA4NQ==&gdpr=0&gdpr_consent=
pragma: no-cache
set-cookie: pid=5440763518996054085; expires=Tue, 27 Feb 2024 11:44:20 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 27 Feb 2024 11:44:20 GMT; domain=smartadserver.com; path=/
csync=76:GOOGLE_HOSTED_SI; expires=Sat, 27 Jan 2024 11:44:20 GMT; domain=smartadserver.com; path=/
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
sync.srv.stackadapt.com/sync?nid=1&gdpr=0&gdpr_consent=
44.194.228.115302 Found 126 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=1&gdpr=0&gdpr_consent=
IP 44.194.228.115:0
File type HTML document, ASCII text
Hash 57b6d0a4481016090bb618fe3f97883c
1bb7b330343bac097fb72586be3e911a9b2a615c
4bfe65989dfd21a561fbae22ec8b8ed6bb13af9c6f8843d1c99ab8e6246813ca
GET /sync?nid=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Fri, 27 Jan 2023 11:44:20 GMT
Location: https://usersync.gumgum.com/usersync?b=sta&i=0-b0907a67-e763-4609-7ba9-b2535c81a842$ip$91.90.42.154
Set-Cookie: sa-user-id=s%3A0-b0907a67-e763-4609-7ba9-b2535c81a842.Xugt%2FR%2Fc6K7ErnuZwutAgyiKpqWgFrBxbNQ7YViek0Y; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AsJB6Z-djRgl7qbJTXIGoQltaKpo.aieNJSN6aW7AZDZx%2B5LA4jCduR4XwMtwsKvSdVQ68Ac; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 126
Connection: keep-alive
c1.adform.net/serving/cookie/match?party=10&sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D22%26partneruserid%3DYOUR_USER_ID&gdpr=0&gdpr_consent=
37.157.2.239302 Found 0 B URL HTTP/2 c1.adform.net/serving/cookie/match?party=10&sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D22%26partneruserid%3DYOUR_USER_ID&gdpr=0&gdpr_consent=
IP 37.157.2.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving/cookie/match?party=10&sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D22%26partneruserid%3DYOUR_USER_ID&gdpr=0&gdpr_consent= HTTP/1.1
Host: c1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 27 Jan 2023 11:44:20 GMT
content-length: 0
location: https://c1.adform.net/serving/cookie/match?CC=1&party=10&sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D22%26partneruserid%3DYOUR_USER_ID&gdpr=0&gdpr_consent=
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
set-cookie: C=1; expires=Mon, 27 Feb 2023 11:44:20 GMT; domain=adform.net; path=/
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8adec490b3bbd4c1b282ec292ac0fc15
a2bbb43198e2f0f0e6ebe091bfcfbdbdfcb2cc1a
8e06d5042503fd6816ea485b7ce37946e6c0ee6b60b7f992346293f893bd4699
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=172057
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d3b30e-1d7"
Expires: Sun, 29 Jan 2023 11:31:57 GMT
Last-Modified: Fri, 27 Jan 2023 11:18:38 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gQ5A0viiXfOSrS9_1OhnVLI3U47XSYL-mmLIvYsUQd_DYMyRgEWr9g==
Age: 799
sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
129.159.70.95204 No Content 0 B URL HTTP/2 sync.technoratimedia.com/services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D
IP 129.159.70.95:0
ASN #31898 ORACLE-BMC-31898
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /services?srv=cs&pid=65&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsnc%26i%3D%5BUSER_ID%5D HTTP/1.1
Host: sync.technoratimedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 27 Jan 2023 11:44:20 GMT
set-cookie: tads_uid=GDPR; Max-Age=157680000; Expires=Wed, 26 Jan 2028 11:44:20 GMT; Path=/; Domain=.technoratimedia.com; Secure; SameSite=None
access-control-allow-origin: https://g2.gumgum.com/
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,HEAD,OPTIONS
x-varnish: 616377007
age: 0
via: 1.1 varnish
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash a7f057dfdc2283fd17e352f01c4e472c
0666f7ed67da0b1132a7d046ab0b5b3b05513b41
1462dc3fb468d58d8edee12c72381192b8df9267f11d8de928e86793e0d2223c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 20:03:56 GMT
Expires: Fri, 27 Jan 2023 20:03:56 GMT
ETag: "0666f7ed67da0b1132a7d046ab0b5b3b05513b41"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
52.94.222.140200 OK 43 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
IP 52.94.222.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 4A0AJPEW6K370MXPF6X2
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 331463ce5c5486e091ea05e4c29fde0c
5b0ffb0f42e33760c2569d5c3f09a037a8835e3b
465c8534cd53ae8d72db5167be301f0bdd65b5c3c82196612303a13572f88861
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164270
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d381cc-1d7"
Expires: Sun, 29 Jan 2023 09:22:10 GMT
Last-Modified: Fri, 27 Jan 2023 07:48:28 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZERYqOlo7AbsKs6DW2GhHZxld2Ed7JkRWxuvHCEmbCKwWdOvVQu9RA==
Age: 5622
match.prod.bidr.io/cookie-sync/rp?bee_sync_partners=rp&_bee_ppp=1
52.211.150.89303 See Other 0 B URL HTTP/1.1 match.prod.bidr.io/cookie-sync/rp?bee_sync_partners=rp&_bee_ppp=1
IP 52.211.150.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync/rp?bee_sync_partners=rp&_bee_ppp=1 HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Fri, 27 Jan 2023 11:44:20 GMT
location: https://pixel.rubiconproject.com/tap.php?v=183462&nid=4114&put=&expires=30
Server: gunicorn
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
b1sync.zemanta.com/usersync/gumgum/?puid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
64.74.236.159302 Found 366 B URL HTTP/1.1 b1sync.zemanta.com/usersync/gumgum/?puid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
IP 64.74.236.159:0
File type HTML document, ASCII text, with very long lines (364)
Hash a79f371ba8f0abbf12626450be98ee63
14919daf5f744f4304b6d5c98f28498c826cd22b
167abf07ebe15d415c14289c25d14affe3c17987b5262a61722c6fb8004d6a13
GET /usersync/gumgum/?puid=e_4b2a2ebf-ba4a-41b7-98e4-22c83302d19b&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 366
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://stags.bluekai.com/site/23178?id=HoGni6cu_wT0mIIu8Dwt&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1---
P3p: CP="We do not support P3P header."
Pragma: no-cache
Set-Cookie: zuid=HoGni6cu_wT0mIIu8Dwt; Path=/; Domain=zemanta.com; Expires=Sat, 27 Jan 2024 11:44:20 GMT; Max-Age=31536000; Secure; SameSite=None
Date: Fri, 27 Jan 2023 11:44:20 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8842ce0e8a7ade68a541b843fd4cdde3
af08cd580c467949030f86fc17132a11843bce26
c1ee92c539f729fff35e9c9814569b46ed36d9f3de13c348daefc46816d6fbda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4412
Cache-Control: max-age=113768
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d2c140-1d7"
Expires: Sat, 28 Jan 2023 19:20:28 GMT
Last-Modified: Thu, 26 Jan 2023 18:06:56 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 331463ce5c5486e091ea05e4c29fde0c
5b0ffb0f42e33760c2569d5c3f09a037a8835e3b
465c8534cd53ae8d72db5167be301f0bdd65b5c3c82196612303a13572f88861
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 11:44:20 GMT
Last-Modified: Fri, 27 Jan 2023 10:11:36 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fryLPxckVe514Ok6BD2huRyj4_7VJ7KszKVcF6brB9rVhibDsJr9gg==
Age: 5564
usersync.gumgum.com/usersync?b=sad&i=7377773235253412089
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=sad&i=7377773235253412089
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=sad&i=7377773235253412089 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c280f6ba174fe1bf175a14c4c472f9f0
e64cf39195ea91eae59bc7c5d6e921f5e5ad9386
166b179f186657017002f3ce664690ba1fd467e0c99b65782ea759316e6cd5c4
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 31 Jan 2023 09:36:07 GMT
ETag: "e64cf39195ea91eae59bc7c5d6e921f5e5ad9386"
Last-Modified: Fri, 27 Jan 2023 09:36:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3224
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79013c620b68b51b-OSL
pixel.rubiconproject.com/exchange/sync.php?p=gumgum
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=gumgum
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=gumgum HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 8f052d4f888ae4e0626c5f819879cacd
Content-Type: image/gif
usersync.gumgum.com/usersync?b=opx&i=791a875b-69e5-499a-a5bc-7ff9421b191a
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=opx&i=791a875b-69e5-499a-a5bc-7ff9421b191a
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=opx&i=791a875b-69e5-499a-a5bc-7ff9421b191a HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
cms.quantserve.com/pixel/p-EtBqU4Lj3YbAv.gif?idmatch=0&gdpr=0&gdpr_consent=
91.228.74.244302 Found 0 B URL HTTP/2 cms.quantserve.com/pixel/p-EtBqU4Lj3YbAv.gif?idmatch=0&gdpr=0&gdpr_consent=
IP 91.228.74.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/p-EtBqU4Lj3YbAv.gif?idmatch=0&gdpr=0&gdpr_consent= HTTP/1.1
Host: cms.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-length: 0
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
location: https://rtb-csync.smartadserver.com/redir/?partnerid=80&&partneruserid=7YaIuLmM3b_21tnu6o3BuL3T3O72gd6y7tc3mHKZ
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: d=EFQBDQGTKIir0QA; expires=Thu, 27-Apr-2023 11:44:20 GMT; path=/; domain=.quantserve.com
mc=63d3b914-c5e18-3ff0e-4295b; expires=Tue, 27-Feb-2024 11:44:20 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=183462&nid=4114&put=&expires=30
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=183462&nid=4114&put=&expires=30
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=183462&nid=4114&put=&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 3bafef7aa4e37890defcd73f0a080481
Content-Type: image/gif
pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=564534&nid=5466&put=0 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4b510f0cc5fcbc9800016ef543086418
Content-Type: image/gif
usersync.gumgum.com/usersync?b=apn&i=0
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=apn&i=0
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=apn&i=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=mmh&i=128e63d3-b914-4f00-aa70-f5c9240b2680&gdpr=0&gdpr_consent=
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=mmh&i=128e63d3-b914-4f00-aa70-f5c9240b2680&gdpr=0&gdpr_consent=
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=mmh&i=128e63d3-b914-4f00-aa70-f5c9240b2680&gdpr=0&gdpr_consent= HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=obn&i=ENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=obn&i=ENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=obn&i=ENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29&r=https%3A%2F%2Fsync.outbrain.com%2FsyncUser%3FplatformId%3D%7Bplatform_id%7D%26platformUid%3D%7Bplatform_uid%7D%26obuid%3DENC%280_AUOoTKa7LsfB5YIpK-FTz7CbfoGJhJfldnpaNZfNrLT3PTHNRcZPndO13m6h7g%29 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=rhy&i=OPTOUT
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=rhy&i=OPTOUT HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
sync.ipredictive.com/d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D
54.243.215.75302 Found 108 B URL HTTP/1.1 sync.ipredictive.com/d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D
IP 54.243.215.75:0
File type HTML document, ASCII text
Hash e8076889df7e8717cb4f60f5955fbd52
77e65105f78e7c378352f9ad373d065833d2ef44
4fe2ffe57c37ffbb3512afbaaf3c9ac1c5b9a0e156213e8c55bb3496c26a20dd
GET /d/sync/cookie/generic?partner=gumgum&cspid=9&append=1&cb=${ADELPHIC_CACHE_BUSTER}&gdpr=0&gdpr_consent=&us_privacy=1---&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dvnt%26i%3D HTTP/1.1
Host: sync.ipredictive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Fri, 27 Jan 2023 11:44:20 GMT
Location: https://usersync.gumgum.com/usersync?b=vnt&i=c38f9433-45fb-4cbf-a550-a3c422e45658
Set-Cookie: cu=c38f9433-45fb-4cbf-a550-a3c422e45658|1674819860793; Path=/; Domain=ipredictive.com; Expires=Sat, 27 Jan 2024 11:44:20 GMT; Max-Age=31536000; SameSite=None; Secure
X-CI-RTID: 44fea877-2314-4e85-a7ce-3ebf2d61403e
Content-Length: 108
Connection: keep-alive
c1.adform.net/serving/cookie/match?CC=1&party=10&sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D22%26partneruserid%3DYOUR_USER_ID&gdpr=0&gdpr_consent=
37.157.2.239200 OK 506 B URL HTTP/2 c1.adform.net/serving/cookie/match?CC=1&party=10&sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D22%26partneruserid%3DYOUR_USER_ID&gdpr=0&gdpr_consent=
IP 37.157.2.239:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c84c8ea0de8190f9a4abf43a65bcb5a6
2d6141f7fd883f30a474099ef7b6ad485d8dc637
dd9ef7ab2226bd46f01776093cffb71a36508c9b97bff8a6e6a397c90ee46b4f
GET /serving/cookie/match?CC=1&party=10&sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D22%26partneruserid%3DYOUR_USER_ID&gdpr=0&gdpr_consent= HTTP/1.1
Host: c1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: image/gif
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=&gdpr=0&gdpr_consent=&google_error=3
185.86.139.57200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=&gdpr=0&gdpr_consent=&google_error=3
IP 185.86.139.57:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=76&partneruserid=&gdpr=0&gdpr_consent=&google_error=3 HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Fri, 27 Jan 2023 11:44:20 GMT
transfer-encoding: chunked
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 2575358dd4ff3bc46caf376da1da37d2
c44b347076999a3b679c0e7449651697611cd9a9
6b760913b20a118e9a9c9c61148859c14f3dbe75046fbb4f1e1067f087239fd9
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 31 Jan 2023 09:55:01 GMT
ETag: "c44b347076999a3b679c0e7449651697611cd9a9"
Last-Modified: Fri, 27 Jan 2023 09:55:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 527
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79013c6259eeb524-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 331463ce5c5486e091ea05e4c29fde0c
5b0ffb0f42e33760c2569d5c3f09a037a8835e3b
465c8534cd53ae8d72db5167be301f0bdd65b5c3c82196612303a13572f88861
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 11:44:20 GMT
Etag: "63d381cc-1d7"
Last-Modified: Fri, 27 Jan 2023 10:11:58 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CgrN-1EpL2HSfUpmVLi5nBHZ6KYQhV0D3eIgbb3rED-BizIpmNHWng==
Age: 5542
cms.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif?idmatch=0
91.228.74.244302 Found 0 B URL HTTP/2 cms.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif?idmatch=0
IP 91.228.74.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/p-e4m3Yko6bFYVc.gif?idmatch=0 HTTP/1.1
Host: cms.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-length: 0
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
location: https://pixel.rubiconproject.com/tap.php?v=4939&nid=1902&&put=JGAzwHBqZsc_MDHDIDZ6wCFmZss_Y26QJjL8BxLs
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: d=EMgBCwGTKMujAA; expires=Thu, 27-Apr-2023 11:44:20 GMT; path=/; domain=.quantserve.com
mc=63d3b914-cf02e-33518-09c4a; expires=Tue, 27-Feb-2024 11:44:20 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
usersync.gumgum.com/usersync?b=sta&i=0-b0907a67-e763-4609-7ba9-b2535c81a842$ip$91.90.42.154
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=sta&i=0-b0907a67-e763-4609-7ba9-b2535c81a842$ip$91.90.42.154
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=sta&i=0-b0907a67-e763-4609-7ba9-b2535c81a842$ip$91.90.42.154 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
match.deepintent.com/usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D
38.91.45.7200 OK 0 B URL HTTP/2 match.deepintent.com/usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D
IP 38.91.45.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/142?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Ddit%26i%3D%24%7BDI_USER_ID%7D HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Fri, 27 Jan 2023 11:44:20 GMT
server: b
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=14
44.194.228.115302 Found 121 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=14
IP 44.194.228.115:0
File type HTML document, ASCII text
Hash 57970e7f7e70be2c6fd64480295eb7be
8b000c398c3c4854dce70c646ff1f48d7fabae9a
d1f69d7b24760206dbb3774a58231fac4d7c3241148e182a7ebd3f4fabd97a4a
GET /sync?nid=14 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Fri, 27 Jan 2023 11:44:20 GMT
Location: https://pixel.rubiconproject.com/tap.php?v=731524&nid=3858&put=qMrt95cvRwN5C_KEo2gCN1taKpo
Set-Cookie: sa-user-id=s%3A0-a8caedf7-972f-4703-790b-f284a3680237.PAhjA2DXhHT48bv2wnqBwhQEnRSaqmaV7ylS6f6857o; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AqMrt95cvRwN5C_KEo2gCN1taKpo.9h7yMAoJOIOUQwshe0xM7cqvVjMnyL06kPW7uMg2MT8; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 121
Connection: keep-alive
usersync.gumgum.com/usersync?b=pln&i=4KFot4Q85Dcn&ev=1&pid=558355
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=pln&i=4KFot4Q85Dcn&ev=1&pid=558355
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=pln&i=4KFot4Q85Dcn&ev=1&pid=558355 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
usersync.gumgum.com/usersync?b=vnt&i=c38f9433-45fb-4cbf-a550-a3c422e45658
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=vnt&i=c38f9433-45fb-4cbf-a550-a3c422e45658
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=vnt&i=c38f9433-45fb-4cbf-a550-a3c422e45658 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
rtb-csync.smartadserver.com/redir/?partnerid=80&&partneruserid=7YaIuLmM3b_21tnu6o3BuL3T3O72gd6y7tc3mHKZ
185.86.139.57200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=80&&partneruserid=7YaIuLmM3b_21tnu6o3BuL3T3O72gd6y7tc3mHKZ
IP 185.86.139.57:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=80&&partneruserid=7YaIuLmM3b_21tnu6o3BuL3T3O72gd6y7tc3mHKZ HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssbsync.smartadserver.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Fri, 27 Jan 2023 11:44:20 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6994674655100010616; expires=Tue, 27 Feb 2024 11:44:20 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 27 Feb 2024 11:44:20 GMT; domain=smartadserver.com; path=/
csync=80:7YaIuLmM3b_21tnu6o3BuL3T3O72gd6y7tc3mHKZ; expires=Sat, 27 Jan 2024 11:44:20 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
tr.blismedia.com/v1/api/sync/rubicon
34.96.105.8204 No Content 0 B URL HTTP/2 tr.blismedia.com/v1/api/sync/rubicon
IP 34.96.105.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/api/sync/rubicon HTTP/1.1
Host: tr.blismedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
set-cookie: b=63D3B9143A659E10CBCED7B6BLIS;Version=1;Domain=blismedia.com;Path=/;Max-Age=31540000;SameSite=None;Secure
date: Fri, 27 Jan 2023 11:44:20 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dsp.adfarm1.adition.com/cookie/?ssp=7
85.114.159.93302 Found 0 B URL HTTP/1.1 dsp.adfarm1.adition.com/cookie/?ssp=7
IP 85.114.159.93:0
ASN #24961 myLoc managed IT AG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie/?ssp=7 HTTP/1.1
Host: dsp.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 27 Jan 2023 11:44:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
p3p: policyref="http://imagesrv.adition.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Set-Cookie: UserID1=7193296525432912023; Max-Age=7776000; domain=.adfarm1.adition.com; Path=/; SameSite=None; Secure
Location: https://pixel.rubiconproject.com/tap.php?v=101732&nid=3822&put=7193296525432912023&expires=730
pixel.rubiconproject.com/tap.php?v=4939&nid=1902&&put=JGAzwHBqZsc_MDHDIDZ6wCFmZss_Y26QJjL8BxLs
69.173.144.165422 Unprocessable Entity 91 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=4939&nid=1902&&put=JGAzwHBqZsc_MDHDIDZ6wCFmZss_Y26QJjL8BxLs
IP 69.173.144.165:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f23a66a1c97ac277132e90a14e5c7278
060938e252bdd57700b54a1228afe6ad7691e208
7595357c645b297a5840a6e5b5576cf6199da6f58ec9d8daa311598300fb7c15
GET /tap.php?v=4939&nid=1902&&put=JGAzwHBqZsc_MDHDIDZ6wCFmZss_Y26QJjL8BxLs HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 422 Unprocessable Entity
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 8f052d4f888ae4e0626c5f819879cacd
content-length: 91
pixel.rubiconproject.com/tap.php?v=731524&nid=3858&put=qMrt95cvRwN5C_KEo2gCN1taKpo
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=731524&nid=3858&put=qMrt95cvRwN5C_KEo2gCN1taKpo
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=731524&nid=3858&put=qMrt95cvRwN5C_KEo2gCN1taKpo HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 3bafef7aa4e37890defcd73f0a080481
Content-Type: image/gif
usersync.gumgum.com/usersync?b=iex&i=0
34.247.205.196200 35 B URL HTTP/1.1 usersync.gumgum.com/usersync?b=iex&i=0
IP 34.247.205.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?b=iex&i=0 HTTP/1.1
Host: usersync.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Fri, 27 Jan 2023 11:44:20 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: private, no-store, must-revalidate, max-age=0
Expires: 0
Pragma: no-cache
stags.bluekai.com/site/23178?id=HoGni6cu_wT0mIIu8Dwt&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1---
184.24.45.23302 Found 0 B URL HTTP/2 stags.bluekai.com/site/23178?id=HoGni6cu_wT0mIIu8Dwt&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1---
IP 184.24.45.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/23178?id=HoGni6cu_wT0mIIu8Dwt&redir=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Fbluekai%2Fcallback%2F%3Fd%3DNB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI&gdpr=0&us_privacy=1--- HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://b1sync.zemanta.com/usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Fri, 27 Jan 2023 11:44:20 GMT
set-cookie: bku=ikG99Ou86tm/sPyp; Path=/; Domain=.bluekai.com; Expires=Thu, 27 Jul 2023 11:44:20 GMT; Secure; SameSite=None
bkpa=KJhz0X2rQM9z9mY73E4ddqeGCuybGYNoY63C01PQ/H+H6PYRzDIdfnnepkIIrVtcjQfmzgN8StrwlA7UrZRXw5Uih+iTXjdeosd3+FzICIaCAqBaWY//p6FfbLpLrfkPlPeBpwts/Oh+62+UjhYW8IFRUvGVxVi3bdPzZzFFzX/Smqfz9VDgUNaVoYfZurxkJubwCuC/MnADseHy8DrLddkSOyAcAK+DkwyGjWqKcDPa8r3da0A3eAzSJBWIve1a3jXyUJODvMdmA0nm5lrjONZvG01fm9VnPOfnoBirPOuUK6lzYJB9oXej8vBI2B8i1+gEGtIdvFw0k+wo2sz96IjKQy==; Path=/; Domain=.bluekai.com; Expires=Thu, 27 Jul 2023 11:44:20 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
IP 142.250.74.131:0
Hash 099f9facb3b0195e1bae4be26d02fcae
00064dd4caf7f9c3a4007976e4a48e7f9264e18e
b25259eaccba2fe7d4080657cf902ef7585792bbe18018ac57721224b84c872a
POST /s/gts1d4/nqT2YDGJ6Wo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:44:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.rubiconproject.com/tap.php?v=101732&nid=3822&put=7193296525432912023&expires=730
69.173.144.165422 Unprocessable Entity 91 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=101732&nid=3822&put=7193296525432912023&expires=730
IP 69.173.144.165:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f23a66a1c97ac277132e90a14e5c7278
060938e252bdd57700b54a1228afe6ad7691e208
7595357c645b297a5840a6e5b5576cf6199da6f58ec9d8daa311598300fb7c15
GET /tap.php?v=101732&nid=3822&put=7193296525432912023&expires=730 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 422 Unprocessable Entity
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 8f052d4f888ae4e0626c5f819879cacd
content-length: 91
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=
52.46.128.147302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=
IP 52.46.128.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id= HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Fri, 27 Jan 2023 11:44:21 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: FE671ZYZ9K58G10S45JF
Set-Cookie: ad-id=A_cfXtuHrEK0jjapfRQHEHY|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 11:44:21 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
b1sync.zemanta.com/usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI
64.74.236.159200 OK 26 B URL HTTP/1.1 b1sync.zemanta.com/usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI
IP 64.74.236.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6a43099d5c8fe991a7aa7ebaca53069d
5bce2f0d57305c58c7b05bfce29ebb39a18f5570
3b7b8a4b411ddf8db9bacc2f3aabf406f8e4c0c087829b336ca331c40adfdff1
GET /usersync/bluekai/callback/?d=NB2HI4DTHIXS65LTMVZHG6LOMMXGO5LNM52W2LTDN5WS65LTMVZHG6LOMM7WEPL2MVWSMZLYMNUGC3THMU6WO5LNM52W2JTHMRYHEPJQEZUT2SDPI5XGSNTDOVPXOVBQNVEUS5JYIR3XIJTVONPXA4TJOZQWG6J5GEWS2LI HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 26
Date: Fri, 27 Jan 2023 11:44:21 GMT
secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,3&crs=&lat=&lon=&c29=plid,16748198551646758&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1674819860&rnd=477991
34.254.86.77200 OK 44 B URL HTTP/2 secure-us.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,3&crs=&lat=&lon=&c29=plid,16748198551646758&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1674819860&rnd=477991
IP 34.254.86.77:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=dcr&ci=au-408075&ch=au-408075_c08_0&sessionId=jdnmwdbrbnjdne5138vrrupzbuqew1674819855&fp_id=afutcbwembn8t8zxvu5mpbdqnxofk1674819855&fp_cr_tm=1674819855165&fp_acc_tm=1674819855165&fp_emm_tm=1674819855165&asn=0&prv=1&c6=vc,c08&ca=NA&c13=asid,NA&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,v60Bsdk&sup=0&segment2=&segment1=&forward=1&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,3&crs=&lat=&lon=&c29=plid,16748198551646758&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&devtypid=&pc=NA&si=https%3A%2F%2Fwww.speedtest.net%2F&c73=phtype,&c74=dvcnm,&uoo=&c62=sendTime,1674819860&rnd=477991 HTTP/1.1
Host: secure-us.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:21 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=f0564950-9e37-11ed-ace3-ff2457238ba5; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Wed, 21-Feb-2024 11:44:21 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-us.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
3.75.3.113302 Found 0 B URL HTTP/2 cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent= HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html
date: Fri, 27 Jan 2023 11:44:20 GMT
location: https://ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
set-cookie: euid=57311674819861175305f1; Max-Age=2592000; Expires=Sun, 26 Feb 2023 11:44:20 GMT; Domain=.emxdgt.com; Path=/; HttpOnly
content-length: 0
X-Firefox-Spdy: h2
tg.socdm.com/aux/idsync?proto=gumgum
124.146.215.46302 Found 0 B URL HTTP/1.1 tg.socdm.com/aux/idsync?proto=gumgum
IP 124.146.215.46:0
ASN #2514 NTT PC Communications, Inc.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aux/idsync?proto=gumgum HTTP/1.1
Host: tg.socdm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 27 Jan 2023 11:44:21 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: private
Location: https://usersync.gumgum.com/usersync?b=sus&i=Y9O5FcCo8X0AAK75tvcAAAAA
P3P: CP="See also http://www.scaleout.jp/privacy/"
X-SO-Ads-Time: 7
X-SO-HostName: m-ad395.dc4p.scaleout.jp
X-SO-LB-Hostname: m-tgng25.dc4p.scaleout.jp
X-SO-LB-Data: {"ban":false,"clean_query":"\/aux\/idsync?proto=gumgum","cluster_id":0,"gdpr":true,"ipv4":"0.0.0.0","key":"Y9O5FcCo8X0AAK75tvcAAAAA","privacy_sensitive":true,"uid":"","upstream_id":"m-ad395"}
X-SO-Key: Y9O5FcCo8X0AAK75tvcAAAAA
X-SO-IP: 91.90.42.154
X-SO-Cluster-ID: 0
X-SO-Upstream-ID: m-ad395
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 27 Jan 2023 11:23:00 GMT
last-modified: Wed, 25 Jan 2023 21:28:25 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 9ef1b108656dc6d0707b168b862883dc.cloudfront.net (CloudFront), 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
etag: W/"8a6d0f2d51de2b80e524e04684f71215"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: HpX2MfKly0eyL5Jf-pUoRAgQZ2DdjLKBpHIDBywr2UZlNRrjiI-eJA==
age: 1274
X-Firefox-Spdy: h2
www.speedtest.net/api/js/servers?engine=js&limit=10&https_functional=true
104.16.209.12200 OK 0 B URL HTTP/2 www.speedtest.net/api/js/servers?engine=js&limit=10&https_functional=true
IP 104.16.209.12:0
GET /api/js/servers?engine=js&limit=10&https_functional=true HTTP/1.1
Host: www.speedtest.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Cookie: __cf_bm=av9UuLn7vD5wa5ymLZkiahgAWErGgbCdY_Ve00xH5dM-1674819852-0-AaT5eRVJs4tYSJ819iSsZv1ybbHO45OtnDQBIGNd9jkIwN6cr7LCQ2o+SObUHWM7tX54bQfEgpeab3V8RKheQik=; zd_session_id=bdc1d006-81b6-42f6-894a-16e7a8902fc2; fu=1; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
cache-control: max-age=86400
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests
access-control-allow-credentials: true
expires: Sat, 28 Jan 2023 11:44:14 GMT
x-xss-protection: 1; mode=block
set-cookie: st4-sid=s%3Ahm-o965pnlZ9oDY-fZhkHVN7IAHjr2ep.jciIiHuWYp9A3xCETGP0iwRNXsHPlrcr3rUqWkYkykI; Domain=speedtest.net; Path=/; Expires=Fri, 27 Jan 2023 12:14:14 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79013c37782cb505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
172.64.154.237200 OK 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
IP 172.64.154.237:0
GET /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: text/html
cf-ray: 79013c5a0a890afe-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LxXn2kkLLG5CSrfUKBpBKXvgORZP130WAygzRv%2FAGWaRzVvY6E8W3xIE0Saql%2F0pMKt2Bhh9YBEPNunOXC5eH9q7uNc7W3fX8UENZOPn%2BD5irJH5NreYO4PDnGMHdLjgaCy%2F73aH8DQGJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
htlb.casalemedia.com/cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2219cfc063f027d8f%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2220bf7f9c68e1e828%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%2221f8812d7b508d8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%222212bef6e4ae5928%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%22235606135f6327a%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%2224be4b82322a0118%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D
104.18.33.19200 OK 0 B URL HTTP/2 htlb.casalemedia.com/cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2219cfc063f027d8f%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2220bf7f9c68e1e828%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%2221f8812d7b508d8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%222212bef6e4ae5928%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%22235606135f6327a%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%2224be4b82322a0118%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D
IP 104.18.33.19:0
GET /cygnus?s=184382&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2219cfc063f027d8f%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.speedtest.net%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A5%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A5%2C%22ren%22%3Afalse%2C%22version%22%3A%226.18.0%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2220bf7f9c68e1e828%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184382%22%2C%22sid%22%3A%227%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_leaderboard%22%7D%7D%2C%7B%22id%22%3A%2221f8812d7b508d8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22184386%22%2C%22sid%22%3A%2211%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_skyscraper%22%7D%7D%2C%7B%22id%22%3A%222212bef6e4ae5928%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184384%22%2C%22sid%22%3A%229%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle%22%7D%7D%2C%7B%22id%22%3A%22235606135f6327a%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22184385%22%2C%22sid%22%3A%2210%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_bottom_rectangle%22%7D%7D%2C%7B%22id%22%3A%2224be4b82322a0118%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22184383%22%2C%22sid%22%3A%228%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%2C%22gpid%22%3A%22%2F6692%2Fspeedtest.net%2Fstnext_lowerboard%22%7D%7D%5D%2C%22at%22%3A1%2C%22regs%22%3A%7B%22ext%22%3A%7B%22us_privacy%22%3A%221YNY%22%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
cf-ray: 79013c37ff790b45-OSL
access-control-allow-origin: https://www.speedtest.net
cache-control: no-cache
expires: 0
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m%2FHwHG6DLGbWFCkj%2BMu8xfzNsDKSacyCdcJHpNS%2BEfYip5jmYa2rhCu4LMyZlhH5xKX5OoTjABl0qgl%2BrXDEFfFDohTp47d2tJWB5FK33xBSGekRS1w5W%2BKUoDyv3QPa7JAsy57j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=f9208123-1a86-4cee-8dcf-d214a28d9534&l_pb_bid_id=5237858ca812632&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.16222520044157018
213.19.162.51200 OK 0 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=f9208123-1a86-4cee-8dcf-d214a28d9534&l_pb_bid_id=5237858ca812632&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.16222520044157018
IP 213.19.162.51:0
GET /a/api/fastlane.json?account_id=11576&site_id=79558&zone_id=373684&size_id=15&us_privacy=1YNY&rf=https%3A%2F%2Fwww.speedtest.net%2F&tg_i.pbadslot=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&tk_flint=pbjs_lite_v6.18.0&x_source.tid=f9208123-1a86-4cee-8dcf-d214a28d9534&l_pb_bid_id=5237858ca812632&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F6692%2Fspeedtest.net%2Fstnext_top_rectangle&slots=1&rand=0.16222520044157018 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.speedtest.net
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDEGHY81-26-JRY1; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpNURCSf+C2cu9DtVM30fCgoNkwoqvkZprfOpNJsdIrWbUwRnspU1ZtrYzsnwP0wy0mGweUluV0NyUxeCNCX1akpmvllXEtYN4=; Domain=.rubiconproject.com; Path=/; Expires=Sat, 27-Jan-2024 11:44:14 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.media.net/rtb/prebid?cid=8CUYEJ1S6
34.107.148.139200 OK 0 B URL HTTP/2 prebid.media.net/rtb/prebid?cid=8CUYEJ1S6
IP 34.107.148.139:0
POST /rtb/prebid?cid=8CUYEJ1S6 HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3148
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
accept-ch: Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model
expires: Fri, 27 Jan 2023 11:44:14 GMT
access-control-allow-origin: https://www.speedtest.net
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
172.67.38.106200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 172.67.38.106:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:15 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: CO+cPK9MlXQ+Pp7rzr8UBe9jXf3QVRyCEIXUUj0WHfDV3zQVrjcz3bOmEOU9iBqkaS9ucJx5v/0=
x-amz-request-id: H722FXZ7MH4EZWKX
last-modified: Wed, 18 Jan 2023 10:47:57 GMT
etag: W/"4d61440f9cbdbb9b0b5a43273c7c3caf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 2098
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 79013c3e1a86b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
198.148.27.139302 Found 0 B URL HTTP/2 bh.contextweb.com/bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25
IP 198.148.27.139:0
GET /bh/rtset?pid=558355&ev=1&rurl=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpln%26i%3D%25%25VGUID%25%25 HTTP/1.1
Host: bh.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-stage-0
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: V=4KFot4Q85Dcn;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Mon, 22-Jan-2024 11:44:20 GMT;Max-Age=31104000;SameSite=None
pb_rtb_ev=3-1ili|7bq.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Sat, 27-Jan-2024 11:44:20 GMT;Max-Age=31536000;SameSite=None
INGRESSCOOKIE=aa1c6e96f3ec7ebc; path=/; HttpOnly; Secure; SameSite=None
location: https://usersync.gumgum.com/usersync?b=pln&i=4KFot4Q85Dcn&ev=1&pid=558355
server: Jetty(9.4.14.v20181114)
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
public.servenobid.com/sync.html?usp_consent=1YNY
54.230.111.51200 OK 0 B URL HTTP/2 public.servenobid.com/sync.html?usp_consent=1YNY
IP 54.230.111.51:0
GET /sync.html?usp_consent=1YNY HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
date: Fri, 27 Jan 2023 02:21:43 GMT
last-modified: Thu, 01 Dec 2022 19:37:41 GMT
etag: W/"500c31eb3dcfb8f2a7dc0893b86a487a"
cache-control: max-age=86400
x-amz-meta-codebuild-content-sha256: 7a0197b444a3c5a5c4f92ccd56438fcf44932f5518b7cae8f7a5ec6b1a094ad5
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:5838c8c3-64c9-4519-918a-548b86a0fef3
x-amz-meta-codebuild-content-md5: 86c7b5baa8ca6b64006191aa90b9f19a
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6650EyngZuJ1w5E-pzQADZNiYItism2-44MkEIQlVEFH2p_hsT3Q2w==
age: 33756
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1674819859670
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1674819859670
IP 213.19.147.44:0
GET /usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1674819859670 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:19 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://ads.servenobid.com/sync?pid=321&uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D
IP 213.19.147.44:0
GET /usersync2/floor6?gdpr=0&gdpr_consent=&dspret=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-fed9924f-ac66-44a3-b00d-99aff5409d19-003%22%2C%22zdxidn%22%3A%221506%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D%22%7D; path=/; expires=Sat, 27 Jan 2024 11:44:20 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/floor6?zcc=1&redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Drhy%26i%3D%5BRX_UUID%5D&cb=1674819860042
etag: RXfed9924fac6644a3b00d99aff5409d19003
X-Firefox-Spdy: h2
a.tribalfusion.com/i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180
104.18.25.173302 Found 0 B URL HTTP/2 a.tribalfusion.com/i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180
IP 104.18.25.173:0
GET /i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180 HTTP/1.1
Host: a.tribalfusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 11:44:20 GMT
content-type: text/html
location: https://s.tribalfusion.com/z/i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180
p3p: CP="NOI DEVo TAIa OUR BUS"
x-function: 206
x-reuse-index: 805
cache-control: no-cache, private
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: ANON_ID=a5noeUsjyDymTFMcEJCN47KdANYc2GZca3cwvMZdwi; path=/; domain=.tribalfusion.com; expires=Thu, 27-Apr-2023 11:44:20 GMT; SameSite=None; Secure;
ANON_ID_old=a5noeUsjyDymTFMcEJCN47KdANYc2GZca3cwvMZdwi; path=/; domain=.tribalfusion.com; expires=Thu, 27-Apr-2023 11:44:20 GMT;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79013c622d66b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.servenobid.com/adreq?cb=7799
54.76.94.198200 OK 0 B URL HTTP/2 ads.servenobid.com/adreq?cb=7799
IP 54.76.94.198:0
POST /adreq?cb=7799 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 926
Origin: https://www.speedtest.net
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:44:14 GMT
content-type: application/json
access-control-allow-origin: https://www.speedtest.net
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js
54.230.111.95200 OK 0 B URL HTTP/2 cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js
IP 54.230.111.95:0
GET /novms/js/2/nlsSDK600.bundle.min.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.speedtest.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 14:09:01 GMT
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-version-id: Tw1ZrV6S6M8HrQmSnEoR4BpykB7j_69v
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 10:49:39 GMT
cache-control: max-age=86400
etag: W/"81a9e2a298d0019660cb2966f0c24748"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _eNrCLEyYX0cZSNh-WtNTQEktSNdZL91_CIEZ5aANqP5BmykhHnThA==
age: 3277
X-Firefox-Spdy: h2